Guided Paths
Learn by Doing
Structured learning paths that guide you through picoCTF challenges by topic. Start with a Foundations path to build the basics, then level up with its Advanced companion covering the hardest challenges in forensics, reverse engineering, web exploitation, cryptography, and binary exploitation.
14 paths · 192 curated challenges
Foundations
Start here. Each path builds a category from the ground up, easy challenges first.
Digital Forensics
Uncover hidden data from files, images, and network captures.
Reverse Engineering
Read, understand, and defeat compiled programs without source code.
Web Exploitation
Find and exploit vulnerabilities in web applications.
Cryptography
Break ciphers, crack hashes, and attack cryptographic protocols.
Binary Exploitation
Corrupt memory and hijack program execution at the lowest level.
General Skills
Master the Linux command line, git, and core CTF fundamentals.
Blockchain Security
Audit and exploit Solidity smart contracts on the Ethereum stack.
Open-Source Intelligence
Trace identities, locations, and leaked data using only public sources.
Advanced
Level up. Each one assumes its Foundations sibling and tackles that category's hardest challenges.
Advanced Digital Forensics
Reverse custom encoders, decrypt captured traffic, and exploit timing side-channels.
Advanced Reverse Engineering
Trace deep assembly, reverse Android and Go binaries, and defeat custom VMs.
Advanced Web Exploitation
Chain SSRF, exploit admin bots with stored XSS, and reverse client-side WASM.
Advanced Cryptography
Factor weak RSA, run power-analysis attacks, and break protocols with lattices.
Advanced Binary Exploitation
Defeat canaries and ASLR, build ROP chains, and corrupt the heap for code execution.
Advanced General Skills
Escape restricted shells, exploit logic bugs, and automate with real tooling.