Web Security

The collection Web Security related articles.

Random Articles

0x01 – Base CTF 2016 [ Web 200pts ]

0x02 – The blind art in Web [ Powershell ]

0x03 – Cracking Hashes for Beginners

0x04 – Making admin page finder [ Python ]

0x05 – DDOS Concepts [ Do & Dont ]

0x06 – Padding Oracle [ Pentesterlab ]

0x07 – File upload tricks using SSI (Server Side Include )

0x08 – Prompt(1) to win Lvl 0 to 5 ( XSS Challenges )

0x09 – Local File Disclosure from SQL Injection

0x0A – URL Obfuscation tricks

0x0B – Cross Site Port Attacks (XSPA)

0x0C – Dive into XSS ( Idea for learning )

0x0D – Brain as SQL Fuzzer

0x0E – XXE Injection (OXML XXE / Docx upload parsing )

0x0F – Excel Parser related vulnerabilities ( Formula / XXE )

0x10 – Hacking Credits in Meet Web app ( Misfunctional Level Access Control )

0x11 – Log Analysis for Web AttacksĀ  ( Incident Handling )

0x12 – Journey to the SQL Injection

0x13 – What is self XSS?

0x14 – PHP Object Injection

0x15 – PHP Magic Tricks ( Type Juggling )

Tools Usage

0x01 – Phpsploit for Post Exploitation

Walkthrough & Series

S1 – Learning Filter Bypass Techniques

S2 – Learning Web Service Security with Damn Vulnerable Web Serives [ DVWS ]

S3 – Learning Node JS Security with OWASP Node Goat

S4 – Learning Node JS Security with OWASP Juice Shop

S5 – Learning Local File Inclusion with Paralax’sĀ  LFI Lab

S6 – Learning PHP Web Security with OWASP Extreme Vulnerable Web App [ XVWA ]