Blog
VM Hacking
Hacking
Cracking
Wargame
Forensic
Cryptography
Steganography
Programming
/dev/null
Summary
I] What is W3Challs?
Purpose of thie site
W3Challs is a penetration testing training platform, which offers various computer challenges, in categories related to security: Hacking, Cracking, Wargame, Forensic, Cryptography, Steganography et Programming.
The purpose of this site is to offer realistic challenges, without simulation, and without guessing!
We give you an opportunity to test your skills against our challenges, and even to try to hack the site itself.
Nevertheless, bruteforcing (of challenges, authentication...) or any Denial of Service are forbidden!
You have to be registered to access challenges.Origins
W3Challs holds its name from a bad pun with the W3C (for World Wide Web Consortium).
This name is an abbreviation for World Wide Web Challenges.
Unlike W3C, this site doesn't pretend to define a standard ;-)W3Challs exists since May 2009, but its first real release (1.0) dates from January 2010.
II] What are challenges about?
Definition
A challenge is a virtual game which test your skills in various areas, usually related to computers.
Its purposes are to learn and distract, and practice prior theoretical knowledge.
All challenges will not necessarily learn you something, but all levels are required.
As well, resulting entertainement will not be the same depending on the individual.
However, we try to provide only challenges that present a computer security interest, even if this one is basic.When you validate a challenge, a fixed amount of points is added to your account, according to the validated challenge difficulty, positioning yourself in a ranking against other players.
The ranking is just here as an information, but it may also bring you additionnal challenges with other players.
You can interpret this information as you like. Simply be aware that your position within the ranking doesn't necessarily represent your real skill level, and it is illusory to believe you are better than another because of it.Ideally, a challenge should be a personnal research and/or a personnal cerebration.
Proceeding that way, you will benefit of:
- Knowledge of solution methods for the initial problem.
- Collateral knowledge, gathered during your research, that isn't necessarily directly related to the challenge.
- An improvement/clarification of your research and way of thinking methods.
- Ideas for future cogitation.
Scoring system
Points are distributed according to 3 basic categories: Easy, Medium and Hard.
- Easy : Basic challenges that doesn't require any special thinking [1-9 points]
- Medium : Challenges that require a minimum of thinking and/or research [10-19 points]
- Hard : Challenges that require thinking, research and/or advanced knowledge [20-30 points]
Beware of cheating
Any cheat of help to cheat is prohibited on W3Challs.
Any publication of methods or password concerning a W3Challs challenge is strictly prohibited.
If you ever have this idea, maybe it's time to seek the definition of « challenge ».
Cheating is a shortcut that may teach you a resolution method, but you would pass out on all the interest of the challenge.
Any detected cheating will remove you from the ranking, and exposes you to a ban of the site.
You have nothing to gain by cheating!
Thank you to respect the philosophy of this site on this particular point, even if you don't agree with it.Hacking challenges
Hacking is a popular category, and also the one that poses the most problems to manage.
Proposing security challenges jeopardizes our servers, so it's important for us to secure challenges from the server standpoint.
We do our best to keep challenges as realistic as possible, by deleting all simulation. However, this imposes strong security contrainsts, especially to avoid Cross Challenge Scripting: using the vulnerability of a challenge to find the solution of another without solving it the intended way.
If you find a vulnerability that was not predicted by its author, allowing or not to bounce to another challenge, please report it to the site administration(ref).
DoS : A challenge will NEVER involve the practice of Denial of Service.
You can warm up the server for some challenges, but be reasonable in he frequency of your queries, not to disrupt its performance.
III] Challenge categories
This part describes challenge categories, and what you could expect from each one of these.
This description is not intended to be comprehensive, but summarizes the outline of each category.
Hacking
Hacking challenges are designed to test penetration testing skills. Often, the aim is to find a way to bypass an authentication, to crack a password, or to execute arbitrary code. A challenge is often not limited to only one vulnerability, and it is regularly necessary to combine several vulnerabilities to complete an exploitation.
Challenges are often presented as web sites, however all challenges are not specifically about web vulnerabilities. Some other challenges are available as services on a given port...
The password to solve the challenge is displayed when required privileges are acquired, or it is contained in a flag file that you must find and display.
Themes: Attacks on access control, sessions, databases, client side attacks, password cracking... Classic tools: Burp, Live HTTP Headers, Tamper Data, Web developer Startup links: OWASP Cracking
Reverse-Engineering challenges. Here you have to reverse executable files for which the source code is not provided, for various operating systems (Windows, GNU/Linux...) and various hardware architectures (x86, x86_64, ARM, MIPS...).
The aim is generally to find the routine(s) that check whether the input serial is valid, and that permits to solve the crackme.
Themes: Assembly, bytecode, Anti-debugging... Classic tools: IDA, OllyDBG, gdb, objdump Startup links: Guide for RE beginners (FR, but most links are english) Wargame
Challenges in the same spirit than the Hacking category, because the aim is to hijack a feature to gain additional privileges. This category focuses on binary exploitation (the prominent example beeing buffer overflows) on Linux.
Challenges take place on a server that you access remotely with SSH.
