Please help me! I have a question for this chall
I want solve this chall by XSS and send flag to my host.
My idea is use eval(atob(<payload_fetch_base64>)), so I test in docker and see js doesn't work in browser's bot.
My question is is this direction correct and if so, what needs to be done to let the bot execute js on browser's bot?
#web
작성자 정보
답변
1
keyme
CTF Second Place
When I check CSP, only img tag is allowed. I think you should think of another way to use it.
질문에 대한 답을 알고 계신가요?
지식을 나누고 포인트를 획득해보세요.
답변하고 포인트 받기 지식을 나누고 포인트를 획득해보세요.
