🔬

browser-ctf-practice

Master cybersecurity through hands-on Capture The Flag challenges. Practice SQL injection, XSS, cryptography, forensics, and more - all in your browser.

🔬 立即試用

呢個係咩?

🎯 模擬器提示

📚 術語表

CTF
奪旗-安全競賽形式
Flag
證明挑戰完成的秘密字串
SQLi
SQL注入-資料庫攻擊
XSS
跨站腳本 - JavaScript 注入
CSRF
跨站請求偽造 - 誘騙用戶採取行動
IDOR
不安全的直接物件引用 - 存取其他使用者的數據
RCE
遠端程式碼執行 - 在伺服器上執行任意程式碼
LFI
本機檔案包含 - 讀取伺服器文件
RFI
遠端檔案包含 - 包含外部惡意文件
Payload
攻擊代碼或數據
Writeup
挑戰的詳細解決方案說明

🎓 學習資源

💬 畀學習者嘅話

{'encouragement': "Every expert was once a beginner who couldn't solve their first challenge. Struggle is part of learning. The flag you find after hours of trying feels better than one you found in minutes.", 'reminder': 'CTFs are games that teach real skills. What you learn here directly applies to real security work.', 'action': 'Start with a beginner challenge. Get that first flag. Feel that excitement. Then do another.', 'dream': 'A teenager in Kenya might become a world-ranked CTF player. A student in Nigeria might find a critical vulnerability that protects millions. This is your training ground.', 'wiaVision': 'WIA Pin Code brings CTF training to everyone. The security researchers of tomorrow are practicing today. Be one of them.'}

開始使用

免費,唔使註冊

開始使用 →