The #6th DOJO CHALLENGE was on finding a valid SQL injection to bypass inputs filter protection that forbids the use of common SQL comments.

The #5th DOJO CHALLENGE was the hardcore mode variation of the #3rd challenge: triggering an XSS payload restricted to a very short array of usable characters, notably forbidding the use of parenthesis, numbers and dots.

The 4th DOJO CHALLENGE was rather tricky: you needed to solve an obfuscated XPath request to derive working serials. The 3 first hunters to solve this challenge are rewarded a prestigious BlackHat Briefings pass.

The third DOJO CHALLENGE was about finding a valid XSS payload. The first five challenge solves and the five best write-up reports were rewarded with a nifty goodies pack. We had a great variety of working payloads, demonstrating the vibrant creativity of our community. Thank you all for playing...

A Vulnerability Disclosure Policy (VDP) helps organisations be more secure. Yet, too few still understand what a VDP is and why every organisation needs one. Let’s see the value of VDP through an ethical hacker’s eyes. We chat with SaxX, who shares his thoughts and experience about vulnerability...

Following the release of the YesWeHack DOJO we have initiated a challenge serie. The second DOJO CHALLENGE had been the arena of fierce competition. The 5 first challenge solving and the 5 best write-up reports were rewarded with a nifty goodies pack.