Team _______
| Member | Vulnerability Found | Branch Name |
|---|---|---|
| _______ | _______ | _______ |
| _______ | _______ | _______ |
| _______ | _______ | _______ |
Each team member records a short video (max 3 minutes) explaining their vulnerability. Add your YouTube links below:
- Member 1: https://youtube.com/watch?v=_______
- Member 2: https://youtube.com/watch?v=_______
- Member 3: https://youtube.com/watch?v=_______
- Server:
0x10.cloudand its subdomains - Submission: http://submit.0x10.cloud
- Leaderboard: http://ranking.0x10.cloud
The server allows 10 requests per second per IP address. If you send requests too fast, you will get blocked (HTTP 429). Add a small delay between requests:
import time
time.sleep(0.15) # wait 150ms between requests- Look at the three example scripts:
example_http_check.py— checks if a site uses HTTPS (usesurllib)example_port_check.py— checks if a port is open (usessocket)example_header_check.py— reads HTTP response headers for info leaks (usesurllib)
- Run all examples:
python3 main.py - Create your own branch:
git checkout -b your_vuln_name - Write a Python script that finds and demonstrates a vulnerability
- Submit your finding at http://submit.0x10.cloud
- Merge your branch into master when done
- Python standard library only —
socket,urllib,ssl,json,base64,time. No pip packages. - Only scan
*.0x10.cloud— do not scan any other domain. - Respect the rate limit — 10 requests/second max.