XSSGame by Google at #HITB2017AMS β Writeup
26 April 2017 at 10:19
CTFβs homepage
During the last edition ofΒ HITBΒ in Amsterdam we partecipated in theΒ XSSGame by Google: 8Β XSS challenges to win a Nexus 5X. The various levels exposed common vulnerabilities present in modern web apps.
Introduction Each level required to trigger the JavaScriptβs alert functionΒ by creating an URL with a Cross-Site Scripting (XSS) payload inside, which should be executed without any user interaction: once it is executed, the server replies with the link to the following challenge.