Recently Updated
Notes 29
- (Portswigger/WebAcademy) - DOM-Based Cross-Site Scripting (XSS) Mar 25, 2023
- (Portswigger/WebAcademy) - Stored Cross-Site Scripting (XSS) Jan 25, 2023
- (Portswigger/WebAcademy) - DOM-based Vulnerabilities Jan 15, 2023
- (Portswigger/WebAcademy) - Websockets Jan 15, 2023
- (Portswigger/WebAcademy) - Insecure Deserialization vulnerabilities Jan 15, 2023
- (Portswigger/WebAcademy) - Server-Side Template Injection vulnerabilities Jan 15, 2023
- (Portswigger/WebAcademy) - Clickjacking vulnerabilities Jan 15, 2023
- (Portswigger/WebAcademy) - OAuth 2.0 authentication vulnerabilities Jan 15, 2023
- (Portswigger/WebAcademy) - JWT Token Vulnerabilities Jan 15, 2023
- Vulnerable Lab by Tushar Kulkarni (@roottusk) - vAPI (writeup) Dec 21, 2022
- Vulnerable Lab by OWASP - crAPI (Writeup) Dec 21, 2022
- (Portswigger/WebAcademy) - Cross-Origin Resource Sharing (CORS) Dec 21, 2022
- (Portswigger/WebAcademy) - Cross-Site Request Forgery (CSRF) Dec 12, 2022
- (Portswigger/WebAcademy) - Web Cache Poisoning (Unkeyed Inputs) Oct 27, 2022
- (Portswigger/WebAcademy) - XXE Injection Oct 27, 2022
- (TryHackMe) - PWN101 Oct 26, 2022
- (Portswigger/WebAcademy) - Server-side request forgery (SSRF) Oct 24, 2022
- File Upload Vulnerabilities Oct 9, 2022
- Broken Access Control Oct 8, 2022
- Information Disclosure Oct 7, 2022
- Business Logic Vulnerabilities Oct 6, 2022
- (Portswigger/WebAcademy) - Reflected Cross-Site Scripting (XSS) Oct 4, 2022
- OS Command Injection Oct 3, 2022
- Directory Traversal Oct 2, 2022
- Vulnerable Password Reset Sep 30, 2022
- Vulnerable Username-Password Authentication Sep 30, 2022
- Multi-Factor Authentication (MFA) Sep 30, 2022
- Other vulnerable Authentication Mechanismus Sep 30, 2022
- Blind SQL Injection Sep 30, 2022