dont-use-client-side

PicoCTF

Author: Alex Fulton/Danny

Description

Can you break into this super secure portal? https://jupiter.challenges.picoctf.org/problem/29835/ (link) or http://jupiter.challenges.picoctf.org:29835

Hint 1

Never trust the client

Upon clicking the link I am presented with the page:

I start by viewing the source code to see if I find anything abnormal.

ctrl + u

This looks oddly suspicious like the flag but is split.

So if I start joining the array together I should be able to get the flag.

picoCTF{no_clients_plz_7723ce}

flag found

PreviousIntroToBurp NextBookmarklet

Last updated 1 year ago