Hey guys, I lurked around the CS:GO site
and found out that they had a tip system. I sniffed the traffic to analyze the api and I realized that you just needed to do a simple post request with your authentication cookie to tip a user your desired amount of "coins".I then created this self-xxs script that does the following:
If this script gets executed by a user, the script will first send a get request to the server to get the user's info. From that info, we extract the user's current wallet balance and use that in the post request telling the server to tip "xxxxxx"1 ( your userID or to who you want to tip them).
- If you don't know how to manipulate the script to show your userID, pm me and I can help you out.
The way we can make the request valid is to get the victims authentication cookie. We easily do this by calling:
Here is the finished script using jquery:
I tried to make it somewhat small, but I guess some here can make it even "tidyer".
EDIT: Too lazy to respond to everyone who cannot find their id;
Edited by SernterxErer, 02 August 2017 - 03:42 AM.