Challenges
Focus on security outcomes each month: CTF writeups, tooling, vuln research, and red-team style work. Same calendar as the developer track — enroll, build during the window, and submit on the site.
6 challenges loaded
Looking for the build track? → Developer ChallengesGoal Solve a public beginner crypto challenge and document every step. Requirements - Flag or full walkthrough - Explain the mistake that made it solvable
Resources → - Cryptopals - picoCTF crypto
0 enrolled · 0 approved submissions
View submissions →Goal Build a small tool that flags risky dependency patterns in a repo. Requirements - CLI or script - Clear rules documented - Sample run on an OSS repo
Resources → - npm audit / OSV - Semgrep intro
0 enrolled · 0 approved submissions
View submissions →Goal Pick an open-source component, audit a narrow surface, and write a professional memo. Requirements - Hypothesis, methodology, result - Responsible disclosure stance even if no bug
Resources → - OWASP Testing Guide - CVE database
0 enrolled · 0 approved submissions
View submissions →Ready to take on this challenge? Enroll via /enroll in Discord.
Create a Python script that scans for nearby WiFi networks and identifies common security misconfigurations — weak encryption, default passwords, or suspicious SSIDs. Document your methodology and findings in a short wri…
Resources → • Python wifi libraries (pywifi, scapy) • Wireless adapter with monitor mode support • Common default credential databas
0 enrolled · 0 approved submissions
View submissions →Build a custom web application fuzzer that automatically tests for common vulnerabilities like SQL injection, XSS, and directory traversal. Include payload generation and result analysis. Size this for about 10 days of f…
Resources → • HTTP libraries (requests, aiohttp) • Common payload databases (SecLists) • Web vulnerability testing guides • OWASP te
1 enrolled · 0 approved submissions
View submissions →Research and implement a monitoring system that detects potential container escape attempts in real-time. Focus on syscall monitoring, capability abuse, and namespace violations. This advanced project suits about 10 days…
Resources → • eBPF programming guides and tools • Container runtime documentation (Docker, containerd) • Linux kernel security subsy
0 enrolled · 0 approved submissions
View submissions →Ready to take on this challenge? Enroll via /enroll in Discord.