terjanq
@terjanq.me
security enthusiast that loves hunting for bugs in the wild. co-founder and player of @justCatTheFish.
infosec at @google. opinions are mine.
From: https://twitter.com/terjanq
infosec at @google. opinions are mine.
From: https://twitter.com/terjanq
One thing that I was missing when using the tool was to get the entire output rather than body. Another thing was being able to copy to clipboard generated input and output. These would be useful!
December 20, 2024 at 5:35 PM
One thing that I was missing when using the tool was to get the entire output rather than body. Another thing was being able to copy to clipboard generated input and output. These would be useful!
The latest version should be quite straightforward. If you like magic, then I recommend checking out the previous version 😄 terjanq.me/solutions/jo...
It includes more trickier races 😅
It includes more trickier races 😅
11 char XSS (slower race-condition)
terjanq.me
December 16, 2024 at 12:15 PM
The latest version should be quite straightforward. If you like magic, then I recommend checking out the previous version 😄 terjanq.me/solutions/jo...
It includes more trickier races 😅
It includes more trickier races 😅
Managed to greatly improve:
* performance
* accurracy
* cross-platform support (should now work on both Chrome & Firefox)
Check out the updated version! 😃
* performance
* accurracy
* cross-platform support (should now work on both Chrome & Firefox)
Check out the updated version! 😃
December 15, 2024 at 4:39 PM
Managed to greatly improve:
* performance
* accurracy
* cross-platform support (should now work on both Chrome & Firefox)
Check out the updated version! 😃
* performance
* accurracy
* cross-platform support (should now work on both Chrome & Firefox)
Check out the updated version! 😃
11 chars with bsky.app/profile/terj...
Got sniped into the challenge and ended up doing some cool XSS research :D
11 char XSS with mind-boggling race-conditions.
TL;DR the final payload is location=x (10 chars) and the longest is top.Z.x=x.d (11 char)
It's shorter than location=name !!
terjanq.me/solutions/jo...
11 char XSS with mind-boggling race-conditions.
TL;DR the final payload is location=x (10 chars) and the longest is top.Z.x=x.d (11 char)
It's shorter than location=name !!
terjanq.me/solutions/jo...
December 14, 2024 at 1:31 PM
11 chars with bsky.app/profile/terj...
Slow race condition but 11 chars! terjanq.me/solutions/jo... Let me know if that works for you. With that, time to stop 😅
11 char with open()
terjanq.me
December 13, 2024 at 8:34 PM
Slow race condition but 11 chars! terjanq.me/solutions/jo... Let me know if that works for you. With that, time to stop 😅
12 with open() terjanq.me/solutions/jo...
Without popups enabled, you have to click on any iframe when the bg becomes pink.
Without popups enabled, you have to click on any iframe when the bg becomes pink.
terjanq.me
December 13, 2024 at 4:28 PM
12 with open() terjanq.me/solutions/jo...
Without popups enabled, you have to click on any iframe when the bg becomes pink.
Without popups enabled, you have to click on any iframe when the bg becomes pink.
I disregarded open() because it needs interaction so I didn't look too much into it. The culprit for buildup. I'm not sure how to make it 11 as top.r.d+="1" is already 12. it should be possible with 12 via top.x.x=top and then open(r.x.d) which is 11
December 13, 2024 at 4:07 PM
I disregarded open() because it needs interaction so I didn't look too much into it. The culprit for buildup. I'm not sure how to make it 11 as top.r.d+="1" is already 12. it should be possible with 12 via top.x.x=top and then open(r.x.d) which is 11
Reposted by terjanq
15 terjanq.me/solutions/jo...
Can be most likely improved but didn't yet figure out how to properly race condition with shorter payloads like top.x.x+="" 😶
Can be most likely improved but didn't yet figure out how to properly race condition with shorter payloads like top.x.x+="" 😶
terjanq.me
December 13, 2024 at 1:24 PM
15 terjanq.me/solutions/jo...
Can be most likely improved but didn't yet figure out how to properly race condition with shorter payloads like top.x.x+="" 😶
Can be most likely improved but didn't yet figure out how to properly race condition with shorter payloads like top.x.x+="" 😶
15 terjanq.me/solutions/jo...
Can be most likely improved but didn't yet figure out how to properly race condition with shorter payloads like top.x.x+="" 😶
Can be most likely improved but didn't yet figure out how to properly race condition with shorter payloads like top.x.x+="" 😶
terjanq.me
December 13, 2024 at 1:24 PM
15 terjanq.me/solutions/jo...
Can be most likely improved but didn't yet figure out how to properly race condition with shorter payloads like top.x.x+="" 😶
Can be most likely improved but didn't yet figure out how to properly race condition with shorter payloads like top.x.x+="" 😶
terjanq.me
December 12, 2024 at 7:28 PM