Offical URL:

X-MAS CTF is the competition organized by HTsP with the purpose of learning and having fun while solving jeopardy-style challenges.

We welcome both beginners and experienced players alike! Hope you will have a great time and we wish you a Merry Christmas!

(All of the challenges are written by HTsP members)

CTF events

X-MAS CTF 201924.17
X-MAS CTF 20180.00
X-MAS CTF 201824.17
Related tags: web pwn xss #web php crypto stego rop sqli hacking forensics base64 android python scripting xor des sha1 algo rsa bruteforce c++ reverse engineering forensic javascript programming c engineering security java js go vm random exploitation misc pwnable re joy exploit ppc steganography secure-coding math attack coding nothing networking prng malware bash ios algorithms format-string ai network collision pentesting guessing social engineering linux wireshark analysis ida burpsuite sql injection mysql image factoring code miscellaneous phpsessionid css csrf sleeping blind rev discord learning ctf xpath kernel student frida volatility hash jwt databases lua jail bufferoverflow emails binaryexploitation ollydbg it flask packet shellcode overflow pwntools bot jquery superstitions vulnerability analysis rsa-crypto revesing dos quantum qr ssti osint reversing ropchain cryptography-rsa emulation netcat nc tcp windbg heap-feng-shui electronics substitution md5 attacks buffer warmup crytography ret2libc pdf cipher rabin devops lcg apache2 php7 heap-overflow path-traversal wireless cryptanalysis python3 graphs c lisp cryptography pickle suisse-switzerland reverse heap binary drugs audacity rot13 crt gauss tv watching emulator rsa-like sniffing lattice matrix v8 stackoverflow eval csp-bypass popad anti-debug ransomware unintended python2 chinese-remainder memory_dump file_structure cve polynomial iot 1day / oeis function modular vector sanity check hexedit nim scraping linker trustzone role image-processing reverseengineering blind-sqli or-injection glibc-2.32 okamoto-uchiyama gosuha mobile_reverse