Monthly Challenges

XSS is one of the most popular vulnerabilities to hunt for. Is it the name radiating coolness? Is it the impact it can have? Is it because that popup is so rewarding? Who knows! All we know at Intigriti is that people LOVE XSS but that many have only scratched the surface of what XSS can be!

In this article, we’ll list all the XSS challenges we’ve hosted in the past, so you can keep on polishing those skills. Leave no XSS uncovered!

Note that some of these challenges may not involve XSS 😉

This page is not actively maintained any longer, check out our new gitbook!

📜 Overview

Challenge-0124: Repo Woes by Kevin Mizu
Challenge-1223: Smartypants Revenge by Protag
Challenge-1023: Pseudonym Generator by Kévin Mizu
Challenge-0923: Secure Database by sgrum0x
Challenge-0823: Pure Functional Math Calculator by huli
Challenge-0723: Video-to-Audio Converter by kavigihan
Challenge-0623: Protocapture by 0xGodson
Challenge-0523: It’s Fun to Review the E.C.M.A by Renwa
Challenge-0423: We Like to Sell Bricks by strangemonkey
Challenge-0323: Incomplete Secure Notes Application by 0xGodson and BrunoModificato
Challenge-0223: Leek NFT by Dr Leek
Challenge-0123: Friends by Samokosik and mrkcdl
Challenge-1222: Christmas blog by fh4ntke
Challenge-1122: Secure Vault by H4R3L
Challenge-1022: Secure notes by 0xGodson_
Challenge-0922: 8 ball by IvarsVids
Challenge-0822: Business card generator by BrunoModificato and aszx87410
Challenge-0722: Awesome kitty blog by Vroemy
Challenge-0622: Recipe by lawrencevl
Challenge-0522: Pollution by PiyushThePal
Challenge-0422: Window Maker by aszx87410
Challenge-0322: Hashing by BrunoModificato
Challenge-0222: Extremely Short Scripting Game by aszx87410
Challenge-0122: Super Secure HTML Viewer by TheRealBrenu
Challenge-1221: Christmas Special by E1u5iv3F0x
Challenge-1121: OWASP Top 10 by IvarsVids
Challenge-1021: Halloween has taken over by 0xTib3rius
Challenge-0921: Password Manager by BugEmir and Pepijn van der Stap
Challenge-0821: XSS Cookbook by WHOISbinit
Challenge-0721: HTML Viewer by RootEval
Challenge-0621: Password Generator by Physuru
Challenge-0521: Math Robot by GrumpinouT
Challenge-0421: WAF by terjanq
Challenge-0321: Notes
Challenge-0121: Challenging
Challenge-1220: Calculator

🧰 Writeups

Challenge-0123: Friends by Samokosik and mrkcdl

⏰ Intigriti’s January Challenge is over!
☑ 22 hackers found the right solution!!
📑 4 hackers wrote a cool writeup!
🏆 Check out the winners below and drop your write-up in the comments!
— Intigriti (@intigriti) January 23, 2023

Challenge-1222: Christmas blog by @fh4ntke

⏰ The XSS challenge is over!
☑ 59 hackers found the right solution!!
📑 4 hackers wrote a cool writeup!
🏆 Check out the winners below and drop your write-up in the comments!
— Intigriti (@intigriti) January 2, 2023

Challenge-1122: Secure vault by @H4R3L

⏰ The XSS challenge is over!
☑ 11 hackers found the right solution!!
📑 2 hackers wrote a cool writeup!
🏆 Check out the winners below and drop your write-up in the comments!
— Intigriti (@intigriti) December 5, 2022

Challenge-1022: Secure notes by @0xGodson_

⏰ It's CHALLENGE O'CLOCK!
👉 Find the XSS before Monday October 24th!
👉 Win €300 in SWAG prizes!
👉 We'll release a tip for every 100 likes on this tweet!
Thanks @0xGodson_ for the challenge! 👇https://t.co/m92MYFhsv9
— Intigriti (@intigriti) October 17, 2022

