Media Badge

20 Videos

18 Exercises

Coming soon

Easy

image for ODF XXE

ODF XXE

This exercise covers the exploitation of an XXE in an ODF Parser
Takes -- on average

image for SSRF in PDF generation

SSRF in PDF generation

This exercise covers how you can read arbitrary files when an application generates pdf from a link you provide
1 video
Completed by 732 students
Takes Less than an hour on average

image for XSL PHP

XSL PHP

This exercise covers the exploitation of a PHP application using XSL
2 videos
Completed by 168 students
Takes Less than an hour on average
PHP
CWE-94,CWE-306

image for XSL PHP II

XSL PHP II

This exercise covers the exploitation of a PHP application using XSL
2 videos
Completed by 141 students
Takes Less than an hour on average
PHP
CWE-94

image for DOMPDF RCE

DOMPDF RCE

This exercise covers the exploitation of a vulnerability in the DOMPDF library
2 videos
Completed by 72 students
Takes Less than an hour on average
PHP

image for CVE-2022-39224

CVE-2022-39224

This exercise covers the exploitation of CVE-2022-39224
1 video
Completed by 33 students
Takes Between 2 and 4 hours on average
Ruby
CWE-78

image for XSL PHP III

XSL PHP III

This exercise covers the exploitation of a PHP application using XSL
2 videos
Completed by 101 students
Takes Less than an hour on average
PHP
CWE-94

image for XSL PHP IV

XSL PHP IV

This exercise covers the exploitation of a PHP application using XSL
2 videos
Completed by 77 students
Takes Between 2 and 4 hours on average
PHP
CWE-94

image for DOMPDF RCE II

DOMPDF RCE II

This exercise covers the exploitation of a vulnerability in the DOMPDF library
2 videos
Completed by 26 students
Takes Between 2 and 4 hours on average
PHP

image for XSL Java

XSL Java

This exercise covers the exploitation of a Java application using XSL
2 videos
Completed by 55 students
Takes Less than an hour on average
Java

image for DOMPDF RCE III

DOMPDF RCE III

This exercise covers the exploitation of a vulnerability in the DOMPDF library
1 video
Completed by 14 students
Takes Between 2 and 4 hours on average
PHP

image for SSRF via FFMPEG

SSRF via FFMPEG

This exercise covers how you can read abitrary files when an application use ffmpeg to render videos from a video you provide
Completed by 194 students
Takes Between 1 and 2 hours on average
Ruby/FFMpeg
CWE-918

image for CVE-2021-22204: Exiftool RCE II

CVE-2021-22204: Exiftool RCE II

This exercise covers how you can gain code execution when an application uses exiftool on user-controlled files
Completed by 32 students
Takes Less than an hour on average
CWE-94,CWE-74

image for CVE-2021-33564 Argument Injection in Ruby Dragonfly

CVE-2021-33564 Argument Injection in Ruby Dragonfly

This exercise covers how you can get arbitrary file read using CVE-2021-33564 against Refinery CMS
Completed by 91 students
Takes Less than an hour on average
CWE-88

image for SSRF via FFMPEG II

SSRF via FFMPEG II

This exercise covers how you can read abitrary files when an application use ffmpeg to render videos from a video you provide
Completed by 96 students
Takes Less than an hour on average
Ruby/FFMpeg
CWE-918

image for XSL PHP V

XSL PHP V

This exercise covers the exploitation of a PHP application using XSL
2 videos
Completed by 59 students
Takes Between 1 and 2 hours on average
PHP
CWE-94

image for CVE-2021-22204: Exiftool RCE

CVE-2021-22204: Exiftool RCE

This exercise covers how you can gain code execution when an application uses exiftool on user-controlled files
1 video
Completed by 130 students
Takes Between 1 and 2 hours on average
CWE-74

image for DOMPDF RCE IV

DOMPDF RCE IV

This exercise covers the automation of the exploitation of a vulnerability in the DOMPDF library
Completed by 7 students
Takes More than 4 hours on average
PHP