Google CTF 2023 - UNDER - CONSTRUCTION [Web] Walkthrough (HTTP Parameter Pollution)

Welcome to "UnderConstruction," a thrilling web-based Google Capture the Flag security challenge that will test our skills in bypassing validation using HTTP parameter pollution.  

In this challenge, users can belong to different tiers such as: red, green, blue, or even gold. However, the application only reveals the secrete flag to those who log in as gold-tier users. Now Here is the twist: the application validates user creation for the gold tier, by explicitly stating that only the CEO can create such accounts. Now, the question arises: 

Can we break through the barriers and unveil the secrets flag?

Timeline 00:00 Introduction 01:00 Understanding the challenge 01:42 Downloading challenge resources 03:00 Interacting with the web application 05:38 Unstanding the code logic 08:40 Understanding signup validation 09:14 HTTP Parameter Pollution 11:17 HTTP Parameter Pollution using curl 12:59 Getting flag 13:28 Conclusion

[-] Buymeacoffee - https://paystack.com/pay/r007 [-] Twitter - @olajeedae_jnr

#googlectf #NahamCon2023 #hacking #captureflag #capturetheflag #google #informationexposure #informationdisclosure #ctfsec #ctfsecurity #ethicalhacking #hacking #cybersecurity #hacker #hackers #kalilinux #linux #ethicalhacker #programming #infosec #security #pentesting #hackingtools #technology #hack #informationsecurity #cybercrime #coding #cybersecurityawareness #malware #python #cyberattack #cyber #hacked #computerscience #hackerman #programmer #tech #or #anonymous #hackerspace #cybersecuritytraining #hackingnews #secutiy #bugbounty #datasecurity #learnhacking #hackinginstagram #ransomware #termux #termuxhacking #privacy #informationtechnology #ethicalhackers #dataprotection #hackerindonesia #computer #hackernews #phishing #java #coder #developer #blackhathacker #growthhacking #metasploit #exploit #hacks #it #wifihacking #googlectf2023 ... https://www.youtube.com/watch?v=Q35lFDAW5uk