Oops, No Victims: The Largest Supply Chain Attack Stole 5 Cents

-
Image
The Biggest NPM Supply Chain Attack What is a Supply Chain Attack? A supply chain attack occurs when attackers target trusted third-party components, such as libraries or registries, instead of attacking users directly. By injecting malicious code at the source, they can spread it to all downstream users. These attacks are dangerous because updates happen automatically in build pipelines, making detection harder. A small modification in a common dependency can silently compromise thousands of projects. Defenses require strong authentication, artifact signing, reproducible builds, and active monitoring of supply chain integrity. Introduction On September 8, 2025, the npm ecosystem faced one of its largest compromises. A maintainer’s account was hijacked, and malicious versions of popular packages were published. Since npm packages are used globally in countless projects, the exposure was immediate and severe. Although the financial damage was limited, the operational dis...
Post a Comment

Flask Cookie

-

A cookie is a small piece of data stored on the user’s browser by a website. It helps websites remember user preferences, authentication status, and other session-related data.

Key features of ccookies:

  • ✅ Stored on the client-side (browser).
  • ✅ Sent with each request to the server.
  • ✅ Used for sessions, authentication, tracking, and personalization.
  • ✅ Can have attributes like expiration time, HTTPOnly, Secure, and SameSite for security.

🏗 What is a Flask Cookie?

A Flask cookie is a way to store data on the user’s browser using Flask’s set_cookie() method. Flask allows developers to set, read, and delete cookies easily.

How Flask Uses Cookies:

  • 1️⃣ Setting a Cookie: resp.set_cookie('key', 'value')
  • 2️⃣ Getting a Cookie: request.cookies.get('key')
  • 3️⃣ Deleting a Cookie: resp.set_cookie('key', '', expires=0)
from flask import Flask, render_template, request, url_for, redirect, make_response, flash, session
import random
app = Flask(__name__)
flag_value = open("./flag").read().rstrip()
title = "Most Cookies"
cookie_names = ["snickerdoodle", "chocolate chip", "oatmeal raisin", "gingersnap", "shortbread", "peanut butter", "whoopie pie", "sugar", "molasses", "kiss", "biscotti", "butter", "spritz", "snowball", "drop", "thumbprint", "pinwheel", "wafer", "macaroon", "fortune", "crinkle", "icebox", "gingerbread", "tassie", "lebkuchen", "macaron", "black and white", "white chocolate macadamia"]
app.secret_key = random.choice(cookie_names)

@app.route("/")
def main():
	if session.get("very_auth"):
		check = session["very_auth"]
		if check == "blank":
			return render_template("index.html", title=title)
		else:
			return make_response(redirect("/display"))
	else:
		resp = make_response(redirect("/"))
		session["very_auth"] = "blank"
		return resp

@app.route("/search", methods=["GET", "POST"])
def search():
	if "name" in request.form and request.form["name"] in cookie_names:
		resp = make_response(redirect("/display"))
		session["very_auth"] = request.form["name"]
		return resp
	else:
		message = "That doesn't appear to be a valid cookie."
		category = "danger"
		flash(message, category)
		resp = make_response(redirect("/"))
		session["very_auth"] = "blank"
		return resp

@app.route("/reset")
def reset():
	resp = make_response(redirect("/"))
	session.pop("very_auth", None)
	return resp

@app.route("/display", methods=["GET"])
def flag():
	if session.get("very_auth"):
		check = session["very_auth"]
		if check == "admin":
			resp = make_response(render_template("flag.html", value=flag_value, title=title))
			return resp
		flash("That is a cookie! Not very special though...", "success")
		return render_template("not-flag.html", title=title, cookie_name=session["very_auth"])
	else:
		resp = make_response(redirect("/"))
		session["very_auth"] = "blank"
		return resp

if __name__ == "__main__":
	app.run()

This is the PicoCTF Web Exploitation Most Cookies challenge, which can be solved by exploiting a Flask cookie vulnerability.

Entering the sugar cookie name, which is already present in the Python cookie name list, will set very_auth to 'sugar', generating the sugar cookie.

Install the flask-unsign package from the Python library using pip. You can find it on this website: https://pypi.org/project/flask-unsign/.

Refer this: https://stackoverflow.com/questions/77340063/flask-session-cookie-tampering 


cookies = ["snickerdoodle", "chocolate chip", "oatmeal raisin", "gingersnap", "shortbread", "peanut butter", "whoopie pie", "sugar", "molasses", "kiss", "biscotti", "butter", "spritz", "snowball", "drop", "thumbprint", "pinwheel", "wafer", "macaroon", "fortune", "crinkle", "icebox", "gingerbread", "tassie", "lebkuchen", "macaron", "black and white", "white chocolate macadamia"]

file = open("cookies.txt", "w")

for cookie in cookies:
	with open("cookies.txt", "a") as cookie_file:
		cookie_file.write(f"{cookie}\n")

file.close()

Generate the wordlist because the cookie secret key is randomly chosen from the cookie names, as clearly described in the first Python code.

We found the secret key, which was fortune. Using this secret key, we can change very_auth to 'admin' and generate a cookie for the admin. When we pass this cookie, we obtain the flag.

Setting the admin cookie to the sugar cookie value.

Comments

Post a Comment

Popular posts from this blog

AI Agents Assemble: The Future Just Got Smarter!

-
Image
AI Agent 🤖             An  AI Agent  is a computer program that can think and make decisions like a human. It works by observing its surroundings, deciding what to do, and then taking action. These agents are designed to solve problems, complete tasks, and even learn from their mistakes. They don’t need someone to tell them what to do every time they can work on their own. AI Agents use logic, planning, and sometimes learning to get better over time. They can respond to changes, make choices, and keep improving. In simple words, an AI Agent is a smart system that can act on its own using artificial intelligence. It behaves in a way that helps it reach its goals effectively. 1. key Features of an AI Agent:              An AI is an smart software program, that can think, learn and take actions on its own, the key features of an AI Agents includes Reasoning, Acting, Observing, Planning, Col...
Read more

Convolution Neural Network

-
Image
What is a Convolutional Neural Network (CNN)?      A Convolutional Neural Network (CNN) is a type of deep learning model specifically designed to process visual data like images and videos. It works by automatically learning patterns such as edges, textures, shapes, or objects from images without needing manual feature engineering. CNNs are inspired by the way the human visual cortex works and are widely used in computer vision tasks like image classification, object detection, face recognition, and more. CNNs reduce the complexity of image data using a structure of layers that include convolution layers, pooling layers, and fully connected layers. Each layer plays a unique role in extracting, simplifying, and interpreting the visual features. By stacking multiple such layers, CNNs can identify complex patterns and even recognize complete objects. One major advantage is that CNNs learn spatial hierarchies—starting from small patterns like edges to entire objects. CNNs ha...
Read more