Come and get rich fast while exploiting Google Chrome. Google is going to host another Pwnium competition called Pwnium 2, where up to $2 million worth of rewards are at stake. Pwnium competitions are held to make Chronium stronger and better. Pwnium 2, which will be held on October 10, 2012 at the Hack In The Box Security Conference in Kuala Lumpur, Malaysia.
In Pwnium 2, you can participate in the following categories below which has rewards based on its levels: (taken from Pwnium 2 blog post)
- $60,000: “Full Chrome exploit”: Chrome / Win7 local OS user account persistence using only bugs in Chrome itself.
- $50,000: “Partial Chrome exploit”: Chrome / Win7 local OS user account persistence using at least one bug in Chrome itself, plus other bugs. For example, a WebKit bug combined with a Windows kernel bug.
- $40,000: “Non-Chrome exploit”: Flash / Windows / other. Chrome / Win7 local OS user account persistence that does not use bugs in Chrome. For example, bugs in one or more of Flash, Windows or a driver.
- $Panel decision: “Incomplete exploit”: An exploit that is not reliable, or an incomplete exploit chain. For example, code execution inside the sandbox but no sandbox escape; or a working sandbox escape in isolation. For Pwnium 2, we want to reward people who get “part way” as we could definitely learn from this work. Our rewards panel will judge any such works as generously as we can.
To able to take home all the $2 million reward will require tremendous hard work and luck, but even if you just succeed on the two top categories, surely you will walking away richer with more money in your pocket!
Note that the Exploits that will be demonstrated should work on the latest stable version of Chrome and comes with documentation.
Hack in the Box online registration is now open and there will be only a maximum of 1010 seats sold, so be sure to register early.