Root-me
Root-me is a learning platform for computer security and hacking. ... The site is therefore made for learning for the interested and curious in the field of security.
Global - Challenges
HTML - Code source
Web Server
Difficulty : Very easy
Percent of success : 49 %
HTTP - Open redirect
Web Server
Difficulty : Very easy
Percent of success : 19 %
HTTP - User-agent
Web Server
Difficulty : Very easy
Percent of success : 25 %
Mot de passe faible
Web Server
Difficulty : Very easy
Percent of success : 34 %
PHP - Injection de commande
Web Server
Difficulty : Easy
Percent of success : 18 %
Fichier de sauvegarde
Web Server
Difficulty : Easy
Percent of success : 17 %
HTTP - Directory indexing
Web Server
Difficulty : Easy
Percent of success : 24 %
HTTP - Headers
Web Server
Difficulty : Easy
Percent of success : 16 %
HTTP - POST
Web Server
Difficulty : Very easy
Percent of success : 13 %
HTTP - Redirection invalide
Web Server
Difficulty : Easy
Percent of success : 13 %
HTTP - Verb tampering
Web Server
Difficulty : Easy
Percent of success : 15 %
Install files
Web Server
Difficulty : Easy
Percent of success : 14 %
CRLF
Web Server
Difficulty : Medium
Percent of success : 10 %
File upload - Double extensions
Web Server
Difficulty : Medium
Percent of success : 11 %
Gunnm
Stéganographie
Difficulty : Very easy
Percent of success : 16 %
Pas très carré
Stéganographie
Difficulty : Very easy
Percent of success : 13 %
Point à la ligne
Stéganographie
Difficulty : Easy
Percent of success : 7 %
Steganomobile
Stéganographie
Difficulty : Easy
Percent of success : 10 %
Twitter Secret Messages
Stéganographie
Difficulty : Very easy
Percent of success : 7 %
Du bruit
Stéganographie
Difficulty : Easy
Percent of success : 6 %
George et Alfred
Stéganographie
Difficulty : Easy
Percent of success : 8 %
Poem from Space
Stéganographie
Difficulty : Easy
Percent of success : 1 %
Points jaunes
Stéganographie
Difficulty : Easy
Percent of success : 2 %
Audio stégano
Stéganographie
Difficulty : Medium
Percent of success : 4 %
We need to go deeper
Stéganographie
Difficulty : Medium
Percent of success : 3 %
Base Jumper
Stéganographie
Difficulty : Medium
Percent of success : 1 %
Hide and seek
Stéganographie
Difficulty : Medium
Percent of success : 1 %
Objet PDF
Stéganographie
Difficulty : Medium
Percent of success : 2 %
Angecryption
Stéganographie
Difficulty : Medium
Percent of success : 1 %
Kitty spy
Stéganographie
Difficulty : Medium
Percent of success : 1 %
LSB - Un canard qui pèse son poids
Stéganographie
Difficulty : Medium
Percent of success : 1 %
Pixel Indicator Technique
Stéganographie
Difficulty : Medium
Percent of success : 1 %
Pixel Value Differencing
Stéganographie
Difficulty : Medium
Percent of success : 1 %
Crypt-art
Stéganographie
Difficulty : Medium
Percent of success : 3 %
File upload - Type MIME
Web Server
Difficulty : Medium
Percent of success : 9 %
HTTP - Cookies
Web Server
Difficulty : Medium
Percent of success : 14 %
Insecure Code Management
Web Server
Difficulty : Medium
Percent of success : 3 %
JSON Web Token (JWT) - Introduction
Web Server
Difficulty : Medium
Percent of success : 4 %
Directory traversal
Web Server
Difficulty : Medium
Percent of success : 11 %
File upload - Null byte
Web Server
Difficulty : Medium
Percent of success : 8 %
JSON Web Token (JWT) - Secret faible
Web Server
Difficulty : Medium
Percent of success : 3 %
JWT - Jeton révoqué
Web Server
Difficulty : Medium
Percent of success : 1 %
PHP - assert()
Web Server
Difficulty : Medium
Percent of success : 5 %
PHP - Filters
Web Server
Difficulty : Medium
Percent of success : 7 %
PHP - Register globals
Web Server
Difficulty : Medium
Percent of success : 6 %
PHP - Remote Xdebug
Web Server
Difficulty : Medium
Percent of success : 1 %
File upload - ZIP
Web Server
Difficulty : Medium
Percent of success : 3 %
Injection de commande - Contournement de filtre
Web Server
Difficulty : Medium
Percent of success : 3 %
Java - Server-side Template Injection
Web Server
Difficulty : Medium
Percent of success : 4 %
JSON Web Token (JWT) - Clé publique
Web Server
Difficulty : Medium
Percent of success : 1 %
HTML - boutons désactivés
Web Client
Difficulty : Very easy
Percent of success : 37 %
Javascript - Authentification
Web Client
Difficulty : Very easy
Percent of success : 45 %
Javascript - Source
Web Client
Difficulty : Very easy
Percent of success : 43 %
Javascript - Authentification 2
Web Client
Difficulty : Very easy
Percent of success : 39 %
Javascript - Obfuscation 1
Web Client
Difficulty : Very easy
Percent of success : 37 %
Javascript - Obfuscation 2
