bi0s
  •  Home
  •  Categories
  •  Archives
  •  Tags
  •  Home
  •  Categories
  •  Archives
  •  Tags

0_CSP - Securinets-Quals 2023

Lu513n
2023-08-07
Web

tl;dr

  • CRLF Injection in Headed Key in Werkzeug headers.set
  • Using CRLF Injection at /?user= to Get XSS at /helloworld
  • Make the admin visit /?user=<PAYLOAD> and /helloworld using cache poison or bug in regex(uninteded)
Read More
Securinets-Quals CRLF XSS Cache-Poison

Vuln-Drive 2 - bi0sCTF22

ma1f0y
2023-01-24
Web

tl;dr

  • SSRF using file_get_contents() and CRLF in ini_set()
  • basic Header quirks to bypass waf
  • sqli using column trick in SQLite to get the flag
Read More
SSRF CRLF SQLi bi0sCTF22

Notepad Series - InCTF Internationals 2021

Az3z3l
2021-08-16
Web Exploitation

tl;dr

  • Notepad 1 - Use Set-Cookie header to get XSS on the Admin
  • Notepad 1.5 - CRLF on the name parameter of Golang’s Header().Set() method
  • Notepad 2 - Xsleaks using Timing-Allow-Origin header
Read More
InCTFi CRLF XSS Xsleaks

Official blog of team bi0s

  Projects
  •   bi0s-wargame
    (Unraveling)
  •   bi0s-wiki
    (Free Encyclopedia)
  •   InCTF
    (Nationals CTF)
  •   InCTFj
    (Juniors CTF)

Made With Love and Coffee



Blog content follows the Attribution-NonCommercial-ShareAlike 4.0 International (CC BY-NC-SA 4.0) License

Use Material X as theme, total visits times.