White Badge
                      5410 Completed
                    
                    
                      16 Videos
                    
                  
                    6 Exercises
                  
                The white badge covers a wide range of web vulnerabilities to give people a view of what kind of issues can be found in web application. We usually recommend to start with this badge once you have finished the Introduction, Essential, Unix, PCAP badges.
Introduction Videos
White Exercises
                            Medium
                        
                        
                          
                            
                                 
 
                            
                          
                        
                       
                      
                      PENTESTERLAB
                        From SQL Injection to Shell
                       - This exercise demonstrates how to leverage a SQL injection to gain access to the admin console, and from there, how to execute commands on the underlying system
- 2 videos
- Completed by 8160 students
- Takes < 1 Hr. on average
- PHP/Apache/Mysql
- SQL Injection
- CWE-89
                            Medium
                        
                        
                          
                            
                                 
 
                            
                          
                        
                       
                      
                      PENTESTERLAB
                        CVE-2007-1860: mod_jk double-decoding
                       - This exercise covers the exploitation of CVE-2007-1860. This vulnerability allows an attacker to gain access to inaccessible pages using crafted requests. This is a common trick that a lot of testers miss.
- 4 videos
- Completed by 6095 students
- Takes 1-2 Hrs. on average
- Tomcat/Apache
- CWE-22