Welcome to the Fortify Hacking Challenge!

Attack the Application
and win an iPhone 3G

Do you have what it takes to be a hacker? Always wanted to hoodwink the security measures of a system? Then this Online Hacking Challenge is the right place to put your skills to test. Follow the instructions below and submit your successful hack to enter into a drawing for an iPhone 3G.

The link below will take you to a Web site which contains numerous vulnerabilities but is being defended by the Fortify Real-Time Analyzer (RTA). When you conduct an attack, Fortify RTA will block your efforts and redirect you to a separate page. However, if you conduct a particularly impressive attack, Fortify RTA will redirect you to a different page, with a code word. There are three code words available. If you find any of them, you will be given a link to enter the drawing for the iPhone. You can also stop by the Fortify booth at Black Hat and share the password to be entered for the drawing. If you find all three words your chances of winning will go up.

The goal is to exploit vulnerabilities in the commerce software using application attacks. Brute force network and server attacks will not be rewarded.

The application represents a financial institution. The login and password for the homepage are:

• login: test
• password: test

Not every link has been activated, particularly on the home screen. However, there are ample areas to conduct an attack.

The competition starts on Monday, August 4th, 5pm PT. Enter the link below and start hacking.