saritfeder
1st place
33505 points
Awards
Hint 9
hints
Hint for Location Info
0
Hint 108
hints
Hint for Question 011
0
Hint 17
hints
Hint for GenAI Challenge 02
-20
Hint 148
hints
Hint for Security Bugs Question 1
0
Hint 96
hints
Hint for Scenario 3 - Mitigating Risk During Feature Planning
0
Hint 94
hints
Hint for Scenario 1 - Balancing Testing Investment and Feature Delivery
0
Solves
| Challenge | Category | Value | Time |
| Unsigned JWT | Vulnerable Components | 1000 | |
| Allowlist Bypass | Unvalidated Redirects | 700 | |
| Retrieve Blueprint | Sensitive Data Exposure | 1000 | |
| Leaked Access Logs | Sensitive Data Exposure | 1000 | |
| Email Leak | Sensitive Data Exposure | 1000 | |
| Leaked Unsafe Product | Sensitive Data Exposure | 700 | |
| GDPR Data Theft | Sensitive Data Exposure | 700 | |
| Access Log | Sensitive Data Exposure | 700 | |
| Login Amy | Sensitive Data Exposure | 450 | |
| Exposed Metrics | Sensitive Data Exposure | 100 | |
| Outdated Allowlist | Unvalidated Redirects | 100 | |
| Confidential Document | Sensitive Data Exposure | 100 | |
| Deprecated Interface | Security Misconfiguration | 250 | |
| Security Policy | Miscellaneous | 250 | |
| Privacy Policy | Miscellaneous | 100 | |
| User Credentials | Injection | 700 | |
| NoSQL Manipulation | Injection | 700 | |
| Christmas Special | Injection | 700 | |
| Login Jim | Injection | 450 | |
| Database Schema | Injection | 450 | |
| Deluxe Fraud | Improper Input Validation | 450 | |
| Upload Type | Improper Input Validation | 450 | |
| Upload Size | Improper Input Validation | 450 | |
| Payback Time | Improper Input Validation | 450 | |
| Admin Registration | Improper Input Validation | 450 | |
| Missing Encoding | Improper Input Validation | 100 | |
| Zero Stars | Improper Input Validation | 100 | |
| Repetitive Registration | Improper Input Validation | 100 | |
| Forged Coupon | Cryptographic Issues | 1350 | |
| Forgotten Sales Backup | Sensitive Data Exposure | 700 | |
| Weird Crypto | Cryptographic Issues | 250 | |
| Two Factor Authentication | Broken Authentication | 1000 | |
| Change Bender's Password | Broken Authentication | 1000 | |
| Login Bender | Injection | 450 | |
| Login Bjoern | Broken Authentication | 700 | |
| Misplaced Signature File | Sensitive Data Exposure | 700 | |
| GDPR Data Erasure | Broken Authentication | 450 | |
| Bjoern's Favorite Pet | Broken Authentication | 450 | |
| Forgotten Developer Backup | Sensitive Data Exposure | 700 | |
| Password Strength | Broken Authentication | 250 | |
| Multiple Likes | Broken Anti Automation | 1350 | |
| Extra Language | Broken Anti Automation | 1000 | |
| CAPTCHA Bypass | Broken Anti Automation | 450 | |
| Score Board | Miscellaneous | 100 | |
| Nested Easter Egg | Cryptographic Issues | 700 | |
| Product Tampering | Broken Access Control | 450 | |
| Manipulate Basket | Broken Access Control | 450 | |
| Forged Review | Broken Access Control | 450 | |
| Forged Feedback | Broken Access Control | 450 | |
| View Basket | Broken Access Control | 250 | |
| Five-Star Feedback | Broken Access Control | 250 | |
| Admin Section | Broken Access Control | 250 | |
| Login Admin | Injection | 250 | |
| Error Handling | Security Misconfiguration | 100 | |
| Supply Chain Attack | Vulnerable Components | 1000 | |
| Vulnerable Library | Vulnerable Components | 700 | |
| Legacy Typosquatting | Vulnerable Components | 700 | |
| Question 056 | Questions | 20 | |
| Question 055 | Questions | 20 | |
| Question 054 | Questions | 20 | |
| Question 053 | Questions | 20 | |
| Question 052 | Questions | 20 | |
| Question 051 | Questions | 20 | |
| Question 050 | Questions | 20 | |
| Question 049 | Questions | 20 | |
| Question 048 | Questions | 20 | |
| Question 047 | Questions | 20 | |
| Question 045 | Questions | 20 | |
| Question 044 | Questions | 20 | |
