Web - Client

Client-side technologies implemented in the web browser

At first you will be faced with problems that will require little to no knowledge of web scripting language. Pretty soon the plot thickens ...

These challenges confront you to the use of scripting languages and client-side programming. They are mostly scripts to analyze and understand. This will allow you to learn languages which are in widespread use on the internet.

Prerequisites:
 Understanding a scripting language such javascript/vbscript
 Understanding the operation of a debugger such firebug/javascript console

 29 Challenges

Results Name Validations Number of points  Explanation for the scores Difficulty  Difficulty Author Note  Notation Solution Date
pas_valide HTML - disabled buttons 40% 98468 5 Final 10 16 July 2017
pas_valide Javascript - Authentication 46% 112553 5 g0uZ 9 8 October 2006
pas_valide Javascript - Source 44% 107194 5 g0uZ 5 7 October 2006
pas_valide Javascript - Authentication 2 40% 97261 10 na5sim 4 3 February 2011
pas_valide Javascript - Obfuscation 1 38% 92904 10 Hel0ck 10 7 October 2006
pas_valide Javascript - Obfuscation 2 33% 79699 10 Hel0ck 7 3 February 2011
pas_valide Javascript - Native code 24% 56882 15 g0uZ 7 13 March 2011
pas_valide Javascript - Webpack 6% 12588 15 CanardMandarin 3 11 August 2020
pas_valide Javascript - Obfuscation 3 19% 44488 30 Hel0ck 8 4 February 2011
pas_valide Web Socket - 0 protection 1% 386 30 Worty 1 22 October 2021
pas_valide XSS - Stored 1 11% 26067 30 g0uZ 10 3 March 2012
pas_valide CSP Bypass - Inline code 1% 1903 35 CanardMandarin 6 27 October 2020
pas_valide CSRF - 0 protection 6% 14544 35 sambecks 8 16 February 2016
pas_valide XSS DOM Based - Introduction 1% 1185 35 Ruulian 2 12 August 2021
pas_valide Flash - Authentication 3% 5083 40 koma 1 18 June 2012
pas_valide XSS DOM Based - AngularJS 1% 324 40 Ruulian 1 12 August 2021
pas_valide XSS DOM Based - Eval 1% 426 40 Ruulian 3 12 August 2021
pas_valide CSP Bypass - Dangling markup 1% 704 45 CanardMandarin 1 27 October 2020
pas_valide CSP Bypass - JSONP 1% 620 45 CanardMandarin 5 27 October 2020
pas_valide CSRF - token bypass 3% 5200 45 sambecks 7 18 February 2016
pas_valide XSS - Reflected 2% 3707 45 pickle 5 16 March 2018
pas_valide CSP Bypass - Dangling markup 2 1% 409 50 CanardMandarin 1 27 October 2020
pas_valide Javascript - Obfuscation 4 3% 5115 50 aaSSfxxx 5 18 July 2011
pas_valide XSS - Stored 2 3% 6068 50 g0uZ 7 4 March 2012
pas_valide XSS DOM Based - Filters Bypass 1% 440 50 Ruulian 4 12 August 2021
pas_valide HTTP Response Splitting 1% 1617 70 Arod 3 7 November 2013
pas_valide Javascript - Obfuscation 5 1% 597 70 Hel0ck 3 4 February 2011
pas_valide XSS - Stored - filter bypass 1% 989 80 Arod 7 2 January 2016
pas_valide XSS - DOM Based 1% 552 85 vic 6 24 December 2016

Challenge Results Challenge Results

Pseudo Challenge Lang Date
Andreis   Javascript - Authentication 2 29 January 2022 at 05:34
Andreis   Javascript - Source 29 January 2022 at 05:11
Andreis   Javascript - Authentication 29 January 2022 at 05:10
Andreis   HTML - disabled buttons 29 January 2022 at 05:08
Hunt3rCod3r   Javascript - Obfuscation 3 29 January 2022 at 04:32
Yusa   Javascript - Obfuscation 2 29 January 2022 at 04:31
karabl   Javascript - Source 29 January 2022 at 04:22
karabl   HTML - disabled buttons 29 January 2022 at 04:20
Yusa   Javascript - Obfuscation 1 29 January 2022 at 04:18
Yusa   Javascript - Authentication 2 29 January 2022 at 04:13