Categories
Bug Hunting

Stored XSS Leads to Plaintext Password Disclosure

1. Upload HTML file using image upload feature.
2. Send user link to uploaded file.
3. User opens link and their AUTHH cookie is decoded, revealing their password.

Categories
Bug Hunting

Android App Hacking: Hardcoded Credentials

1. Unpack APK.
2. Recognize that it is a PhoneGap app.
3. View JavaScript source code to find hardcoded test credentials.
4. Login.

Categories
CTF Writeups

UTCTF 2020 – Observe Closely

1. Use Binwalk to extract hidden binary.
2. Run hidden binary.

Categories
CTF Writeups

UTCTF 2020 – Chatt With Bratt

1. Send XSSHunter payload.
2. View secret cookie in XSSHunter.