webPromedium

Блекджек на раздевание (Stripping Blackjack)

bug-makers

Task: Express.js blackjack game rigged to always win (botWinPercentage=100), with SQLi in winners search, exposed backup revealing prototype pollution path, and admin panel leaking JWT secret. Solution: chain SQLi → admin credential extraction → MD5 cracking → JWT secret leak → JWT forgery with __proto__ prototype pollution payload to set botWinPercentage=0 → win 3 games.

$ ls tags/ techniques/

sqlite sql_injection game_hacking md5_cracking prototype_pollution express_js jwt_forgery deepmerge node_js blackjack

union_sql_injectionjwt_forgeryjwt_secret_extractionadmin_panel_accessprototype_pollution_via_deepmergemd5_password_crackingsource_code_analysis_via_backup

Analysis

Lorem ipsum dolor sit amet, consectetur adipiscing elit. Sed do eiusmod tempor incididunt ut labore et dolore magna aliqua. Ut enim ad minim veniam, quis nostrud exercitation ullamco laboris nisi ut aliquip ex ea commodo consequat.

$ python3 exploit.py --target 192.168.1.1 --port 8080
[*] Connecting to target...
[+] Shell obtained!

Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est laborum.

🔒

Permission denied (requires tier.pro)

Sign in to access full writeups

$sign in

$ grep --similar

Similar writeups

[web][Pro]Скоростные Пазлы – 2 (Speed Puzzles – 2)— bug-makers
[web][Pro]Арифметика (Arithmetic)— duckerz
[web][Pro]Object Master— hackerlab
[web][Pro]Совсем слепая инъекция (Completely Blind Injection)— bug-makers
[web][Pro]Покажи, если сможешь (Show me if you can)— bug-makers