Welcome to OWASP WrongSecrets. With this app, we hope you will re-evaluate your secrets management strategy.
For each of the challenges below: try to find the secret! Enter it in the `Answer to solution` box and score points! Note that some challenges require this app to run on additional infrastructure (see in the table below).
# | Challenge | Focus | Difficulty | Runs on environment (current: OKTETO _K8S) | Solved |
---|---|---|---|---|---|
0 | Challenge 0 | Intro | β ββββ | Docker | |
1 | Challenge 1 | Git | β ββββ | Docker | |
2 | Challenge 2 | Git | β ββββ | Docker | |
3 | Challenge 3 | Docker | β ββββ | Docker | |
4 | Challenge 4 | Docker | β β βββ | Docker | |
5 | Challenge 5 | Configmaps | β β βββ | K8S | |
6 | Challenge 6 | Secrets | β β βββ | K8S | |
7 | Challenge 7 | Vault | β β β β β | K8S with Vault | |
8 | Challenge 8 | Logging | β β βββ | Docker | |
9 | Challenge 9 | Terraform | β β β ββ | AWS, GCP, Azure | |
10 | Challenge 10 | CSI-Driver | β β β β β | AWS, GCP, Azure | |
11 | Challenge 11 | IAM privilege escalation | β β β β β | AWS, GCP, Azure | |
12 | Challenge 12 | Docker | β β β ββ | Docker | |
13 | Challenge 13 | CI/CD | β β β ββ | Docker | |
14 | Challenge 14 | Password Manager | β β β β β | Docker | |
15 | Challenge 15 | Git | β β βββ | Docker | |
16 | Challenge 16 | Front-end | β β β ββ | Docker | |
17 | Challenge 17 | Docker | β β β ββ | Docker | |
18 | Challenge 18 | Cryptography | β β β β β | Docker | |
19 | Challenge 19 | Binary | β β β β β | Docker | |
20 | Challenge 20 | Binary | β β β β β | Docker | |
21 | Challenge 21 | Binary | β β β β β | Docker | |
22 | Challenge 22 | Binary | β β β β β | Docker | |
23 | Challenge 23 | Front-end | β ββββ | Docker | |
24 | Challenge 24 | Cryptography | β β βββ | Docker | |
25 | Challenge 25 | Web3 | β β βββ | Docker | |
26 | Challenge 26 | Web3 | β β βββ | Docker | |
27 | Challenge 27 | Web3 | β β βββ | Docker | |
28 | Challenge 28 | Documentation | β ββββ | Docker | |
29 | Challenge 29 | Documentation | β ββββ | Docker | |
30 | Challenge 30 | Front-end | β β βββ | Docker | |
31 | Challenge 31 | Documentation | β ββββ | Docker | |
32 | Challenge 32 | AI | β β βββ | Docker | |
33 | Challenge 33 | Secrets | β β βββ | K8S | |
34 | Challenge 34 | Cryptography | β β βββ | Docker | |
35 | Challenge 35 | Documentation | β ββββ | Docker | |
36 | Challenge 36 | Binary | β β β β β | Docker | |
37 | Challenge 37 | CI/CD | β β βββ | Docker | |
38 | Challenge 38 | Git | β ββββ | Docker | |
39 | Challenge 39 | Cryptography | β ββββ | Docker | |
40 | Challenge 40 | Cryptography | β ββββ | Docker | |
41 | Challenge 41 | Cryptography | β β β ββ | Docker |
Total score: 0
Hasty? Here is the Vault secret;-)