Database Bypass

Bypass authentication with SQL injection

/start sqli

Total Solves

14m 22s

Avg Solve Time

First Blood Claimed

49s

Record Time

// FIRST BLOOD

「 ✦ Rimuru ✦ 」 🩸

cracked in 3m 41s

// TOP 10 FASTEST

#1 User 0755 49s

#2 Tangen 1m 5s

#3 r 1m 47s

#4 iamunknown77 2m 18s

#5 bestcatever 2m 28s

#6 bussi 2m 56s

#7 terror 2m 57s

#8 Zyn 3m 0s

#9 Morgan 3m 3s

#10 F03ever 3m 3s

// RELATED · Intermediate TIER

Command Injection

WEB+SSH Chain OS commands through a web interface

★★☆☆☆

Malicious Upload

WEB+SSH Upload a web shell past file filters

★★☆☆☆

XML Attack

WEB Read server files through XML entity injection

★★☆☆☆

Path Traversal

WEB+SSH Traverse directories to read sensitive files

★★☆☆☆

Script Kiddie

WEB+SSH Inject JavaScript to steal credentials

★★☆☆☆

Vault Cracker

WEB+SSH Decode layered encoding to crack a vault

★★☆☆☆

Spawn this box.
Capture the flag.

Join the Discord and type /start sqli to spin up your own container.

join discord → sign in with discord

Database Bypass

// FIRST BLOOD

// TOP 10 FASTEST

// RELATED · Intermediate TIER

Spawn this box.Capture the flag.

Spawn this box.
Capture the flag.