# 0623: Protocapture

| Name                                                                   | Authors                                   | Category                            |
| ---------------------------------------------------------------------- | ----------------------------------------- | ----------------------------------- |
| [Intigriti June Challenge (2023)](https://challenge-0623.intigriti.io) | [0xGodson](https://twitter.com/0xGodson_) | Prototype Pollution, reCaptcha, XSS |

## Video Walkthrough

[![Prototype Pollution, reCAPTCHA and XSS - Solution to June '23 Challenge](https://img.youtube.com/vi/Marqe2SEYok/0.jpg)](https://www.youtube.com/watch?v=Marqe2SEYok)

## Challenge Description

> Find a way to execute arbitrary javascript on the challenge page and win Intigriti swag.

## Useful Resources

* [Prototype Pollution](https://portswigger.net/web-security/prototype-pollution)
* [BlackFan: CSPP gadgets (jquery)](https://github.com/BlackFan/client-side-prototype-pollution/blob/master/gadgets/jquery.md)
* [XSS cheatsheet](https://portswigger.net/web-security/cross-site-scripting/cheat-sheet)

## Community Writeups

1. [siss3l](https://gist.github.com/Siss3l/ad6aff55dfca9341a95d2af63ad73ec3)
2. [jmp2esp](https://dnl-trpp.github.io/June-XSS-Challenge-Intigriti.html)
3. [bornunique911](https://systemweakness.com/intigritis-june-xss-challenge-writeup-db34a45a2cc9)
4. [rdjgr](https://hackmd.io/@rdjgr/BJgtsO06P3)
5. [jorenverheyen](https://jorenverheyen.github.io/intigriti-june-2023.html)
6. [tehryanx](https://gist.github.com/tehryanx/418475e29dbcfbe43606fa7c8078dd46)
7. [meispi](https://meispi.github.io/posts/intigriti-xss-challenge-0623)