Du kannst nicht mehr als 25 Themen auswählen Themen müssen mit entweder einem Buchstaben oder einer Ziffer beginnen. Sie können Bindestriche („-“) enthalten und bis zu 35 Zeichen lang sein.
nitowa 66254047e7 rename README vor 2 Jahren
client push vor 2 Jahren
src push vor 2 Jahren
.yarnrc.yml push vor 2 Jahren
Dockerfile push vor 2 Jahren
README.md rename README vor 2 Jahren
package-lock.json push vor 2 Jahren
package.json push vor 2 Jahren
tsconfig.json push vor 2 Jahren
yarn.lock push vor 2 Jahren

README.md

Plaid CTF: Yet Another Calculator App

Participant: Peter Millauer / nitowa (01350868)

TL;DR / Short Summary

Classical XSS web exploit. The solution used special string replacement patterns to break out of string escapes.

Task Description

Analysis Steps

Explain your analysis in detail. Cover all the technical aspects, including the used tools and commands. Mention other collaborators and distinguish contributions.

Vulnerabilities / Exploitable Issue(s)

List security issues you discovered in the scope of the task and how they could be exploited.

Solution

Provide a clean (i.e., without analysis and research steps) guideline to get from the task description to the solution. If you did not finish the task, take your most promising approach as a goal.

Failed Attempts

Describe attempts apart from the solution above which you tried. Recap and try to explain why they did not work.

Alternative Solutions

If you can think of an alternative solution (or there are others already published), compare your attempts with those.

Lessons Learned

Document what you learned during the competition.

References

List external resources (academic papers, technical blogs, CTF writeups, …) you used while working on this task.