Challenge-0922: 8 ball by @IvarsVids

⏰ It's CHALLENGE O'CLOCK!
👉 Find the XSS before Monday September 26th!
👉 Win €300 in SWAG prizes!
👉 We'll release a tip for every 100 likes on this tweet!
Thanks @IvarsVids for the challenge! 👇https://t.co/14Cpf6ZNuS
— Intigriti (@intigriti) September 19, 2022

Challenge-0822: Business card generator by @BrunoModificato and @aszx87410

⏰ It's CHALLENGE O'CLOCK!
👉 Find the XSS before Monday August 29th!
👉 Win €300 in SWAG prizes!
👉 We'll release a tip for every 100 likes on this tweet!
Thanks @BrunoModificato and @aszx87410 for the challenge! 👇https://t.co/wozBKBYr6g
— Intigriti (@intigriti) August 22, 2022

Challenge-0722: Awesome kitty blog by Vroemy

⏰ It's CHALLENGE O'CLOCK!
👉 Find the XSS before Monday August 1st!
👉 Win €300 in SWAG prizes!
👉 We'll release a tip for every 100 likes on this tweet!
Thanks @antonvroemans for the challenge! 👇https://t.co/JS05SPTvuM
— Intigriti (@intigriti) July 25, 2022

Challenge-0622: Recipe by lawrencevl

⏰ It's CHALLENGE O'CLOCK!
👉 Find the XSS before Monday June 27th!
👉 Win €300 in SWAG prizes!
👉 We'll release a tip for every 100 likes on this tweet!
Thanks lawrencevl for the challenge! 👇https://t.co/TgdiO6BjZH
— Intigriti (@intigriti) June 20, 2022

Challenge-0522: Pollution by @PiyushThePal

⏰ It's CHALLENGE O'CLOCK!
👉 Find the XSS before Friday June 3th!
👉 Win €300 in SWAG prizes!
👉 We'll release a tip for every 100 likes on this tweet!
Thanks @PiyushThePal for the challenge! 👇https://t.co/X0nq805bVE
— Intigriti (@intigriti) May 27, 2022

Challenge-0422: Window Maker by @aszx87410

⏰ It's CHALLENGE O'CLOCK!
👉 Find the XSS before Sunday April 24th!
👉 Win €300 in SWAG prizes!
👉 We'll release a tip for every 100 likes on this tweet!
Thanks @aszx87410 for the challenge! 👇https://t.co/EehqBfFmjA
— Intigriti (@intigriti) April 18, 2022

Challenge-0322: Hashing by @BrunoModificato

⏰ The XSS challenge is over!
☑ 66 hackers found the right solution!!
📑 7 hackers wrote a cool writeup!
🏆 Check out the winners below and drop your write-up in the comments! https://t.co/NEDBxMCeWS
— Intigriti (@intigriti) March 28, 2022

Challenge-0222: Extremely Short Scripting Game by @aszx87410

⏰ The XSS challenge is over!
☑ 133 hackers found the right solution!!
📑 12 hackers wrote a cool writeup!
🏆 Check out the winners below and drop your write-up in the comments! https://t.co/6kG6xiplLH
— Intigriti (@intigriti) February 14, 2022

Challenge-0122: Super Secure HTML Viewer by @TheRealBrenu

⏰ The XSS challenge is over!
☑ 103 hackers found the right solution!!
📑 13 hackers wrote a cool writeup!
🏆 Check out the winners below and drop your write-up in the comments! https://t.co/KpfUOOrLa2
— Intigriti (@intigriti) January 17, 2022

Challenge-1221: Christmas Special by @E1u5iv3F0x

⏰ The XSS challenge is over!
☑ 66 hackers found the right solution!!
📑 10 hackers wrote a cool writeup!
🏆 Check out the winners below and drop your write-up in the comments! https://t.co/Aq58KP3TTS
— Intigriti (@intigriti) December 28, 2021

