ATs Capture The Flag

scratchusername40

Chiroyce wrote:
(#116)
scratchusername40 wrote:
Also did you finish this 8 months ago??
It was an old repl repurposed for this so that i don't expose the URL to people who know me on replit

I was trying to do that before it started

KOTP

Last edited by scratchusername40 (March 19, 2022 15:06:05)

Chiroyce

scratchusername40 wrote:
I was trying to do that before it started

well it failed

kccuber wrote:
i missed it due to some timezone confusion lol

thats a shame - but relatable. i had to wait 3 weeks to rickroll griffpatch because i thought GMT and UK time were the same

(and i made the same mistake twice too!)

scratchusername40

also btw I did this whole challenge in the car, in case you're wondering

Retr0id

Chiroyce wrote:
Retr0id wrote:
2. This was a request I made to my own domain (nxloader.app), so I could inspect the request headers. This is what I saw on my server, using netcat to receive the raw TCP data:
That seemed a bit overkill lol

Perhaps, but it's very easy to do if you have your own server.

For people who don't have their own server, I recommend requestbin.com (if you click “Create a public bin instead” then you don't need to create an account). This gives you similarly detailed request logs, and a nice user interface.

mybearworld

mybearworld wrote:
Did it work?

mybearworld

That was really fun

scratchusername40

mybearworld wrote:
(#126)
That was really fun

yeah it was

-EmeraldThunder-

I missed the whole thing

. Do you plan on doing anything similar again?

Chiroyce

-EmeraldThunder- wrote:
I missed the whole thing . Do you plan on doing anything similar again?

Maybe, not soon though.. does anyone else wanna make one or..?

mybearworld wrote:
mybearworld wrote:
Did it work?

You're meant to follow the instructions on the flag, did you do that?

mybearworld

Chiroyce wrote:
You're meant to follow the instructions on the flag, did you do that?

So it didn't.
(I did that, but I also tried something different, you would know what I'm talking about if it worked)

mybearworld

Chiroyce wrote:
Maybe, not soon though.. does anyone else wanna make one or..?

Yes, but 1. I can't get a server and 2. I'm really bad at finding, and therefore making, vunerabilties, sooo… xD

Chiroyce

mybearworld wrote:
(I did that, but I also tried something different, you would know what I'm talking about if it worked)

Creating a file?

god286

Very cool. Sad this all happened while I was asleep but time zones

scratchusername40

i'd be interested in making one if anyone wants to work with me, or on my own. idk if i could come up with a vulnerability but ¯\_(ツ)_/¯

Last edited by scratchusername40 (March 19, 2022 20:06:01)

-EmeraldThunder-

scratchusername40 wrote:
(#134)
i'd be interested in making one if anyone wants to work with me, or on my own. idk if i could come up with a vulnerability but ¯\_(ツ)_/¯

I could work with you to make one, it'd be fun.

dhuls

scratchusername40 wrote:
(#134)
i'd be interested in making one if anyone wants to work with me, or on my own. idk if i could come up with a vulnerability but ¯\_(ツ)_/¯

XSS

NFlex23

Chiroyce wrote:
(#132)
mybearworld wrote:
(I did that, but I also tried something different, you would know what I'm talking about if it worked)
Creating a file?

I think I created the file; what was it's name?

skymover1239

I am planning on hosting my own, with a different vuln.

Chiroyce

NFlex23 wrote:
I think I created the file; what was it's name?

flag and flag.txt

skymover1239 wrote:
I am planning on hosting my own, with a different vuln.

cool! let us know over here when you finish making it

Last edited by Chiroyce (March 20, 2022 04:27:12)

Chiroyce

the maker of the scratchclient library nuked the home directory of our repl lol

but we have backup, dont worry

- anyways i should've turned the repl off before going to sleep…

Last edited by Chiroyce (March 20, 2022 04:49:00)

Discuss Scratch