My #100DaysOfHacking Challenge Summary
A summary of what I learned during my #100DaysOfHacking challenge
Read MoreMy #100DaysOfHacking Challenge SummaryTryHackMe > Web Fundamentals: ZTH: Obscure Web Vulns – Part 1: SSTI
Learn and practice exploiting a range of unique web vulnerabilities - SSTI
Read MoreTryHackMe > Web Fundamentals: ZTH: Obscure Web Vulns – Part 1: SSTITryHackMe > Web Fundamentals: Cross-site Scripting – Part 4: BeEF
Understand how cross-site scripting occurs and how to exploit it - BeEF
Read MoreTryHackMe > Web Fundamentals: Cross-site Scripting – Part 4: BeEFTryHackMe > Web Fundamentals: Cross-site Scripting – Part 3: Filter evasion
Understand how cross-site scripting occurs and how to exploit it - Filter evasion
Read MoreTryHackMe > Web Fundamentals: Cross-site Scripting – Part 3: Filter evasionTryHackMe > Web Fundamentals: ZTH: Obscure Web Vulns – Part 6: JWT
Learn and practice exploiting a range of unique web vulnerabilities - JWT tools
Read MoreTryHackMe > Web Fundamentals: ZTH: Obscure Web Vulns – Part 6: JWTTryHackMe > Web Fundamentals: ZTH: Obscure Web Vulns – Part 5: XXE
Learn and practice exploiting a range of unique web vulnerabilities - XXE
Read MoreTryHackMe > Web Fundamentals: ZTH: Obscure Web Vulns – Part 5: XXETryHackMe > Web Fundamentals: ZTH: Obscure Web Vulns – Part 4: JWT None
Learn and practice exploiting a range of unique web vulnerabilities - JWT None
Read MoreTryHackMe > Web Fundamentals: ZTH: Obscure Web Vulns – Part 4: JWT NoneTryHackMe > Web Fundamentals: ZTH: Obscure Web Vulns – Part 3: JWT
Learn and practice exploiting a range of unique web vulnerabilities - JWT
Read MoreTryHackMe > Web Fundamentals: ZTH: Obscure Web Vulns – Part 3: JWTTryHackMe > Web Fundamentals: ZTH: Obscure Web Vulns – Part 2: CSRF
Learn and practice exploiting a range of unique web vulnerabilities - CSRF
Read MoreTryHackMe > Web Fundamentals: ZTH: Obscure Web Vulns – Part 2: CSRFTryHackMe > Web Fundamentals: Cross-site Scripting – Part 2: Reflected + DOM XSS
Understand how cross-site scripting occurs and how to exploit it - Reflected + DOM-based XSS
Read MoreTryHackMe > Web Fundamentals: Cross-site Scripting – Part 2: Reflected + DOM XSSTryHackMe > Web Fundamentals: Cross-site Scripting – Part 1: Stored XSS
Understand how cross-site scripting occurs and how to exploit it - Stored XSS
Read MoreTryHackMe > Web Fundamentals: Cross-site Scripting – Part 1: Stored XSSTryHackMe > Web Fundamentals: XXE
This room aims at providing the basic introduction to XML External Entity (XXE vulnerability)
Read MoreTryHackMe > Web Fundamentals: XXETryHackMe > Web Fundamentals: Authenticate – Part 2
In the previous blog post, I showed you how to bypass poorly configured authentication via dictionary attack or re-registration. Today, I'm going to speak about JWT - what it is, how it works and one of possible ways to exploit it.
Read MoreTryHackMe > Web Fundamentals: Authenticate – Part 2TryHackMe > Web Fundamentals: Authenticate – Part 1
Learn how to attack authentication mechanisms used in web applications
Read MoreTryHackMe > Web Fundamentals: Authenticate – Part 1TryHackMe > Web Fundamentals: LFI
Understand and exploit a web server that is vulnerable to the Local File Inclusion (LFI) vulnerability.
Read MoreTryHackMe > Web Fundamentals: LFITryHackMe > Web Fundamentals: Introduction to OWASP ZAP
Learn how to use OWASP ZAP from the ground up. An alternative to BurpSuite.
Read MoreTryHackMe > Web Fundamentals: Introduction to OWASP ZAPTryHackMe > Web Fundamentals: Introduction to Django
How it works and why should I learn it?
Read MoreTryHackMe > Web Fundamentals: Introduction to DjangoWhy this website?
This is the first blog post written to this page and its purpose is to explain why this page exists in the first place.
Read MoreWhy this website?