capture the flag, cybersecurity education, hacking

@RealTryHackMe #AdventOfCyber Series: Challenge 17 – Filtering For Order Amidst Chaos #TisTheSeasonForHacking

Another day, another challenge…

In this post, we’re starting a new series, the Advent of Cyber, hosted by TryHackMe. This is the fourth year of the Advent of Cyber, where a challenge is released every day leading to Christmas. There will be 25 challenges; we’re McSkidy, an elf trying to save Christmas.

In our seventeenth challenge, Elf McSkidy stumbled upon user-submitted inputs on an unrecognizable web application. She then discovered that Santa’s team hadn’t updated these web applications in a long time.

The topics explored in this challenge are input validation and why it’s essential. We developers should never trust user input, as this input can be malicious. The next topic was regular expressions, a technique used to create an allowed list of permitted characters and numbers for your application.

Can we teach Elf McSkidy regex to update the website? Find out below!

If you enjoy my content, buy me a coffee. Link –>

Leave a Reply