Exercises
| Exercise | Avg. Time | Difficulty | Solved by | Tier | |
|---|---|---|---|---|---|
|
API 08
This exercise covers how one can inspect HTTP responses to identify information leaks.
|
< 1 Hr. |  |
1677 | PRO |
|
CVE-2021-4xx50
This challenge covers the review of a CVE and its patch
|
< 1 Hr. | |
743 | PRO |
|
JDBC RCE
This exercise is one of our challenges to help you learn Java Serialisation exploitation
|
2-4 Hr. | |
65 | PRO |
|
|
CVE-2008-1x3x
This challenge covers the review of a CVE and its patch
|
< 1 Hr. |  |
890 | PRO |
|
|
TypeScript Snippet #03
This challenge covers the review of a snippet of code written in TypeScript
|
< 1 Hr. | |
1309 | PRO |
|
|
TypeScript Snippet #02
This challenge covers the review of a snippet of code written in TypeScript
|
< 1 Hr. | |
1397 | PRO |
|
|
TypeScript Snippet #01
This challenge covers the review of a snippet of code written in TypeScript
|
< 1 Hr. | |
1451 | PRO |
|
|
Golang Snippet #12
This challenge covers the review of a snippet of code written in Golang
|
< 1 Hr. | |
1053 | PRO |
|
|
API 07
API
Angular
This exercise covers how one can inspect JavaScript code to identify information leak.
|
< 1 Hr. | |
1847 | PRO |
|
CVE-2021-40438
This challenge covers how to trigger a Server-Side Request Forgery by leveraging CVE-2021-40438
|
< 1 Hr. | |
341 | PRO |
|
|
CVE-2021-41773 II
This challenge covers how to gain code execution by leveraging CVE-2021-41773
|
1-2 Hr. | |
209 | PRO |
|
|
CVE-2021-41773
This challenge covers how to read arbitrary files by leveraging CVE-2021-41773
|
< 1 Hr. | |
556 | PRO |
|
HTTP 40
This challenge covers how to send specific HTTP requests
|
< 1 Hr. | |
2829 | PRO |
|
|
HTTP 36
This challenge covers how to send specific HTTP requests
|
< 1 Hr. | |
2874 | PRO |
|
|
HTTP 37
This challenge covers how to send specific HTTP requests
|
< 1 Hr. | |
2780 | PRO |
|
|
HTTP 38
This challenge covers how to send specific HTTP requests
|
< 1 Hr. | |
2833 | PRO |
|
|
HTTP 39
This challenge covers how to send specific HTTP requests
|
< 1 Hr. | |
2814 | PRO |
|
|
CVE-2006-4xxx_ii
This challenge covers the review of a CVE and its patch
|
< 1 Hr. | |
650 | PRO |
|
|
CVE-2006-4xxx
This challenge covers the review of a CVE and its patch
|
< 1 Hr. | |
767 | PRO |
|
|
PHP Snippet #04
This challenge covers the review of a snippet of code written in PHP
|
< 1 Hr. | |
1717 | PRO |
|
|
PHP Snippet #05
This challenge covers the review of a snippet of code written in PHP
|
< 1 Hr. | |
1627 | PRO |
|
|
PHP Snippet #06
This challenge covers the review of a snippet of code written in PHP
|
< 1 Hr. | |
1745 | PRO |
|
|
API 06
API
Angular
This exercise covers how one can inspect JavaScript code to identify unused endpoints.
|
< 1 Hr. | |
1980 | PRO |
|
|
Java Snippet #03
This challenge covers the review of a snippet of code written in Java
|
< 1 Hr. | |
1520 | PRO |
|
|
Java Snippet #01
This challenge covers the review of a snippet of code written in Java
|
< 1 Hr. | |
1717 | PRO |
|
|
Java Snippet #02
This challenge covers the review of a snippet of code written in Java
|
< 1 Hr. | |
1667 | PRO |
|
|
CVE-2021-37xxx
This challenge covers the review of a CVE and its patch
|
< 1 Hr. | |
716 | PRO |
|
|
PHP Snippet #01
This challenge covers the review of a snippet of code written in PHP
|
< 1 Hr. | |
2353 | PRO |
|
|
PHP Snippet #02
This challenge covers the review of a snippet of code written in PHP
|
< 1 Hr. | |
2048 | PRO |
|
|
PHP Snippet #03
This challenge covers the review of a snippet of code written in PHP
|
< 1 Hr. | |
1855 | PRO |
Showing 271–300 of 692 exercises
Free Labs of the Month
