LA CTF 2024 — Jason Web Token
Abusing Python’s floating point arithmetic to forge JWT-like tokens — when float(‘inf’) meets type juggling.
Rickbonavigo
srdnlen 2023 — Free Real Estate
·242 words·2 mins
Re-entrancy attack on a Solidity smart contract — bypassing extcodesize checks and draining tokens from a fake ad service.