paul-saurou 
7090
Position
1750
Points
105
Challenges
0
Compromissions
27%
App - Script
125 Points9 / 33
2%
App - System
15 Points2 / 93
7%
Cracking
35 Points5 / 70
39%
Cryptanalysis
505 Points29 / 75
9%
Forensic
55 Points4 / 44
34%
Programming
195 Points10 / 29
2%
Realist
10 Points1 / 60
41%
Network
255 Points14 / 34
17%
Steganography
35 Points4 / 23
31%
Web - Client
295 Points13 / 42
15%
Web - Server
225 Points14 / 96
- o HTML - Source code
- x HTTP - IP restriction bypass
- o HTTP - Open redirect
- o HTTP - User-agent
- o Weak password
- o PHP - Command injection
- x API - Broken Access
- x Backup file
- o HTTP - Directory indexing
- o HTTP - Headers
- o HTTP - POST
- o HTTP - Improper redirect
- o HTTP - Verb tampering
- x Install files
- x Nginx - Alias Misconfiguration
- x Nginx - Root Location Misconfiguration
- x API - Mass Assignment
- x CRLF
- x File upload - Double extensions
- x File upload - MIME type
- x Flask - Unsecure session
- x GraphQL - Introspection
- o HTTP - Cookies
- x Insecure Code Management
- x JWT - Introduction
- x XSS - Server Side
- o Directory traversal
- x File upload - Null byte
- x JWT - Revoked token
- x JWT - Weak secret
- x JWT - Unsecure File Signature
- x PHP - assert()
- x PHP - Apache configuration
- x PHP - Filters
- x PHP - register globals
- x PHP - Remote Xdebug
- x Python - Server-side Template Injection Introduction
- x File upload - ZIP
- x Flask - Development server
- x GraphQL - Injection
- x Command injection - Filter bypass
- x Java - Server-side Template Injection
- x JWT - Public key
- x JWT - Header Injection
- x Local File Inclusion
- x Local File Inclusion - Double encoding
- x Nginx - SSRF Misconfiguration
- x Node - Eval
- x PHP - Loose Comparison
- x PHP - preg_replace()
- x PHP - type juggling
- x Remote File Inclusion
- o SQL injection - Authentication
- x SQL injection - Authentication - GBK
- o SQL injection - String
- x XSLT - Code execution
- x Elixir - EEx
- x JWT - Unsecure Key Handling
- x LDAP injection - Authentication
- x Node - Serialize
- x NoSQL injection - Authentication
- x PHP - Path Truncation
- x PHP - Serialization
- x SQL injection - Numeric
- x SQL Injection - Routed
- x SQL Truncation
- x XML External Entity
- x XPath injection - Authentication
- x Yaml - Deserialization
- x API - Broken Access 2
- x GraphQL - Backend injection
- x GraphQL - Mutation
- x Java - Spring Boot
- x Local File Inclusion - Wrappers
- x PHP - Eval
- x PHP - Eval - Advanced filters bypass
- x SQL injection - Error
- x SQL injection - Insert
- x SQL injection - File reading
- x XPath injection - String
- x File upload - Polyglot
- x NodeJS - Prototype Pollution Bypass
- x NoSQL injection - Blind
- x SQL injection - Time based
- x Java - Custom gadget deserialization
- x NodeJS - vm escape
- x Server Side Request Forgery
- x SQL injection - Blind
- x LDAP injection - Blind
- x PHP - Unserialize overflow
- x PHP - Unserialize Pop Chain
- x SQL Injection - Second Order
- x Python - dotenv
- x Python - Blind SSTI Filters Bypass
- x XPath injection - Blind
- x SQL injection - Filter bypass