GithubHelp home page GithubHelp logo

lafanachy / portswigger-labs Goto Github PK

View Code? Open in Web Editor NEW

This project forked from thelicato/portswigger-labs

0.0 0.0 0.0 421 KB

A collection of solutions for every PortSwigger Academy Lab (in progress)

Python 10.84% PHP 1.32% HTML 87.85%

portswigger-labs's Introduction

🧪 PortSwigger Labs

This repo contains the solutions for the PortSwigger Labs available in the Academy section of their website: https://portswigger.net/web-security/all-labs

Why

This repo has been created to keep in a single place all the solutions of the labs. It should be helpful when preparing for the Burp Suite Certified Practitioner (https://portswigger.net/web-security/certification).

Tools

The tools needed (other than Burp Pro) to complete the labs.

  • SQL Injection: sqlmap;
  • XSS: dalfox, xsstrike;
  • Clickjacking: None;
  • DOM-based: None;
  • CORS: None;
  • XXE: None;
  • SSRF: None;
  • OS Command Injection: None;
  • Server-Side Template Injection: None;
  • Directory Traversal: None;
  • Access Control: None;
  • Authentication: None;
  • WebSockets: None;
  • Web Cache Poisoning: None;
  • Information Disclosure: None;
  • OAuth authentication: None;
  • File Upload Vulnerabilities: ExifTool;

Roadmap

This primary goal is to add the Apprentice and Practitioner level labs (since are the ones suggested to complete before taking the exam):

  • SQL Injection Labs
  • XSS Labs
  • CSRF Labs
  • Clickjacking Labs
  • DOM-based vulnerabilities Labs
  • CORS Labs
  • XXE Injection Labs
  • SSRF Labs
  • HTTP Request Smuggling Labs
  • OS Command Injection Labs
  • Server-Side Template Injection Labs
  • Directory Traversal Labs
  • Access Control Vulnerabilities Labs
  • Authentication Labs
  • WebSockets Labs
  • Web Cache Poisoning Labs
  • Insecure Deserialization Labs
  • Information Disclosure Labs
  • Business Logic Vulnerabilities Labs
  • HTTP Host Header Attacks Labs
  • OAuth Authentication Labs
  • File Upload Vulnerabilities Labs

portswigger-labs's People

Contributors

thelicato avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.