Security Alert! RL Identifies Compromise of ETHcode, a VS Code Extension
Learn More
RL Anti-Hack Backpacks & RL Book Club Author Tayna Janca at Black Hat
Don't Miss Out
Looking for an alternative to VirusTotal? We've got you covered.
Learn More

Welcome to the ReversingLabs
Job Fair Challenge!

The winner is Petar Beršić

API Hacking Task

Our Hacking task is a vulnerability exploitation challenge. To unravel our secret you will have to hack into our banking transactions API and find interesting data. Good luck!

Prerequisites: Basic REST API understanding.

The Task:

You are hired to hack into REST API with banking transactions with the following endpoint: 
http://rl-job-fair.reversinglabs.com/api/transactions/<transaction_hash>

Every API user has its unique username and 5 digits PIN and can access its own transactions. Every transaction has: transaction hash, source account number, target account number, transaction time and transaction amount.

Via phishing, you found out that there is one admin user who can access all of the transactions and his/hers username is 'admin'.

Now, your job is to find account number of a person with the most deposits (outgoing transactions) - the solution we're looking for is their account number.

View competition rules

You have by the end of the Job Fair 2019, Thursday, May 16, 2019 at 17pm to send your creations to jobfairchallenge@reversinglabs.com.

The fastest solution will be rewarded with an Apple iPad Air.

We will announce the prize winner on our web site and they will get an e-mail confirmation at the end of the challenge.

Solution of the challenge will be published on our website on Friday, May 17, 2019.

About ReversingLabs

ReversingLabs is a leading cyber-security company with offices in the US, Switzerland, and Zagreb, Croatia.

We're in the business of malware hunting, threat discovery, file analysis, and incident response. Our products help users detect threats, prevent damage to their systems, and protect their data.

The technology we use to accomplish all that is unique, and we're proud of it. Our static analysis engine can identify more than 3500 file format families and extract over 3000 Proactive Threat Indicators. The best part - it only takes a few milliseconds per file. Our own hashing algorithm can identify functionally similar malware files, including new and unknown malware variants. Last but not least, our file reputation database is the biggest one in the industry, with more than 5 billion files, and more than 6 million added every day.

To top all that, our developers are the friendliest bunch you'll meet, and our offices have the coolest view in Zagreb. Don't believe us? Come work at ReversingLabs and you'll see!

As a ReversingLabs employee, you will get:

  • familiar with the industry lingo, common practices and workflows,
  • first-hand experience with all the relevant tools that are actually used in the industry,
  • to improve your skills and develop new competencies through courses, conferences, internal tech talks and knowledge-sharing sessions with your mentors and colleagues,
  • access to our massive library of digital and print books,
  • the opportunity to move between teams and work on different positions according to your skills and preferences,
  • recommendation letters and career-building advice from your mentors,
  • a chance to build a strong network of business connections, but also to make friends for life, and to have fun!

Interested in building a career in data mining, machine learning, or reverse engineering? Would you like to be a C++ or Python developer? Do data analytics and threat analysis sound exciting to you?

Or would you prefer to work with microservices and Big Data storage? We have open positions for all that, and more. Join ReversingLabs today!