Welcome, attacker, to your hub. Here you will find links to various resources needed to complete the gauntlet.
To solve a challenge, the following general steps should be taken:
Let the gauntlet begin...
This app is your target. There are several subdomains here vulnerable to CORS attacks.
https://vuln.appsec.nuHere you can create a PoC in the form of a link that will be delivered to the victim.
https://player.samurai.nu/pocgeneratorYou deliver a CORS attack to the victim by exposing them to your malicious JavaScript. This can be done by having the victim visit your domain. In order to simulate this, you may deliver a link to the victim which they will visit.
https://deliver.player.samurai.nuIf your CORS attack was succesful, the victim will have exfiltrated their HTTP response to a server which you can read the HTTP logs from.
You can generate a logging subdomain by clicking the button. Don't share it with anyone else! And keep in mind that the logging is only semi-persistent - there is no guarantee that the logs will remain next time you check them.
Your logging domain (this is where the victim should exfiltrate their response to): http://NOT_YET_GENERATED.player.samurai.nu
View your log: https://player.samurai.nu/log?id=NOT_YET_GENERATED
The victim user has a whitelist of domains it may visit - don't try to exfiltrate their response to another domain!