CTF: Flask platform for Capture The Flag challenges


The CTF is a Hacking and Computer Security eLearning platform.


git clone https://github.com/abdesslem/CTF.git
cd CTF
pip install -r requirements.txt

Setup email credentials and recaptcha API key

export APP_MAIL_USERNAME="<your email>"
export APP_MAIL_PASSWORD="<your password"
export RECAPTCHA_PRIVATE_KEY='<your recaptcha private key>'
export RECAPTCHA_PUBLIC_KEY='< your recaptcha public key>'


Register and login

The register interface allows user to register to the application. It will send a link to activate the account and verify if the user is human or not with google recaptcha.

alt text

When the user is registered and his account is verified he can access the web application.

alt text

Admin interface

Register and login with the user “test” to be able to access the admin interface. You will be able to manage users and challenges.

alt text


The index interface contains the challenges added by the “test” user.

alt text

alt text

Deployment with tornado web server

Tornado is an open source version of the scalable, non-blocking web server and tools that power FriendFeed. Because it is non-blocking and uses epoll, it can handle thousands of simultaneous standing connections, which means it is ideal for real-time web services.

pip install tornado
python run.py

Copyright (c) 2015 Amri Abdesslem

Source: https://github.com/abdesslem/