Web - Client Web - Client

Client-side technologies implemented in the web browser

At first you will be faced with problems that will require little to no knowledge of web scripting language. Pretty soon the plot thickens ...

These challenges confront you to the use of scripting languages and client-side programming. They are mostly scripts to analyze and understand. This will allow you to learn languages which are in widespread use on the internet.

Prerequisites:
 Understanding a scripting language such javascript/vbscript
 Understanding the operation of a debugger such firebug/javascript console

challenges 33 Challenges

Results Name Validations Number of points  Explanation for the scores Difficulty  Difficulty Author Note  Notation Solution Date
pas_valide HTML - disabled buttons 42% 107103 5 Final 10 16 July 2017
pas_valide Javascript - Authentication 47% 120251 5 g0uZ 9 8 October 2006
pas_valide Javascript - Source 44% 114261 5 g0uZ 5 7 October 2006
pas_valide Javascript - Authentication 2 40% 104027 10 na5sim 4 3 February 2011
pas_valide Javascript - Obfuscation 1 39% 99254 10 Hel0ck 10 7 October 2006
pas_valide Javascript - Obfuscation 2 33% 85213 10 Hel0ck 7 3 February 2011
pas_valide Javascript - Native code 24% 61541 15 g0uZ 8 13 March 2011
pas_valide Javascript - Webpack 6% 15634 15 CanardMandarin 3 11 August 2020
pas_valide Javascript - Obfuscation 3 19% 47672 30 Hel0ck 8 4 February 2011
pas_valide XSS - Stored 1 11% 28004 30 g0uZ 10 3 March 2012
pas_valide CSP Bypass - Inline code 1% 2444 35 CanardMandarin 6 27 October 2020
pas_valide CSRF - 0 protection 6% 15575 35 sambecks 8 16 February 2016
pas_valide Web Socket - 0 protection 1% 463 35 Worty 1 22 October 2021
pas_valide XSS DOM Based - Introduction 1% 1889 35 Ruulian 3 12 August 2021
pas_valide Flash - Authentication 3% 5293 40 koma 1 18 June 2012
pas_valide XSS DOM Based - AngularJS 1% 677 40 Ruulian 2 12 August 2021
pas_valide XSS DOM Based - Eval 1% 773 40 Ruulian 4 12 August 2021
pas_valide CSP Bypass - Dangling markup 1% 869 45 CanardMandarin 1 27 October 2020
pas_valide CSP Bypass - JSONP 1% 736 45 CanardMandarin 5 27 October 2020
pas_valide CSRF - token bypass 3% 5556 45 sambecks 7 18 February 2016
pas_valide XSS - Reflected 2% 4115 45 pickle 5 16 March 2018
pas_valide CSP Bypass - Dangling markup 2 1% 561 50 CanardMandarin 1 27 October 2020
pas_valide CSP Bypass - Nonce 1% 165 50 Ruulian 0 8 April 2022
pas_valide CSS - Exfiltration 1% 183 50 Forgi 0 8 April 2022
pas_valide Javascript - Obfuscation 4 3% 5420 50 aaSSfxxx 5 18 July 2011
pas_valide XSS - Stored 2 3% 6520 50 g0uZ 7 4 March 2012
pas_valide XSS DOM Based - Filters Bypass 1% 627 50 Ruulian 4 12 August 2021
pas_valide DOM Clobbering 1% 55 60 Mizu 0 8 April 2022
pas_valide HTTP Response Splitting 1% 1748 70 Arod 3 7 November 2013
pas_valide Javascript - Obfuscation 5 1% 624 70 Hel0ck 3 4 February 2011
pas_valide XS Leaks 1% 7 75 Mizu 0 8 April 2022
pas_valide XSS - Stored - filter bypass 1% 1069 80 Arod 7 2 January 2016
pas_valide XSS - DOM Based 1% 615 85 vic 6 24 December 2016

Challenge Results Challenge Results

Pseudo Challenge Lang Date
JonhyH Web - Client  Javascript - Authentification 2 fr 28 June 2022 at 22:31
EmmaBRVX Web - Client  HTML - boutons désactivés fr 28 June 2022 at 22:20
JonhyH Web - Client  Javascript - Source fr 28 June 2022 at 22:16
Numb3rs Web - Client  CSS - Exfiltration fr 28 June 2022 at 22:09
bauqcsm Web - Client  CSRF - 0 protection fr 28 June 2022 at 22:08
raiko Web - Client  HTML - boutons désactivés fr 28 June 2022 at 21:53
cejrt1 Web - Client  HTML - boutons désactivés fr 28 June 2022 at 21:45
JonhyH Web - Client  Javascript - Authentification fr 28 June 2022 at 21:40
JonhyH Web - Client  HTML - boutons désactivés fr 28 June 2022 at 21:34
stroma Web - Client  Javascript - Obfuscation 1 ru 28 June 2022 at 21:28