JSON Injection

Content Injection.

JSON injection is super similar to the YAML injection you just did. It focuses on manipulating the naive parsing of vulnerable inputs. In this module you will learn how to manipulate this slightly more complex form of injection through the understanding of JSON structure and logic.

Challenges

The goal of this challenge is to manipulate the injection vulerability in the JSON file that stores the login info of each user to make the server think you are the teacher. This is going to look nearly identical to the first YAML challenge, except the structure of the payload will look quite different.

Connect with SSH

Link your SSH key, then connect with: ssh hacker@pwn.college

30-Day Scoreboard:

This scoreboard reflects solves for challenges in this module after the module launched in this dojo.

7-Day | 30-Day | All-Time

Rank		Hacker	Badges		Score

JSON Injection

Content Injection.

Challenges

Teacher Login 5 10 solves

Teacher Login 5

Connect with SSH

30-Day Scoreboard: