x3ctf is finally over, it was such an awesome event and i'm glad i got to host it!
i made a cool little mini-set cursor-party interactive web thing to cap the whole event off, check out the recording if ur interested or try out the live web version linked in desc
www.youtube.com/watch?v=gaak...
i made a cool little mini-set cursor-party interactive web thing to cap the whole event off, check out the recording if ur interested or try out the live web version linked in desc
www.youtube.com/watch?v=gaak...
January 26, 2025 at 8:31 PM
x3ctf is finally over, it was such an awesome event and i'm glad i got to host it!
i made a cool little mini-set cursor-party interactive web thing to cap the whole event off, check out the recording if ur interested or try out the live web version linked in desc
www.youtube.com/watch?v=gaak...
i made a cool little mini-set cursor-party interactive web thing to cap the whole event off, check out the recording if ur interested or try out the live web version linked in desc
www.youtube.com/watch?v=gaak...
During #x3ctf, I discovered an unintended solution that turned out to be a pretty cool generic technique. It allows you to detect the result of a selector during CSS Injection, bypassing any CSP restricting external requests!
Check out the writeup below:
jorianwoltjer.com/blog/p/ctf/x...
Check out the writeup below:
jorianwoltjer.com/blog/p/ctf/x...
Post: x3CTF - blogdog (+ new CSS Injection XS-Leak!) | Jorian Woltjer
A "hard web xssbot" challenge about a fun browser quirk with the is= attribute to perform CSS Injection. Bypass the strict CSP with an unintended new technique to XS-Leak a selector's result by detect...
jorianwoltjer.com
January 26, 2025 at 9:14 PM
During #x3ctf, I discovered an unintended solution that turned out to be a pretty cool generic technique. It allows you to detect the result of a selector during CSS Injection, bypassing any CSP restricting external requests!
Check out the writeup below:
jorianwoltjer.com/blog/p/ctf/x...
Check out the writeup below:
jorianwoltjer.com/blog/p/ctf/x...
made an archive collection site thing for all the x3ctf web design stuff i did
the intro/outro can be rewatched with websocket replay data (eg the messages and synced mouse cursors)
and the platform itself has emulations for auth and flags and stuff
u can check it out at x3c.tf/archive/
the intro/outro can be rewatched with websocket replay data (eg the messages and synced mouse cursors)
and the platform itself has emulations for auth and flags and stuff
u can check it out at x3c.tf/archive/
February 9, 2025 at 10:00 PM
made an archive collection site thing for all the x3ctf web design stuff i did
the intro/outro can be rewatched with websocket replay data (eg the messages and synced mouse cursors)
and the platform itself has emulations for auth and flags and stuff
u can check it out at x3c.tf/archive/
the intro/outro can be rewatched with websocket replay data (eg the messages and synced mouse cursors)
and the platform itself has emulations for auth and flags and stuff
u can check it out at x3c.tf/archive/
We are happy to communicate that we got in 9th place in the event organized by x3CTF. We really enjoyed the event, and we hope to participate in future challenges by them!
x3c.tf#scoreboard
x3c.tf#scoreboard
January 27, 2025 at 10:54 PM
We are happy to communicate that we got in 9th place in the event organized by x3CTF. We really enjoyed the event, and we hope to participate in future challenges by them!
x3c.tf#scoreboard
x3c.tf#scoreboard