Slashdot Mirror

← Back to Stories (view on slashdot.org)

Network Computing Editor Wins RSA Hacking Contest

Posted by Zonk on from the hack-on-hack-off dept.

richkarpi writes "Network Computing's security editor won the recent RSA Interactive Testing Challenge. He has up a blow-by-blow description of the events at their site: 'The most important factor in the contest besides basic web exploitation skills (cross site scripting (XSS), SQL injection, cross site request forgeries (CSRF), etc.) was speed ... I squeaked out a win in the tie-breaking challenge the first day with only a few seconds to spare as my opponent was right behind in the hunt to combine three injectable fields into one long javascript function.'"

4 of 65 comments (clear)

  1. Meh by DavidHOzAu · · Score: 5, Funny

    A real hacker would've cracked open the server the day before and gotten the answers before entering the competition.

    1. Re:Meh by numatrix · · Score: 5, Insightful

      Actually, last year HD Moore did exactly that -- cracked the vmware image using the metasploit framework and won that way. According to the conference organizers anyway.

      Besides, I never claimed that I was a "real hacker". :-)

      (yes, that's me. Holy crap, I've been slashdotted!)

  2. Time victory = valid? by glittalogik · · Score: 5, Funny

    Because typing speed is everything when you and your buddies are hacking the Gibson via a payphone.

  3. Yeah, sure.... by d474 · · Score: 5, Funny

    "He has up a blow-by-blow description of the events at their site..."
    Ha Ha...I'm not falling for that one. One minute your innocently reading a post on Slashdot about some 1337 web hacker asking you to check out his website, the next minute he's robbing your grandma's bank account...

    Mitnick warned me about hacker tricks like that... I for one am not going to RTFA!
    --
    Authority questions you. Return the favor.