I learned a few techniques here and there, but 80% of the time I got stuck because of the limitations of the challenge. you needed to write the exact query the author of the challenge had in mind. I remember a challenge where you had to write an SQL query with "concat(user,0x3a,pass)" where you already knew the user so a simple "pass" made more sense. Is that realistic? :)īeing stuck because the challenge doesn't accept a perfectly correct query is very frustrating. maybe enigmagroup? In a simulated challenge "or 1=1" works but "or 2=2" don't. The few challenges I enjoyed very much weren't simulated (i.e. You need to do certain things in certain ways. They play more like graphic adventure games. These kinds of challenges don't seem very "realistic" to me. I tried the first one but I didn't like it very much. If I remember correctly, I didn't do the realistic missions. OK, I guess the name "Kiuhnm" is pretty unique. How do you know I didn't finish the challenges? :) Play nice, support each other and encourage learning. We are not tech support, these posts should be kept on /r/techsupportĭon't be a dick. Low-effort content will be removed at moderator discretion from security firms/pen testing companies is allowed within the confines of site-wide rules on self promotion found here, but will otherwise be considered spam. Spam is strictly forbidden and will result in a ban. Sharing of personal data is forbidden - no doxxing or IP dumping No "I got hacked" posts unless it's an interesting post-mortem of a unique attack. "How does HSTS prevent SSL stripping?" is a good question. Intermediate questions are welcomed - e.g.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |