Goal: find a string like flag{[a-zA-Z0-9_!]+} and submit it here.
Get a flag from the 4th capybara from capybaras table
Unioun based SQLi. Get a flag from 'flag' column of a 'flag' table
Error based SQLi. Get a flag from 'flag' column of a 'flag' table
Boolean based blind SQLi. Get a flag from 'flag' column of a 'flag' table
Time based blind SQLi. Get a flag from 'flag' column of a 'flag' table
🚩Task 1 "CapyMed" (Difficulty: Easy)
The data of hospital patients was leaked in Capybarowsk. Help me figure out how CapyHacker stole the database.
This task is split into 2 parts: 1. You need to bypass login page and get to the website. First flag is in the website content. 2. You need to exploit website functionality to extract second flag from a 'flag' column of a 'flag' table.
🚩Task 2 "MCC - MultifunctionalCapyCenter"(Difficulty: Medium)
A one-stop hub offering diverse civic services, streamlining processes for the community's convenience. Flag is in a 'flag' column of a 'flag' table.
🚩Task 3 "CapyBank"(Difficulty: Hard)
CapyBank: Your friendly neighborhood bank in Capybarovsk, offering secure, innovative financial services with a personal, community-focused touch. The login and registration form is not vulnerable to injections (you dont need to hack it). Flag is in a 'flag' column of a 'flag' table.