Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

CTF@CIT Web Challenge Walkthroughs - 5 Web Security Vulnerabilities Explained

CryptoCat via YouTube

Start learning Write review
Boot.dev Ad

Learn Backend Development Part-Time, Online

Learn More → Coursera Ad

40% Off All Coursera Courses

Learn More →

Overview

Coursera Flash Sale
40% Off Coursera Plus for 3 Months!
Grab it
This video walkthrough demonstrates solutions for five web challenges from the 2025 CIT@CTF competition, covering essential cybersecurity techniques. Learn how to exploit SQL injection vulnerabilities to bypass authentication, extract sensitive information from git repository history using git-dumper, perform local file reads by bypassing basic filters, manipulate Flask session cookies for server-side template injection (SSTI) attacks, and leverage credential reuse combined with HTTP method tampering. The 17-minute tutorial includes practical demonstrations with accompanying writeups available on the creator's website, making it ideal for CTF participants and cybersecurity enthusiasts looking to enhance their web exploitation skills. The content is organized into clear sections with timestamps for easy navigation through each challenge solution.

Syllabus

0:00 Intro
0:06 Breaking authentication SQLi
2:20 Commit & Order: Version Control Unit git dumping / history
4:25 How I Parsed your JSON local file read with basic filter
7:30 Mr. Chatbot flask session tampering and SSTI
14:40 Keeping Up with the Credentials reused credentials and HTTP verb tampering
16:20 Conclusion

Taught by

CryptoCat

Reviews

Start your review of CTF@CIT Web Challenge Walkthroughs - 5 Web Security Vulnerabilities Explained

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.