Discovering different vulnerabilities in Canvas
Scripts used:
quiz_bot.js
: used for taking quizzes using data gathered from the quiz_analyzer.quiz_analyzer.js
: used to gather and store information about each practice quiz attempt.quiz_cyborg.js
: can be used to take the actual test since it does the same thing as the quiz bot but it will mimic human behavior as much as possible (e.g. wait a random second amount between 10-20 seconds to answer questions, skip some and come back to them, flag a question every once in a while, etc.)Step-by-step instructions: (the more practice attempts, the better)
quiz_bot.js
script in the javascript console (to open the javascript console use Cmd / Control + Shift + j in Chrome) on the practice quiz page (if there are no answers the analyzer has already gathered it will select the first answer to every question)quiz_analyzer.js
on the results page. To view detailed information of what the script is doing, open your javascript console. The output includes how many total questions there are in the question / answer bank as well as how many of them are still incorrect.$.get('url-to-js-file', function(data){eval(data)});
replacing url-to-js-file
with the tiny url you created previously.