Skip to content

HaschekSolutions/0xf.at

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

57 Commits

.github/workflows

.github/workflows

 
 

.vscode

.vscode

 
 

classes

classes

 
 

comments

comments

 
 

css

css

 
 

data

data

 
 

docker

docker

 
 

fonts

fonts

 
 

inc

inc

 
 

js

js

 
 

less

less

 
 

models

models

 
 

pages

pages

 
 

scss

scss

 
 

stats

stats

 
 

tcp_servers

tcp_servers

 
 

.dockerignore

.dockerignore

 
 

.gitignore

.gitignore

 
 

.htaccess

.htaccess

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

backend.php

backend.php

 
 

favicon.ico

favicon.ico

 
 

index.php

index.php

 
 

robots.txt

robots.txt

 
 

template.php

template.php

 
 

Repository files navigation

0xf.at logo

0xf.at

https://0xf.at

Apache License HitCount

Hackits for javascript, PHP, HTML, password cracking, wifi cracking and more

About

0xf.at (or oxfat it you prefer) is a password-riddle (so called hackit) site. You could say it's Project Euler for it security or IT in general. This is a tribute site to the old Starfleet Academy Hackits site which has been offline for many years now.

License

It's licensed under GPL3 which means you can copy, sell, change 0xfat but all changes have to be public (also open source) and your code must be released under GPL3 as well.

What do I need to host my own 0xf.at instance?

The easy way using docker Docker

Run docker run --rm --name 0xf -p 8080:80 hascheksolutions/0xf.at and point your browser to http://localhost:8080

The harder way

  • A webserver running Apache or nginx
  • PHP 7.2 or higher
  • NodeJS for the TCP server levels
  • A (sub) domain
  • No database needed
  1. Download this repo: https://github.com/HaschekSolutions/0xf.at/archive/master.zip
  2. Unpack it to your web folder
  3. rename inc/example.config.inc.php to inc/config.inc.php and set the SALT value to some random string (used for user data encryption)
  4. Add a cronjob to start the TCP servers on reboot: @reboot cd /var/www/0xf/tcp_servers; ./start.sh

How to create your own level

  1. Go to data/levels and find the highest level.
  2. Make a copy of data/levels/template.php and rename it to data/levels/hackit<new level number>.php (eg. hackit36.php)
  3. Edit your level and test it on your site

You can make a pull request if you want your level on the official 0xf.at site.

Easy development

0xf supports development using the PHP-integrated webserver. So you can just download the code and from the main directory run php -S localhost:8080 and point your browser to http://localhost:8080

Trivia

  • The site was originally created to be used by computer science teachers only. The creator Christian Haschek stated in his blog that hackits are the first thing he teaches new classes to spark flames for computer science and security.
  • The name 0xfat was actually a coincidence as the creator wanted to buy a short URL because he wanted to make short domains for his projects. Later this seemed unnecessary for him and he implemented his idea of a hackit site for his students under this domain.
  • Users can't change or recover their passwords because the site uses the user password to encrypt a text file which contains all info about a user. If a password is lost, there is no way (other than brute force) to recover the stats.

About

0xf.at the popular hackit-site is finally open source

0xf.at

Topics

php hackit-site riddles hackits it-security

Resources

Readme

License

View license
Activity
Custom properties

Stars

91 stars

Watchers

7 watching

Forks

11 forks
Report repository

Releases

7 tags

Packages 1

 

Contributors 3

  •  
  •  
  •  

Languages