DEADFACE CTF 2022 Writeup
Another writeup for the really interesting CTF game I played last weekend! Luckily to find a prototype pollution challenge in the game.
Read moreGoogle XSS Game Exploit & Patch
Hi, here are six easy but interesting XSS games hosted by Google. This blog records the writeup, how to patch these vulns and CSP-based protection strategies. More importantly, I summarized the browser parsing process in terms of the timing of different decoding occurring.
Read more