all InfoSec news
Exploring the Upper() Method in Python: Uncovering Vulnerabilities
Oct. 15, 2023, 4:34 p.m. | Arun balaji
InfoSec Write-ups - Medium infosecwriteups.com
Analyzing Character Length Changes with the upper() Method
Hello Everyone, I’d like to share an intriguing discovery I made during a recent CTF (Capture The Flag) challenge centered around the Python upper() method.
Source Code:
@app.route('/login',methods=['GET','POST'])
def login():
if request.method == 'GET':
return render_template('login.html')
elif request.method == 'POST':
if len(request.values["username"]) >= 40:
return render_template_string("Username is too long!")
elif len(request.values["username"].upper()) <= 50:
return render_template_string("Username is too short!")
else:
return flag
Our Goal is to get the flag here but we need …
More from infosecwriteups.com / InfoSec Write-ups - Medium
Honeypots 101: A Beginner’s Guide to Honeypots
4 days, 6 hours ago |
infosecwriteups.com
No Dev Team? No Problem: Writing Malware and Anti-Malware With GenAI
4 days, 18 hours ago |
infosecwriteups.com
Devvortex Hackthebox Walkthrough
5 days, 6 hours ago |
infosecwriteups.com
Port Scanning for Bug Bounties
5 days, 6 hours ago |
infosecwriteups.com
Jobs in InfoSec / Cybersecurity
Senior Security Officer
@ eSimplicity | Remote
Senior - Automated Cyber Attack Engineer
@ Deloitte | Madrid, España
Public Key Infrastructure (PKI) Senior Engineer
@ Sherwin-Williams | Cleveland, OH, United States
Consultant, Technology Consulting, Cyber Security - Privacy (Senior) (Multiple Positions) (1502793)
@ EY | Chicago, IL, US, 60606
Principal Associate, CSOC Analyst
@ Capital One | McLean, VA
Real Estate Portfolio & Corporate Security Lead
@ Lilium | Munich