Exercises
| Exercise | Avg. Time | Difficulty | Solved by | Tier | |
|---|---|---|---|---|---|
|
SAML: Introduction
This exercise covers the exploitation of a signature stripping vulnerability in SAML
|
< 1 Hr. |  |
2964 | PRO |
|
Server Side Request Forgery 02
This exercise is one of our challenges on Server-Side Request Forgery
|
< 1 Hr. | |
10293 | PRO |
|
|
Server Side Request Forgery 03
This exercise is one of our challenges on Server-Side Request Forgery
|
< 1 Hr. | |
10223 | PRO |
|
|
Server Side Request Forgery 01
This exercise is one of our challenges on Server-Side Request Forgery
|
< 1 Hr. | |
10481 | PRO |
|
|
Directory Traversal 01
This exercise is one of our challenges on Directory Traversal
|
< 1 Hr. | |
12400 | PRO |
|
|
Directory Traversal 02
This exercise is one of our challenges on Directory Traversal
|
< 1 Hr. | |
12011 | PRO |
|
|
Directory Traversal 03
This exercise is one of our challenges on Directory Traversal
|
< 1 Hr. | |
11857 | PRO |
|
XSS 02
XSS
This exercise is one of our challenges on Cross-Site Scripting
|
< 1 Hr. | |
11018 | PRO |
|
|
XSS 04
XSS
This exercise is one of our challenges on Cross-Site Scripting
|
< 1 Hr. | |
10103 | PRO |
|
|
File Upload 01
This exercise is one of our challenges on Upload vulnerabilities
|
< 1 Hr. | |
9501 | PRO |
|
|
File Upload 02
This exercise is one of our challenges on Upload vulnerabilities
|
< 1 Hr. | |
9372 | PRO |
|
|
XSS 01
XSS
This exercise is one of our challenges on Cross-Site Scripting
|
< 1 Hr. | |
11652 | PRO |
|
|
File Include 02
This exercise is one of our challenges on File Include vulnerabilities
|
< 1 Hr. | |
10995 | PRO |
|
|
LDAP 01
This exercise is one of our challenges on vulnerabilities related to LDAP
|
< 1 Hr. | |
10916 | PRO |
|
|
Authentication 04
This exercise is one of our challenges on Authentication issues
|
< 1 Hr. | |
18633 | PRO |
|
|
Authentication 01
This exercise is one of our challenges on Authentication issues
|
< 1 Hr. | |
20535 | PRO |
|
|
Authentication 02
This exercise is one of our challenges on Authentication issues
|
< 1 Hr. | |
19577 | PRO |
|
|
Authentication 03
This exercise is one of our challenges on Authentication issues
|
< 1 Hr. | |
18993 | PRO |
|
|
Authorization 01
This exercise is one of our challenges on Authorisation issues
|
< 1 Hr. | |
18111 | PRO |
|
|
Authorization 02
This exercise is one of our challenges on Authorisation issues
|
< 1 Hr. | |
17632 | PRO |
|
|
Code Execution 01
This exercise is one of our challenges on Code Execution
|
< 1 Hr. | |
14918 | PRO |
|
|
Introduction 00
This exercise will guide you through the process of scoring on an exercise to get it marked as completed
|
< 1 Hr. | |
31707 | PRO |
|
|
Introduction 01
This exercise will guide through the process of scoring an exercise to mark it as completed
|
< 1 Hr. | |
30645 | PRO |
|
|
Introduction 02
This exercise will guide through the process of scoring an exercise to mark it as completed. Finding the key is just a little bit harder than the previous exercise.
|
< 1 Hr. | |
30236 | PRO |
|
|
Introduction 03
This exercise will guide through the process of scoring an exercise to mark it as completed. However, this time, you will run commands on the underlying operating system. You will need to run the score command with your UUID.
|
< 1 Hr. | |
29548 | PRO |
|
|
Intercept 01
This exercise covers how to intercept an HTTP connection.
|
1-2 Hr. | |
1841 | PRO |
|
|
JSON Web Token None Algorithm
JWT
This exercise covers the exploitation of a signature weakness in a JWT library.
|
< 1 Hr. | |
10233 | PRO |
|
CVE-2014-6271/Shellshock
This exercise covers the exploitation of a Bash vulnerability through a CGI.
|
< 1 Hr. | |
9080 | FREE |
|
|
Web for Pentester II
This exercise is a set of the most common web vulnerabilities.
|
-- | |
0 | FREE |
|
|
Web for Pentester
This exercise is a set of the most common web vulnerabilities.
|
-- | |
0 | FREE |
Showing 241–270 of 270 exercises
Free Labs of the Month