Web Client
Difficulty : Very easy
Percent of success : 32 %
Javascript - Native code
Web Client
Difficulty : Easy
Percent of success : 22 %
Javascript - Webpack
Web Client
Difficulty : Easy
Percent of success : 3 %
Javascript - Obfuscation 3
Web Client
Difficulty : Medium
Percent of success : 18 %
XSS - Stockée 1
Web Client
Difficulty : Medium
Percent of success : 11 %
CSP Bypass - Inline code
Web Client
Difficulty : Medium
Percent of success : 1 %
CSRF - 0 protection
Web Client
Difficulty : Medium
Percent of success : 7 %
Flash - Authentification
Web Client
Difficulty : Medium
Percent of success : 3 %
CSP Bypass - Dangling markup
Web Client
Difficulty : Medium
Percent of success : 1 %
CSP Bypass - JSONP
Web Client
Difficulty : Medium
Percent of success : 1 %
CSRF - contournement de jeton
Web Client
Difficulty : Medium
Percent of success : 3 %
XSS - Volatile
Web Client
Difficulty : Medium
Percent of success : 2 %
CSP Bypass - Dangling markup 2
Web Client
Difficulty : Hard
Percent of success : 1 %
Javascript - Obfuscation 4
Web Client
Difficulty : Hard
Percent of success : 3 %
XSS - Stockée 2
Web Client
Difficulty : Hard
Percent of success : 3 %
HTTP Response Splitting
Web Client
Difficulty : Hard
Percent of success : 1 %
Javascript - Obfuscation 5
Web Client
Difficulty : Hard
Percent of success : 1 %
XSS - Stored - contournement de filtres
Web Client
Difficulty : Hard
Percent of success : 1 %
XSS - DOM Based
Web Client
Difficulty : Hard
Percent of success : 1 %
JSON Web Token (JWT) - Clé publique
Web Server
Difficulty : Medium
Percent of success : 1 %
Locale File Inclusion
Web Server
Difficulty : Medium
Percent of success : 9 %
Locale File Inclusion - Double encoding
Web Server
Difficulty : Medium
Percent of success : 5 %
Node - Eval
Web Server
Difficulty : Medium
Percent of success : 1 %
PHP - Loose Comparison
Web Server
Difficulty : Medium
Percent of success : 3 %
PHP - preg_replace()
Web Server
Difficulty : Medium
Percent of success : 4 %
PHP - Type juggling
Web Server
Difficulty : Medium
Percent of success : 3 %
Remote File Inclusion
Web Server
Difficulty : Medium
Percent of success : 4 %
SQL injection - Authentification
Web Server
Difficulty : Medium
Percent of success : 13 %
SQL injection - Authentification - GBK
Web Server
Difficulty : Medium
Percent of success : 3 %
SQL injection - String
Web Server
Difficulty : Medium
Percent of success : 6 %
XSLT - Exécution de code
Web Server
Difficulty : Medium
Percent of success : 2 %
LDAP injection - Authentification
Web Server
Difficulty : Medium
Percent of success : 4 %
Node - Serialize
Web Server
Difficulty : Medium
Percent of success : 1 %
NoSQL injection - Authentification
Web Server
Difficulty : Medium
Percent of success : 3 %
PHP - Path Truncation
Web Server
Difficulty : Medium
Percent of success : 2 %
PHP - Sérialisation
Web Server
Difficulty : Medium
Percent of success : 3 %
SQL injection - Numérique
Web Server
Difficulty : Medium
Percent of success : 5 %
SQL injection - Routed
Web Server
Difficulty : Medium
Percent of success : 2 %
SQL Truncation
Web Server
Difficulty : Medium
Percent of success : 2 %
XML External Entity
Web Server
Difficulty : Medium
Percent of success : 2 %
XPath injection - Authentification
Web Server
Difficulty : Medium
Percent of success : 3 %
GraphQL
Web Server
Difficulty : Medium
Percent of success : 1 %
Java - Spring Boot
Web Server
Difficulty : Medium
Percent of success : 1 %
Local File Inclusion - Wrappers
Web Server
Difficulty : Medium
Percent of success : 2 %
PHP - Eval
Web Server
Difficulty : Medium
Percent of success : 1 %
PHP - Unserialize overflow
Web Server
Difficulty : Medium
Percent of success : 1 %
SQL injection - Error
Web Server
Difficulty : Medium
Percent of success : 3 %
SQL injection - Insert
Web Server
Difficulty : Medium
Percent of success : 1 %
SQL injection - Lecture de fichiers
Web Server
Difficulty : Medium
Percent of success : 2 %
XPath injection - String
Web Server
Difficulty : Medium
Percent of success : 1 %
NoSQL injection - En aveugle
Web Server
Difficulty : Medium
Percent of success : 1 %
SQL injection - Time based
Web Server
Difficulty : Medium
Percent of success : 2 %
Server Side Request Forgery
Web Server
Difficulty : Hard
Percent of success : 1 %
SQL injection - En aveugle
Web Server
Difficulty : Hard
Percent of success : 3 %
LDAP injection - En aveugle
Web Server
Difficulty : Hard
Percent of success : 1 %
XPath injection - En aveugle
Web Server
Difficulty : Hard
Percent of success : 1 %
SQL injection - Contournement de filtres
Web Server
Difficulty : Hard
Percent of success : 1 %