This challenge is a XSS challenge where we have to find xss on a webpage with a unique filtering.

I created this challenge for WWCTF 2024, where participants are tasked with identifying and exploiting two distinct vulnerabilities. The first involves bypassing a Cheerio-based server side HTML sanitizer to execute an XSS attack via an HTML input. The second requires leveraging a logical flaw in the report endpoint to achieve exploitation.

As a member of Team 1nf1n1ty, I developed several intresting web challenges for IRON CTF 2024. These challenges focused on browser side-channel attacks, cookie tossing, CSRF, CSS injection, and various client-side vulnerabilities.

KPMG CTF 2024 Writeup

Tricks from CTF challenges and some learnings from them

From June 21st 2024 to June 23rd 2024 i have participated in an exhilarating 48-hour Capture The Flag (CTF) event organized by IIT Jammu in collaboration with DRDO. This highly competitive event brought together some of the brightest minds in cybersecurity from across India.

After an intense and demanding 48 hours, I am thrilled to share that I secured 4th place in the competition, a significant achievement considering the high level of participation and the difficulty of the challenges. This experience not only tested my skills but also provided an invaluable opportunity to learn and grow in the field of cybersecurity.