all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Websocket SQLi and Weak JWT Signing Key - "Bug Report Repo" [INTIGRITI 1337UP LIVE CTF 2023]

Add to bookmarks
Nov. 19, 2023, 11:15 a.m. | CryptoCat

CryptoCat www.youtube.com

Video walkthrough for "Bug Report Repo", a web challenge I made for the @intigriti 1337UP LIVE CTF 2023. The challenge had multiple parts; first you need to use an IDOR to find a hidden bug report from ethical_hacker. Next, you exploit SQL injection over websocket protocol (either with custom script, or modified proxy for SQLMap). Once you find creds in the DB for the hidden endpoint, you login to find only the admin can read the config. Since the server …

bug challenge ctf exploit find hidden idor injection intigriti jwt key live next parts repo report signing signing key sql sqli sql injection video walkthrough web websocket

Visit resource

More from www.youtube.com / CryptoCat

Burp Suite Certified Professional (BSCP) Review + Tips/Tricks [Portswigger] 1 week, 6 days ago | www.youtube.com
appsec bounty bug bug bounty +25
1: SQL Injection (Union + Blind) - Gin and Juice Shop (Portswigger) 1 month ago | www.youtube.com
application burp burp suite exploit +18
HackTheBox Cyber Apocalypse 2024: Web Challenge Walkthroughs 1 month, 2 weeks ago | www.youtube.com
403 bypass api api testing apocalypse +32
0: Getting Started with Burp Suite - Gin and Juice Shop (Portswigger) 2 months ago | www.youtube.com
application burp burp suite course +17
LA CTF 2024: Web Challenge Walkthroughs (1-4) 2 months, 1 week ago | www.youtube.com
beginners challenge challenges conditions +26
How to Approach an OSINT Challenge - "Photographs" [INTIGRITI 1337UP LIVE CTF 2023] 5 months, 1 week ago | www.youtube.com
accounts back challenge ctf +19
Format String Vulnerability - "Floor Mat Store" [INTIGRITI 1337UP LIVE CTF 2023] 5 months, 1 week ago | www.youtube.com
binary binary exploitation challenge computer +12
Websocket SQLi and Weak JWT Signing Key - "Bug Report Repo" [INTIGRITI 1337UP LIVE CTF … 5 months, 1 week ago | www.youtube.com
bug challenge ctf exploit +21
Unity Game Hacking Challenge - "Azusawa’s Gacha World" [SekaiCTF] 8 months ago | www.youtube.com
analysis beginners challenge cheat +26

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Information Security Specialist, Sr. (Container Hardening)

@ Rackner | San Antonio, TX
View on infosec-jobs.com

Principal Security Researcher (Advanced Threat Prevention)

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com

EWT Infosec | IAM Technical Security Consultant - Manager

@ KPMG India | Bengaluru, Karnataka, India
View on infosec-jobs.com

Security Engineering Operations Manager

@ Gusto | San Francisco, CA; Denver, CO; Remote
View on infosec-jobs.com

Network Threat Detection Engineer

@ Meta | Denver, CO | Reston, VA | Menlo Park, CA | Washington, DC
View on infosec-jobs.com
View more jobs