all InfoSec news
Solving the XSS HTB CTF Challenge
Sept. 9, 2023, 6:46 a.m. | Ahmet Talha Şen
System Weakness - Medium systemweakness.com
Solving the Cross-Site Scripting (XSS) HTB CTF Challenge
Challenge Overview
We are presented with several scenarios, each demonstrating different aspects of XSS attacks. The goal is to find and exploit the XSS vulnerabilities to retrieve the flags.
Scenario 1: Extracting Cookie Information
In this scenario, we have a POST request to index.php, which reflects our input in the response. We need to modify our payload to extract the cookie data instead of displaying the URL.
Payload
POST …
bugbounty-writeup ctf-writeup cybersecurity htb-writeup web app security
More from systemweakness.com / System Weakness - Medium
Limit Requests to EC2 Instances to Cloudflare Only IPs
2 days, 4 hours ago |
systemweakness.com
Canary Codes for Curious Minds
2 days, 4 hours ago |
systemweakness.com
Detecting Mobile Threats: Indicators of Compromise
3 days, 2 hours ago |
systemweakness.com
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Cybersecurity Engineer
@ Booz Allen Hamilton | USA, VA, Arlington (1550 Crystal Dr Suite 300) non-client
Invoice Compliance Reviewer
@ AC Disaster Consulting | Fort Myers, Florida, United States - Remote
Technical Program Manager II - Compliance
@ Microsoft | Redmond, Washington, United States
Head of U.S. Threat Intelligence / Senior Manager for Threat Intelligence
@ Moonshot | Washington, District of Columbia, United States
Customer Engineer, Security, Public Sector
@ Google | Virginia, USA; Illinois, USA