Web:

webpix:

Beta webservice Webpix to handle/fetch local and remote contents: [webpix.insomnihack.ch](<http://webpix.insomnihack.ch>) [HTTPS / HTTP 8080]
Web API to report Webpix bug: <http://webpix.insomnihack.ch:8888>
Do not waste time enumerating the front web server
No bruteforcing is required on the service.
No scan needed

Attachment:
[webpix.zip](<https://static.insomnihack.ch/media/webpix-7c24dd9a1536dbefd5e90ba35f8f315ea1bc467a40727fd92ef8d9b33a6bdd78.zip>)

webpix.zip

Sh3lltris - Chat system (beta):

An in game chat system is under development, we are making it available in beta version from the main screen.
It will be extended to the other scenes of the game once the last bugs are fixed but we are sure it is ready for production. Our admin team is already using it!

Chat server is hosted on ws://sh3lltris-chat.insomnihack.ch:8080/

Files:
[Sh3lltris_ChatServer.zip](<https://static.insomnihack.ch/media/Sh3lltris_ChatServer-c8839a30c0e1d7997ff721bcb461ec693957862465dac06e65cd61932f933196.zip>)
[Sh3lltris_client.zip](<https://static.insomnihack.ch/media/Sh3lltris_client-3f7f815c7fb46d2fecf5c39622924e3c65649a5501b71b5e5a976eb6f7ba34f1.zip>)

Sh3lltris_ChatServer.zip

Sh3lltris_client.zip

Lsa secrets(web,windows):

To contribute to this community we provide a website based on secretsdump that checks if the credentials in the LSA secrets are among popular wordlists.
You can reach the website on [<https://secretsdump.insomnihack.ch/>](<https://secretsdump.insomnihack.ch/>)

[source.zip](<https://static.insomnihack.ch/media/html-8cd643595f6772a93916f2de50ecd00b16757302f59a7d8877057e33f8f1156c.zip>)

Lsa secrets.zip

VIP Tickets(web,realistic):

For our new event the Insomni'hack team provides VIP tickets for real hackers.
Get your VIP ticket now !

[<https://vipticket.insomnihack.ch:44300/>](<https://vipticket.insomnihack.ch:44300/>)

Reverse:

InsoBug(realistic,windows):

Your target is a Windows service, accessible through the host insobug.insomnihack.ch on TCP port 80. Your objective is to read the flag file flag.txt which is stored in the application's directory.
The target service consists of a single executable - Server.exe - which is the only resource provided to the players.
The binary file contains hints and information that can be leveraged to solve the challenge without guessing anything.
Information that is not provided in the executable can be obtained by interacting with the service.
Do not waste time enumerating the front web server, it is just a "proxy".
No bruteforcing is required on the service.

Attachment:
[Server.exe](<https://static.insomnihack.ch/media/Server-ff1cd8012fa33dd7d8cd8b87aedc1da4750e01c2efeb051962473f44eb0becd1.exe>)