Web - Client
At first you will be faced with problems that will require little to no knowledge of web scripting language. Pretty soon the plot thickens ...
This series of events confronts you with the use of scripting language / client side programming. They are mostly scripts to analyze and understand. This will allow you to learn this language which is in widespread use on the internet.
Prerequisites:
Understanding a scripting language such javascript / vbscript
Understanding the operation of a debugger such firebug / javascript console
19 Challenges
| Results | Name | Number of points  |
Difficulty |
Author | Note |
Solution |
|
HTML - disabled buttons | 5 | Final |  |
8 | |
|
|
Javascript - Authentication | 5 | g0uZ | |
8 | |
|
|
Javascript - Source | 5 | g0uZ | |
4 | |
|
|
Javascript - Authentication 2 | 10 | na5sim | |
3 | |
|
|
Javascript - Obfuscation 1 | 10 | Hel0ck | |
9 | |
|
|
Javascript - Obfuscation 2 | 10 | Hel0ck | |
6 | |
|
|
Javascript - Native code | 15 | g0uZ |  |
6 | |
|
|
Javascript - Obfuscation 3 | 30 | Hel0ck | |
7 | |
|
|
XSS - Stored 1 | 30 | g0uZ | |
9 | |
|
|
CSRF - 0 protection | 35 | sambecks | |
8 | |
|
|
Flash - Authentication | 40 | koma | |
1 | |
|
|
CSRF - token bypass | 45 | sambecks | |
7 | |
|
|
XSS - Reflected | 45 | pickle | |
3 | |
|
|
Javascript - Obfuscation 4 | 50 | aaSSfxxx | |
5 | |
|
|
XSS - Stored 2 | 50 | g0uZ | |
5 | |
|
|
HTTP Response Splitting | 70 | Arod | |
3 | |
|
|
Javascript - Obfuscation 5 | 70 | Hel0ck | |
3 | |
|
|
XSS - Stored - filter bypass | 80 | Arod, sambecks | |
6 | |
|
|
XSS - DOM Based | 85 | vic | |
5 |
Challenge Results
