I am proud to say that have finally completed my labs for most common web vulnerabilities. Coded most in PHP and some in Python. Have included Hint button to describe the vulnerability and its mitigation.
- CORS and CSRF
- CORS Information Leakage
- CSRF Change Email Functionality
- Directory Traversal
- Absolute Path Directory Traversal
- Relative Path Directory Traversal
- XSS
- Stored XSS
- Reflected XSS
- DOM Reflected XSS
- DOM Stored XSS
- XXE
- OOB XXE
- XXE File Retrieval
- SSTI
- Python Jinja2
- IDOR
- Username Identifiers
- SSRF
- SSRF to Internal AWS Instance Information Leakage
Sample Screenshots of the Labs
No comments:
Post a Comment