Each level exposes a binary with one or more vulnerabilities.
The binary is setuid levelN+1. The aim is then to hijack features, most often to spawn a shell with levelN+1 permissions, and thus proceed to a privilege escalation. Each successful exploitation thereby unlock the next level.
Note that once the challenge is validated on the site, the connection password for levelN+1 is displayed on that challenge page. This avoids you the burden of keeping all passwords in a textfile and to start all over if you loose it ;)
A tutorial is available in /Wargame/HOWTOSTART on the wargame.
Prior knowledge of basic Linux shell commands is required before starting this category.
Themes: Race conditions, Buffer overflow, Format string... Classic tools: IDA, gdb, objdump, strace, ltrace Startup links: Hacking: The Art of Exploitation, The Shellcoder's Handbook, phrack
It is possible to find PDF versions of books ;)Forensics
The usual usage of computer forensics is to conduct a digital investigation to provide a proof.
In the challenge scope, the aim is to extract informations from a given support (hard drive, RAM dump, snapshot...), and then to analyse it.
This includes malware analysis, because it is recurrent in digital investigations when an infection occured. In which case, you have to analyse how the malware works and find interesting informations inside it (one or more challenge flags).
Themes: Memory analysis, Malwares... Classic tools: List of digital forensics tools, IDA Startup links: Forensics Wiki Cryptography
The aim of cryptography challenges is to attest and exploit weaknesses in cryptography algorithms, or misuage of those.
Studied algorithms are always unveiled, and are recent algorithms (AES, RSA...), still currently in use nowadays.
No guessing!
These challenges take various forms: text statement, web interface, service on a given port...
Themes: Cryptanalysis, Cryptographic weaknesses, Recent algorithms... Classic tools: CrypTool Startup links: Wikipedia Steganography
Steganography challenges aims to discover hidden secrets within a file, most often an image.
The aim is to discover hidden informations via steganalysis: the addition of hidden content alters the original file, and it is possible to detect these alterations to discover the hidden information.
Informations may be hidden by generic steganography technics (such as LSB), or specific to a file format, in which case it is necessary to analyse the file format specifications to detect anomalies and sensible areas that may allow to hide informations.
In itself, steganography only hide information, which is kept intelligible, unlike cryptography.
However both categories often overlap, in challenges as well. Nevertheless on W3Challs, if it is, the challenge will also be tagged as including cryptography.
Themes: Specification analysis, Modification detection... Classic tools: StegSolve, Steganabara Startup links: Wikipedia Programming
Programming is mandatory for a lot of challenges from all categories.
This category focuses on code optimisation notions, and artificial intelligence relevant to hacking.
Themes: Optimisations, Artifical Intelligence, Captchas... Classic tools: Python, PHP, gcc Startup links: Python tutorial, C tutorial /dev/null
This category include challenges lowered to 0 points, thereby not presented in the complete list of challenges.
These challenges were "removed" for various reasons: guessing, useless, removed category...
Themes: All categories above, Javascript, Logic, Guess...
IV] Additional informations
Help forums and afterwards
For each challenge, 4 threads are automatically created in the forum:
French help thread
English help thread
Afterwards are forums that are unlocked once you solved the challenge. Challenge solvers and the challenge author can post the various methods used to solve the challenge.
The link to help/afterwards forums can be found on:
- The challenge page (once solved for afterwards)
- The forum, in the challenge category
- The challenge listing (once solved for afterwards)
Tags system
In order to refine research, a tag system was created on the challenges page.
It allows you to search challenges in virtual categories, that don't exist on W3Challs because these are minor.
It also allows you to search challenges that cross multiple domains within existing categories.
A note for beginners: aBeginner tag exists!
Which programming language to learn?
To be complete, it is necessary to master several language types. We recommand the choices below, which are the most often used on the various challenge categories on W3Challs:
Assembly: ASM x86 Compiled language: C Scripting language: Python Web language: PHP Challenge proposal
If you have a challenge idea that you think is interesting and which principle isn't already on the site, and that is not plagiarized from another site, you can propose it here.
If possible, discuss about it in private on IRC with an administrator (ref).
We study all the proposals.
V] Rules
VI] Staff
awe NiklosKoda Status Administrator, general manager Administrator, wargame manager Contact Contact especially about: hacking server, new challenges, bugs or suggestions
- IRC(ref)
- awe[at]w3challs[dot]com
Contact especially about all wargame related stuff
- IRC(ref)
- NiklosKoda[at]w3challs[dot]com
VII] Thanks
We truly thank the following members for their contributions to W3Challs:
awe founder of W3Challs NiklosKoda for the wargame creation ThunderLord for sharing important ressources (mails, ircd) Challenge authors : 0vercl0k, agix, awe, BAAL, BaDBoys, bouboule, casoum, coclico, Ge0, horhos, Iansus, MaZ, mego, mirmo, NiklosKoda, robert, S3cur3D, ThunderLord, vortex
VIII] Conclusion
W3Challs' staff thank you for having the courage to read this page, and wish you very good future challenges.
If you are in trouble with anything or if you have any comment, contact us!
