Mellivora Mellivora is a PHP-based Capture The Flag (CTF) engine designed to host cybersecurity competitions and challenges. The platform supports arbitrary categories and challenges, allowing organizers to create diverse security scenarios for participants. It includes a comprehensive scoreboard system that accommodates multiple team types and tracks participant progress throughout competitions. The engine provides manual or automatic marking capabilities for free-text submissions, enabling flexible challenge evaluation methods. Challenge management features include hint systems, time-based exposure limits, and progressive challenge reveals that unlock based on parent challenge completion. Administrative functionality encompasses user management with IP correlation tracking, signup restrictions using email regex patterns, and a dedicated management console for competition oversight. The platform integrates reCAPTCHA support for enhanced security and includes TOTP two-factor authentication for user accounts. File handling capabilities support challenge file uploads to local storage or Amazon S3, accommodating various challenge formats and requirements. The system includes configurable caching mechanisms and SMTP email support for participant communications. Team progress and overview pages provide participants with visibility into their advancement and performance metrics. The platform offers signup restrictions and user management tools to control competition access and maintain organized participant databases.
FEATURES
EXPLORE BY TAGS
SIMILAR TOOLS
A hands-on cybersecurity laboratory environment for Gray Hat Hacking Chapter 29 that creates virtualized Docker and Kali Linux machines using Terraform for practical security training exercises.
An easy-to-use and lightweight API wrapper for Censys APIs with support for Python 3.8+.
A lightweight CTF platform with simple setup and difficulty-based scoring that removes timezone advantages from competitions.
Docker file for building Androguard dependencies with an optional interactive shell environment.
A command-line tool for downloading Android APK files from the Appland platform via npm installation.
Web application for visualizing live GPS locations on an SVG world map using honeypot captures.
FBCTF is a platform for hosting Jeopardy and King of the Hill style Capture the Flag competitions with support for various scales and participation models.
Bane is an automated AppArmor profile generator for Docker containers that simplifies the creation of security policies with file globbing support and Docker integration.
PINNED

Checkmarx SCA
A software composition analysis tool that identifies vulnerabilities, malicious code, and license risks in open source dependencies throughout the software development lifecycle.

Orca Security
A cloud-native application protection platform that provides agentless security monitoring, vulnerability management, and compliance capabilities across multi-cloud environments.

DryRun
A GitHub application that performs automated security code reviews by analyzing contextual security aspects of code changes during pull requests.