Who we are
Pwnzer0tt1 is an Academic Capture The Flag (CTF) team of Politecnico di Bari (Poliba). We are a group of cybersecurity enthusiasts and passionate students dedicated to offensive security and ethical hacking
CTF Competitions
We actively participate in national and international Capture The Flag competitions, constantly challenging ourselves against the best teams.
Cybersecurity Enthusiasts
Beyond playing CTFs, we explore deep vulnerabilities, develop custom exploits, and publish writeups to share our passion with the community.
Open Source Tools
We build and maintain tools to assist in vulnerability discovery, reverse engineering, and general security auditing.
Meet the Team
The passionate students and cybersecurity enthusiasts behind Pwnzer0tt1.
Christian Risi
Member
Domenico Mazzini
Member
Domingo Dirutigliano
Co-Founder
Gilberto Dell'Olio
Member
Giuseppe Liguori
Member
Luis Di Vittorio
Member
Michele Ruzzi
Member
Nicola Guerrera
Co-Founder
Nicola Pace
Co-Founder
Oscar Urselli
Co-Founder
Pierantonio D'Agostino
Member
Tiziano Albore
Member
CyberChallenge.IT
Pwnzer0tt1 proudly manages the official CyberChallenge.IT course at Politecnico di Bari.
CyberChallenge.IT is the Italian national training program for young cybersecurity talents. As a team, we take the lead in organizing and delivering comprehensive cybersecurity courses at Poliba. We teach university students the fundamental and advanced aspects of offensive security, guiding them through hands-on hacking labs, cryptography, and real-world exploitation techniques to prepare them for national competitions.
Cyberchallenge - Poliba Page
Projects & Repositories
Explore our open source tools, automated farms, and CTF challenge archives.
Firegex
Firegex is a specialized firewall designed specifically for Attack-Defense CTF competitions. It allows teams to effortlessly monitor, filter, and modify incoming network traffic in real-time to defend vulnerable services against opposing teams' exploits.
Exploitfarm
ExploitFarm is a powerful, automated exploitation framework built for Attack-Defense CTFs. It is designed to continuously launch exploits against rival teams, manage successful attacks, and automatically submit stolen flags to the main scoring server.
Digger
Digger provides a sleek, highly responsive web interface for exploring and analyzing Suricata EVE (Extensible Verification Engine) outputs. It simplifies the process of reviewing network intrusion alerts and malicious packet captures during competitions.
LDBARI 2024
The official repository for the Linux Day Bari 2024 Capture The Flag event. It includes all the custom challenges, vulnerable services, infrastructure scripts, and detailed writeups created by our team for the local community.
LDBARI 2023
An archive of the custom challenges and infrastructure code from the Linux Day Bari 2023 Capture The Flag event. This repository contains the original vulnerable applications and solutions designed and managed entirely by Pwnzer0tt1.
CVE-2022-36946
Our deep-dive technical research and proof of concept for CVE-2022-36946. This repository demonstrates a vulnerability in the Linux kernel's netfilter_queue subsystem that can be deliberately triggered to cause a kernel panic (Denial of Service).