2020-10-08

[public] 22.2K views, 1.12K likes, 8.00 dislikes audio only

LiveOverflow

In the second part we are building on top of what we have learned. We figure out how to craft something special out of a very limited script gadget. Eventually we can use it to leak the secret notes ID and notes content.

Part 1: /youtube/video/dZXaQKEE3A8

Challenge: https://capturetheflag.withgoogle.com/challenges/web-littlethings

Pasteurize: /youtube/video/Tw7ucd2lKBk

00:00 - Recap Part 1

00:20 - Start of the Attack Chain

00:54 - Control the Theme Callback

02:29 - Prior JSONP Capability Research

04:40 - innerHTML Breakthrough

06:13 - Content Security Policy Fail

07:19 - iframe CSP Bypass

08:31 - The Solution

10:09 - Chaining Three Gadgets

11:34 - Researching Cool XSS Techniques

12:00 - Solving the Challenge

13:25 - Outro

-=[ ❤️ Support ]=-

→ per Video: https://www.patreon.com/join/liveoverflow

→ per Month: https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w/join

-=[ 🐕 Social ]=-

→ Twitter: https://twitter.com/LiveOverflow/

→ Website: https://liveoverflow.com/

→ Subreddit: https://www.reddit.com/r/LiveOverflow/

→ Facebook: https://www.facebook.com/LiveOverflow/