RT @[email protected]

Write-up for Proton (Web-500) hosted by @[email protected] 's hackim CTF 2019, solved by 3 teams total. 😉

Dive into the 'physics' of MongoDB's ObjectID abuse + Prototype Pollution

https://aadityapurani.com/2019/02/03/hackim-nullcon-ctf-2019-proton/

#ctf #hackim #nullcon #hackim19

🐦🔗: https://twitter.com/aaditya_purani/status/1092120541488693248