| Question 043 | Questions | 20 | |
| Question 042 | Questions | 20 | |
| Question 041 | Questions | 20 | |
| Question 039 | Questions | 20 | |
| Question 038 | Questions | 20 | |
| Question 037 | Questions | 20 | |
| Question 036 | Questions | 20 | |
| Question 035 | Questions | 20 | |
| Question 034 | Questions | 20 | |
| Question 033 | Questions | 20 | |
| Question 032 | Questions | 20 | |
| Question 031 | Questions | 20 | |
| Question 030 | Questions | 20 | |
| Question 028 | Questions | 20 | |
| Question 027 | Questions | 20 | |
| Question 026 | Questions | 20 | |
| Question 024 | Questions | 20 | |
| Question 023 | Questions | 20 | |
| Question 022 | Questions | 20 | |
| Question 021 | Questions | 20 | |
| Question 020 | Questions | 20 | |
| Question 019 | Questions | 20 | |
| Question 018 | Questions | 20 | |
| Question 017 | Questions | 20 | |
| Question 016 | Questions | 20 | |
| Question 015 | Questions | 20 | |
| Question 013 | Questions | 20 | |
| Question 011 | Questions | 20 | |
| Question 010 | Questions | 20 | |
| Question 009 | Questions | 20 | |
| Question 008 | Questions | 20 | |
| Question 007 | Questions | 20 | |
| Question 006 | Questions | 20 | |
| Question 005 | Questions | 20 | |
| Question 004 | Questions | 20 | |
| Question 003 | Questions | 20 | |
| Question 002 | Questions | 20 | |
| Question 001 | Questions | 20 | |
| GenAI Challenge 01 | Generative AI | 20 | |
| Unlock Individual Challenges | Unlock | 5 | |
| Security Bugs Scenario 5 - Bonus | Essentials - Security Bugs | 80 | |
| Security Bugs Scenario 3 | Essentials - Security Bugs | 80 | |
| Security Bugs Scenario 2 | Essentials - Security Bugs | 80 | |
| Security Bugs Scenario 1 | Essentials - Security Bugs | 80 | |
| Security Bugs Question 3 | Essentials - Security Bugs | 20 | |
| Security Bugs Question 2 | Essentials - Security Bugs | 20 | |
| Security Bugs Question 1 | Essentials - Security Bugs | 20 | |
| Security Bugs Prerequisites | Essentials - Security Bugs | 20 | |
| Secret Management Question 6 | Essentials - Secret Management | 80 | |
| Scenario 3 - Mitigating Risk During Feature Planning | Essentials - Quality | 20 | |
| Scenario 2 - Diagnosing and Mitigating Latency Spikes in Production | Essentials - Quality | 20 | |
| Data Classification Scenario 4 | Essentials - Data Classification | 80 | |
| Data Classification Scenario 1 | Essentials - Data Classification | 80 | |
| Security Standards Scenario 4 | Essentials - Security Standards | 80 | |
| Security Standards Scenario 3 | Essentials - Security Standards | 80 | |
| Security Standards Scenario 2 | Essentials - Security Standards | 80 | |
| Security Standards Scenario 1 | Essentials - Security Standards | 80 | |
| Security Standards Prerequisites | Essentials - Security Standards | 20 | |
| Secret Management Question 5 | Essentials - Secret Management | 80 | |
| Secret Management Question 4 | Essentials - Secret Management | 80 | |
| Secret Management Question 3 | Essentials - Secret Management | 80 | |
| Secret Management Question 2 | Essentials - Secret Management | 80 | |
| Secret Management Question 1 | Essentials - Secret Management | 80 | |
| Secret Management Prerequisites | Essentials - Secret Management | 20 | |
| Data Classification Scenario 8 | Essentials - Data Classification | 80 | |
| Data Classification Scenario 7 | Essentials - Data Classification | 80 | |
| Data Classification Scenario 6 | Essentials - Data Classification | 80 | |
| Data Classification Scenario 3 | Essentials - Data Classification | 80 | |
| Data Classification Scenario 2 | Essentials - Data Classification | 80 | |
| Data Classification Prerequisites | Essentials - Data Classification | 20 | |
| Scenario 4 - High-Risk Deployment and Compliance | Essentials - Quality | 20 | |
| Scenario 1 - Balancing Testing Investment and Feature Delivery | Essentials - Quality | 20 |