Copy of Copy of New Team(1)
1st place
23400 points
Members
| User Name | Score |
|---|---|
| jeremy.rodi Captain | 21350 |
| Adam | 2050 |
Awards
Hint 77
hints
Hint for Ephemeral Accountant
-70
Hint 78
hints
Hint for Ephemeral Accountant
-70
Hint 79
hints
Hint for Ephemeral Accountant
-70
Hint 80
hints
Hint for Ephemeral Accountant
-70
Hint 146
hints
Hint for Leaked Unsafe Product
-70
Hint 147
hints
Hint for Leaked Unsafe Product
-70
Hint 62
hints
Hint for Database Schema
-45
Hint 63
hints
Hint for Database Schema
-45
Hint 64
hints
Hint for Database Schema
-45
Hint 65
hints
Hint for Database Schema
-45
Hint 5
hints
Hint for Access Log
-70
Hint 6
hints
Hint for Access Log
-70
Hint 7
hints
Hint for Access Log
-70
Hint 8
hints
Hint for Access Log
-70
Hint 373
hints
Hint for Security Advisory
-45
Hint 223
hints
Hint for Privacy Policy Inspection
-45
Hint 308
hints
Hint for Weird Crypto
-25
Hint 309
hints
Hint for Weird Crypto
-25
Hint 358
hints
Hint for Poison Null Byte
-70
Hint 359
hints
Hint for Poison Null Byte
-70
Hint 360
hints
Hint for Poison Null Byte
-70
Hint 361
hints
Hint for Poison Null Byte
-70
Solves
| Challenge | Category | Value | Time |
|---|---|---|---|
| Exposed credentials | Sensitive Data Exposure | 250 | |
| Ephemeral Accountant | Injection | 700 | |
| Database Schema | Injection | 450 | |
| Leaked Unsafe Product | Sensitive Data Exposure | 700 | |
| User Credentials | Injection | 700 | |
| Christmas Special | Injection | 700 | |
| Multiple Likes | Broken Anti Automation | 1350 | |
| Login MC SafeSearch | Sensitive Data Exposure | 250 | |
| GDPR Data Erasure | Broken Authentication | 450 | |
| Login Amy | Sensitive Data Exposure | 450 | |
| CAPTCHA Bypass | Broken Anti Automation | 450 | |
| Security Advisory | Miscellaneous | 450 | |
| Security Policy | Miscellaneous | 250 | |
| Upload Type | Improper Input Validation | 450 | |
| Missing Encoding | Improper Input Validation | 100 | |
| Privacy Policy Inspection | Security through Obscurity | 450 | |
| Nested Easter Egg | Cryptographic Issues | 700 | |
| Easter Egg | Broken Access Control | 700 | |
| Misplaced Signature File | Sensitive Data Exposure | 700 | |
| Forgotten Developer Backup | Sensitive Data Exposure | 700 | |
| Poison Null Byte | Improper Input Validation | 700 | |
| Forgotten Sales Backup | Sensitive Data Exposure | 700 | |
| Blockchain Hype | Security through Obscurity | 1000 | |
| Login Support Team | Security Misconfiguration | 1350 | |
| Web3 Sandbox | Broken Access Control | 100 | |
| NoSQL Manipulation | Injection | 700 | |
| Login Bjoern | Broken Authentication | 700 | |
| Password Strength | Broken Authentication | 250 | |
| Upload Size | Improper Input Validation | 450 | |
| Login Jim | Injection | 450 | |
| Login Bender | Injection | 450 | |
| Login Admin | Injection | 250 | |
| Payback Time | Improper Input Validation | 450 | |
| Repetitive Registration | Improper Input Validation | 100 | |
| Empty User Registration | Improper Input Validation | 250 | |
| Admin Registration | Improper Input Validation | 450 | |
| Score Board | Miscellaneous | 100 | |
| Unsigned JWT | Vulnerable Components | 1000 | |
| Admin Section | Broken Access Control | 250 | |
| Five-Star Feedback | Broken Access Control | 250 | |
| SSRF | Broken Access Control | 1350 | |
| Confidential Document | Sensitive Data Exposure | 100 | |
| Meta Geo Stalking | Sensitive Data Exposure | 250 | |
| Bully Chatbot | Miscellaneous | 100 | |
| Manipulate Basket | Broken Access Control | 450 | |
| View Basket | Broken Access Control | 250 | |
| Forged Review | Broken Access Control | 450 | |
| Error Handling | Security Misconfiguration | 100 | |
| Zero Stars | Improper Input Validation | 100 | |
| Forged Feedback | Broken Access Control | 450 | |
| Privacy Policy | Miscellaneous | 100 | |
| Exposed Metrics | Sensitive Data Exposure | 100 |