CSP Bypass - Nonce

50 Points  0x0

Always do random

Author

Ruulian,  

Level  Difficulty

Validations

103 Challengers 1%

Note  Notation

20 Votes

To reach this part of the site please login

solutions  Solution

Challenge Results Challenge Results

Pseudo Challenge Lang Date
thoms Web - Client  CSP Bypass - Nonce fr 22 May 2022 at 20:06
SWI-7 Web - Client  CSP Bypass - Nonce fr 22 May 2022 at 18:29
DNA Web - Client  CSP Bypass - Nonce fr 22 May 2022 at 16:13
Cryptanalyse Web - Client  CSP Bypass - Nonce fr 22 May 2022 at 10:32
Vozec Web - Client  CSP Bypass - Nonce fr 21 May 2022 at 12:40
O_0 Web - Client  CSP Bypass - Nonce fr 21 May 2022 at 11:57
rmme Web - Client  CSP Bypass - Nonce fr 20 May 2022 at 13:28
gigot39 Web - Client  CSP Bypass - Nonce fr 19 May 2022 at 20:56
tpwl Web - Client  CSP Bypass - Nonce fr 19 May 2022 at 17:59
vlzpmr Web - Client  CSP Bypass - Nonce fr 19 May 2022 at 17:42

challenges 33 Challenges

Results Name Validations Number of points  Explanation for the scores Difficulty  Difficulty Author Note  Notation Solution Date
pas_valide HTML - disabled buttons 41% 105295 5 Final 10 16 July 2017
pas_valide Javascript - Authentication 47% 118669 5 g0uZ 9 8 October 2006
pas_valide Javascript - Source 44% 112794 5 g0uZ 5 7 October 2006
pas_valide Javascript - Authentication 2 40% 102608 10 na5sim 4 3 February 2011
pas_valide Javascript - Obfuscation 1 39% 97958 10 Hel0ck 10 7 October 2006
pas_valide Javascript - Obfuscation 2 33% 84085 10 Hel0ck 7 3 February 2011
pas_valide Javascript - Native code 24% 60553 15 g0uZ 8 13 March 2011
pas_valide Javascript - Webpack 6% 15117 15 CanardMandarin 3 11 August 2020
pas_valide Javascript - Obfuscation 3 19% 47048 30 Hel0ck 8 4 February 2011
pas_valide XSS - Stored 1 11% 27497 30 g0uZ 10 3 March 2012
pas_valide CSP Bypass - Inline code 1% 2265 35 CanardMandarin 6 27 October 2020
pas_valide CSRF - 0 protection 6% 15318 35 sambecks 8 16 February 2016
pas_valide Web Socket - 0 protection 1% 446 35 Worty 1 22 October 2021
pas_valide XSS DOM Based - Introduction 1% 1722 35 Ruulian 3 12 August 2021
pas_valide Flash - Authentication 3% 5246 40 koma 1 18 June 2012
pas_valide XSS DOM Based - AngularJS 1% 619 40 Ruulian 1 12 August 2021
pas_valide XSS DOM Based - Eval 1% 706 40 Ruulian 4 12 August 2021
pas_valide CSP Bypass - Dangling markup 1% 841 45 CanardMandarin 1 27 October 2020
pas_valide CSP Bypass - JSONP 1% 713 45 CanardMandarin 5 27 October 2020
pas_valide CSRF - token bypass 3% 5482 45 sambecks 7 18 February 2016
pas_valide XSS - Reflected 2% 4010 45 pickle 5 16 March 2018
pas_valide CSP Bypass - Dangling markup 2 1% 518 50 CanardMandarin 1 27 October 2020
pas_valide CSP Bypass - Nonce 1% 103 50 Ruulian 0 8 April 2022
pas_valide CSS - Exfiltration 1% 146 50 Forgi 0 8 April 2022
pas_valide Javascript - Obfuscation 4 3% 5385 50 aaSSfxxx 5 18 July 2011
pas_valide XSS - Stored 2 3% 6427 50 g0uZ 7 4 March 2012
pas_valide XSS DOM Based - Filters Bypass 1% 608 50 Ruulian 4 12 August 2021
pas_valide DOM Clobbering 1% 17 60 Mizu 0 8 April 2022
pas_valide HTTP Response Splitting 1% 1729 70 Arod 3 7 November 2013
pas_valide Javascript - Obfuscation 5 1% 617 70 Hel0ck 3 4 February 2011
pas_valide XS Leaks 1% 7 75 Mizu 0 8 April 2022
pas_valide XSS - Stored - filter bypass 1% 1055 80 Arod 7 2 January 2016
pas_valide XSS - DOM Based 1% 604 85 vic 6 24 December 2016