Login
Register
Introduction 00 (next)
Course
Videos
Scoring
Introduction Badge
Introduction Badge (next)
Badges
Introduction Badge
Unix Badge
Essential Badge
PCAP badge
White Badge
Serialize Badge
Yellow Badge
Blue Badge
Green Badge
Orange Badge
Intercept Badge
Authentication / Authorization Badge
Android Badge
Capture-The-Flag Badge
Brown Badge
Recon Badge
API Badge
Code Review Badge
Java Serialize Badge
HTTP Badge
Login
Register
Green Badge
130
Completed
16
Exercises
Easy
GraphQL Introspection
This exercise covers how to use introspection to get access to additional information in GraphQL.
1 video
Completed by 1014 students
Takes Less than an hour on average
GraphQL/Node/Angular
Easy
Ruby 2.x Universal RCE Deserialization Gadget Chain
This exercise covers how to get code execution by using a Ruby Universal Gadget when an attacker controls the data passed to Marshal.load()
1 video
Completed by 577 students
Takes Less than an hour on average
Ruby/Sinatra
Easy
GraphQL: SQL Injection
This exercise covers how to use introspection and a SQL injection to get access to additional information in GraphQL.
Completed by 427 students
Takes Between 1 and 2 hours on average
GraphQL/Node/Angular/SQLite3
Medium
CVE-2019-5420
This exercise details the exploitation of CVE-2019-5420 to forge a session as another user
2 videos
Completed by 326 students
Takes Between 2 and 4 hours on average
Ruby-on-Rails
Hard
From SQL injection to Shell III
This exercise covers how to gain access to an administration interface using SQL injection followed by how to get command execution using ImageTragick
1 video
Completed by 411 students
Takes Between 1 and 2 hours on average
Ruby-on-Rails
Hard
Length Extension Attack
This exercise covers how to use a length extension attack to exploit a directory traversal vulnerability
Completed by 199 students
Takes Between 2 and 4 hours on average
Ruby
Hard
Gogs RCE
This exercise covers how to get code execution against the Git self hosted tool: Gogs.
3 videos
Completed by 239 students
Takes Between 1 and 2 hours on average
Golang
Hard
Gogs RCE II
This exercise covers how to get code execution against the Git self hosted tool: Gogs.
2 videos
Completed by 199 students
Takes Between 1 and 2 hours on average
Golang
Hard
JWT VIII
This exercise covers how to use the jku header to bypass an authentication based on JWT.
3 videos
Completed by 368 students
Takes Between 1 and 2 hours on average
Ruby/Sinatra
Hard
JWT IX
This exercise covers how to use the jku header to bypass an authentication based on JWT.
2 videos
Completed by 336 students
Takes Less than an hour on average
Ruby/Sinatra
Hard
JWT XII
This exercise covers how to use the x5u header to bypass an authentication based on JWT.
2 videos
Completed by 240 students
Takes Between 1 and 2 hours on average
Ruby/Sinatra
Hard
cve-2019-5420 II
This exercise details the exploitation of CVE-2019-5420 to gain code execution
2 videos
Completed by 189 students
Takes Between 1 and 2 hours on average
Hard
CVE-2019-5418
This exercise details the exploitation of CVE-2019-5418 to get code execution
3 videos
Completed by 162 students
Takes Between 1 and 2 hours on average
Hard
IDOR to Shell
This exercise covers how to get code execution by chaining vulnerabilities in a Ruby-on-Rails application
2 videos
Completed by 422 students
Takes Between 1 and 2 hours on average
Ruby-on-Rails
Hard
JWT X
This exercise covers how to use the jku header to bypass an authentication based on JWT.
2 videos
Completed by 281 students
Takes Less than an hour on average
Ruby/Sinatra
Hard
JWT XI
This exercise covers how to use the jku header to bypass an authentication based on JWT.
3 videos
Completed by 237 students
Takes Between 1 and 2 hours on average
Ruby/Sinatra