Bugpoc XSS Challenge 2

Bugpoc XSS Challenge 2
Exploiting an open message reciever and an Angular CSTI to get cross site scripting on a seemingly innocuous site.

Android App Hacking: Hardcoded Credentials

Decompiling an Android app to reveal hardcoded usernames and passwords.

Stored XSS Leads to Plaintext Password Disclosure

Uploading a malicious HTML file to the web application to get XSS and decode a sensitive cookie.

UTCTF 2020 - Chatt With Bratt

UTCTF 2020 - Chatt With Bratt
Send XSSHunter payload to a chat bot to read their cookie.

UTCTF 2020 - Observe Closely

UTCTF 2020 - Observe Closely
Using Binwalk to extract a binary from an image.