# 0821: XSS Cookbook

| Name                                                                     | Authors                                          | Category                 |
| ------------------------------------------------------------------------ | ------------------------------------------------ | ------------------------ |
| [Intigriti August Challenge (2021)](https://challenge-0821.intigriti.io) | [WHOISbinit](https://www.twitter.com/WHOISbinit) | XSS, Prototype Pollution |

## Video Walkthrough

[![Prototype pollution in Google Analytics?! Solution to August '21 XSS Challenge](https://img.youtube.com/vi/uvWf62qUqyQ/0.jpg)](https://www.youtube.com/watch?v=uvWf62qUqyQ)

## Challenge Description

> Find a way to execute arbitrary javascript on the challenge page and win Intigriti swag.

## Useful Resources

* [XSS cheatsheet](https://portswigger.net/web-security/cross-site-scripting/cheat-sheet)
* [Prototype Pollution](https://portswigger.net/web-security/prototype-pollution)

## Community Writeups

1. [isira\_adithya](https://blog.isiraadithya.com/intigriti-0821-xss-challenge-writeup)
2. [cyberspark](https://cyberspark.nl/posts/2021/08/intigriti-xss-challenge)
3. [piyush-paliwal](https://piyush-paliwal.medium.com/intigriti-0821-xss-writeup-478e80154bd5)
4. [brunomoficato](https://github.com/BrunoHalltari/CTF-Writeups/tree/master/challenge-0821.intigriti-August_2021)
5. [melotover](https://melotover.medium.com/intigriti-0821-xss-challenge-writeup-5e14c8c334f4)