Red team

Javascript authentication

Green team
Blue team
Purple team
Indigo team
Broomstick Brief
Ty Myrddin

Initializing search

Red team

Fox stealth. Raccoon grit. Squirrel-level entitlement.
Fox stealth. Raccoon grit. Squirrel-level entitlement.
- IN: Where the falcons and foxes roam
  IN: Where the falcons and foxes roam
  - Swoop like falcons, silent, precise, and lethally patient
  - Mapping the lay of the land
  - Fox hunting through the digital wilds
  - A canopy of apple-blossom
    
    A canopy of apple-blossom
    
    Field notes from the fragrant branches of web app exploitation
    
    Portswigger Academy labs: Controlled burn
    
    Root-me: Orchard foraging
    
    Root-me: Orchard foraging
    
    Root-Me Web client challenges
    
    Root-Me Web client challenges
    
    HTML disabled buttons
    
    Javascript authentication
    
    Javascript source
    
    Javascript native code
    
    XSS stored 1
    
    CSP bypass inline
    
    CSRF: zero protection
    
    Root-Me Web server challenges
    
    Petals and pentesting priorities
  - Getting a foothold in the top of the world tree
  - Hack the planet? Nah, just hold the door for me
  - Where wild boars plough through endpoints
  - Wolverines do not ask for permissions
  - Riches in the ground
- THROUGH: Where the raccoons burrow and rummage
- OUT: Where squirrels swipe the crown jewels

Javascript authentication¶

root-me challenge: Javascript - Authentication

http://challenge01.root-me.org/web-client/ch9/login.js

Last update: 2025-05-19 17:27

Previous HTML disabled buttons

Next Javascript source

© Copyright 2025, TyMyrddin.

Created using Sphinx 7.2.6. and Sphinx-Immaterial

Made with love in the Unseen University, 2025, with a forest garden fostered by /ut7