Exercises
| Exercise | Avg. Time | Difficulty | Solved by | Tier | |
|---|---|---|---|---|---|
|
API 08
This exercise covers how one can inspect HTTP responses to identify information leaks.
|
< 1 Hr. |  |
1677 | PRO |
|
CVE-2021-4xx50
This challenge covers the review of a CVE and its patch
|
< 1 Hr. | |
822 | PRO |
|
JDBC RCE
This exercise is one of our challenges to help you learn Java Serialisation exploitation
|
2-4 Hr. | |
65 | PRO |
|
|
CVE-2008-1x3x
This challenge covers the review of a CVE and its patch
|
< 1 Hr. |  |
996 | PRO |
|
|
TypeScript Snippet #03
This challenge covers the review of a snippet of code written in TypeScript
|
< 1 Hr. | |
1329 | PRO |
|
|
TypeScript Snippet #02
This challenge covers the review of a snippet of code written in TypeScript
|
< 1 Hr. | |
1421 | PRO |
|
|
TypeScript Snippet #01
This challenge covers the review of a snippet of code written in TypeScript
|
< 1 Hr. | |
1472 | PRO |
|
|
Golang Snippet #12
This challenge covers the review of a snippet of code written in Golang
|
< 1 Hr. | |
1068 | PRO |
|
|
API 07
API
Angular
This exercise covers how one can inspect JavaScript code to identify information leak.
|
< 1 Hr. | |
1847 | PRO |
|
CVE-2021-40438
This challenge covers how to trigger a Server-Side Request Forgery by leveraging CVE-2021-40438
|
< 1 Hr. | |
348 | PRO |
|
|
CVE-2021-41773 II
This challenge covers how to gain code execution by leveraging CVE-2021-41773
|
1-2 Hr. | |
214 | PRO |
|
|
CVE-2021-41773
This challenge covers how to read arbitrary files by leveraging CVE-2021-41773
|
< 1 Hr. | |
566 | PRO |
|
HTTP 38
This challenge covers how to send specific HTTP requests
|
< 1 Hr. | |
2833 | PRO |
|
|
HTTP 36
This challenge covers how to send specific HTTP requests
|
< 1 Hr. | |
2874 | PRO |
|
|
HTTP 37
This challenge covers how to send specific HTTP requests
|
< 1 Hr. | |
2780 | PRO |
|
|
HTTP 39
This challenge covers how to send specific HTTP requests
|
< 1 Hr. | |
2814 | PRO |
|
|
HTTP 40
This challenge covers how to send specific HTTP requests
|
< 1 Hr. | |
2829 | PRO |
|
|
CVE-2006-4xxx
This challenge covers the review of a CVE and its patch
|
< 1 Hr. | |
774 | PRO |
|
|
CVE-2006-4xxx_ii
This challenge covers the review of a CVE and its patch
|
< 1 Hr. | |
659 | PRO |
|
|
PHP Snippet #04
This challenge covers the review of a snippet of code written in PHP
|
< 1 Hr. | |
1843 | PRO |
|
|
PHP Snippet #05
This challenge covers the review of a snippet of code written in PHP
|
< 1 Hr. | |
1753 | PRO |
|
|
PHP Snippet #06
This challenge covers the review of a snippet of code written in PHP
|
< 1 Hr. | |
1840 | PRO |
|
|
API 06
API
Angular
This exercise covers how one can inspect JavaScript code to identify unused endpoints.
|
< 1 Hr. | |
1980 | PRO |
|
|
Java Snippet #01
This challenge covers the review of a snippet of code written in Java
|
< 1 Hr. | |
1858 | PRO |
|
|
Java Snippet #02
This challenge covers the review of a snippet of code written in Java
|
< 1 Hr. | |
1794 | PRO |
|
|
Java Snippet #03
This challenge covers the review of a snippet of code written in Java
|
< 1 Hr. | |
1647 | PRO |
|
|
CVE-2021-37xxx
This challenge covers the review of a CVE and its patch
|
< 1 Hr. | |
729 | PRO |
|
|
PHP Snippet #01
This challenge covers the review of a snippet of code written in PHP
|
< 1 Hr. | |
2503 | PRO |
|
|
PHP Snippet #03
This challenge covers the review of a snippet of code written in PHP
|
< 1 Hr. | |
1958 | PRO |
|
|
PHP Snippet #02
This challenge covers the review of a snippet of code written in PHP
|
< 1 Hr. | |
2184 | PRO |
Showing 301–330 of 722 exercises
Free Labs of the Month