Challenge-1121: OWASP Top 10 by @IvarsVids

⏰ The XSS challenge is over!
☑ 62 hackers found the right solution!!
📑 13 hackers wrote a cool writeup!
🏆 Check out the winners below and drop your write-up in the comments! https://t.co/0b62poQw4A
— Intigriti (@intigriti) November 22, 2021

Challenge-1021: Halloween has taken over by @0xTib3rius

⏰ The XSS challenge is over!
☑ 138 hackers found the right solution!!
📑 27 hackers wrote a cool writeup!
🏆 Check out the winners below and drop your write-up in the comments! 👇 https://t.co/SwWhuMSRzK
— Intigriti (@intigriti) November 2, 2021

Challenge-0921: Password Manager by @BugEmir and Pepijn van der Stap

⏰ The XSS challenge is over!
☑ 48 hackers found the right solution
📝 14 hackers wrote a cool writeup!
🏆 Check out the winners below and drop your write-up in the comments!
📹 The solution? Watch the official writeup on YouTube: https://t.co/p42YKmKsWA https://t.co/sHBWAYdf3r
— Intigriti (@intigriti) September 13, 2021

Challenge-0821: XSS Cookbook by @WHOISbinit

⏰ The XSS challenge is over!
☑ 86 hackers found the right solution
📝 21 hackers wrote a cool writeup!
🏆 Check out the winners below and drop your write-up in the comments!
📹 The solution? Watch the official writeup on YouTube: https://t.co/57lSk51faM
— Intigriti (@intigriti) August 23, 2021

Challenge-0721: HTML Viewer by @RootEval

⏰ It's CHALLENGE O'CLOCK!
👉 Find the XSS before Sunday June 27, 23:59 CEST
👉 Win €300 in SWAG prizes
👉❤️ We'll tweet out a tip for every 100 likes
Thanks Physuru (@cffaedfe) for the challenge! 👇https://t.co/moAR8Twbxu
— Intigriti (@intigriti) June 21, 2021

Challenge-0621: Password Generator by Physuru

⏰Time's up!
☑️ 16 hackers managed to find the right solution
📝 4 hackers qualified for the 'best writeup' contest
🏆 Check out the winners below and drop your write-up in the comments! https://t.co/8iM21V44G8
— Intigriti (@intigriti) June 28, 2021

Challenge-0521: Math Robot by @GrumpinouT

⏰ Time's up!
✔️ 70 hackers managed to find the solution
📝 12 hackers qualified for the 'best writeup' contest
🏆 Check the winners below and drop your write-up in the comments! https://t.co/3O47W1SvuZ
— Intigriti (@intigriti) June 7, 2021

Challenge-0421: WAF by @terjanq

Time's UP! This was our hardest challenge so far!
✅ 15 hackers managed to find the solution
📝 4 hackers qualified for the 'best writeup' contest
🏆 Check the winners and the writeups in the comments!
👇👇👇 https://t.co/7OvelzHSYC
— Intigriti (@intigriti) April 26, 2021

Challenge-0321: Notes

⏰ Our XSS challenge is OVER!
✅ 45 researchers managed to find a solution
🏆 Check the 3 raffle winners in the video below
📝 Check the 3 writeup winners in the comments
👇 Don't forget to post your solution! https://t.co/s5izPYuFw1 pic.twitter.com/eGfZBXvpJP
— Intigriti (@intigriti) March 29, 2021

Challenge-0121: Challenging

⏰ Our January XSS challenge is OVER!
✅109 researchers managed to find a solution
😅More than 70% were unintended solutions
🏆 Check the 3 raffle winners in the video below
📝 Check the 3 writeup winners in the comments
👇 Don't forget to post your solution! pic.twitter.com/ujKTKeFHSL
— Intigriti (@intigriti) February 1, 2021

Challenge-1220: Calculator

⏰ Our December XSS challenge is OVER!
✅ 72 researchers managed to find a solution
😊 More than 50% were unintended solutions
🏆 Check the 3 raffle winners in the video below
📝 Check the 3 writeup winners in the comments
👇 Don't forget to post your solution! pic.twitter.com/A971839TKK
— Intigriti (@intigriti) December 14, 2020