Exercises
| Exercise | Avg. Time | Difficulty | Solved by | Tier | |
|---|---|---|---|---|---|
|
XSL PHP II
This exercise covers the exploitation of a PHP application using XSL
|
< 1 Hr. |  |
234 | PRO |
|
API Payments 04
This exercise covers how to abuse a shopping cart allowing users to apply a voucher..
|
< 1 Hr. | |
1189 | PRO |
|
|
XSL PHP
This exercise covers the exploitation of a PHP application using XSL
|
< 1 Hr. | |
275 | PRO |
|
|
API Payments 03
This exercise covers a simple payments bypass.
|
< 1 Hr. | |
1296 | PRO |
|
Code Review 18
This exercise is one of our challenges to help you learn how to review real source code
|
1-2 Hr. | |
324 | PRO |
|
|
CVE-2020-13xxx
This challenge covers the review of a CVE and its patch
|
< 1 Hr. | |
567 | PRO |
|
|
CVE-2022-3x7x1
This challenge covers the review of a CVE and its patch
|
< 1 Hr. |  |
676 | PRO |
|
|
CVE-2008-5x8x
This challenge covers the review of a CVE and its patch
|
< 1 Hr. | |
733 | PRO |
|
|
Python Snippet #02
This challenge covers the review of a snippet of code written in Python
|
< 1 Hr. | |
1871 | PRO |
|
|
Java Snippet #12
This challenge covers the review of a snippet of code written in Java
|
< 1 Hr. | |
1239 | PRO |
|
|
Java Snippet #11
This challenge covers the review of a snippet of code written in Java
|
< 1 Hr. | |
1285 | PRO |
|
|
Java Snippet #10
This challenge covers the review of a snippet of code written in Java
|
< 1 Hr. | |
1388 | PRO |
|
|
API Payments 02
This exercise covers a simple payments bypass.
|
< 1 Hr. | |
1460 | PRO |
|
|
GCM Nonce Reuse
This challenge covers the impact of nonce reuse on GCM
|
< 1 Hr. | |
174 | PRO |
|
|
CVE-2019-5x2x
This challenge covers the review of a CVE and its patch
|
< 1 Hr. | |
521 | PRO |
|
|
Java Snippet #09
This challenge covers the review of a snippet of code written in Java
|
< 1 Hr. | |
1263 | PRO |
|
|
Java Snippet #08
This challenge covers the review of a snippet of code written in Java
|
< 1 Hr. | |
1638 | PRO |
|
|
Java Snippet #07
This challenge covers the review of a snippet of code written in Java
|
< 1 Hr. | |
1616 | PRO |
|
|
API Payments 01
API
This exercise covers a simple payments bypass.
|
< 1 Hr. | |
1894 | PRO |
|
|
CVE-2022-26xx9
This challenge covers a vulnerable snippet in a real Java application
|
< 1 Hr. | |
601 | PRO |
|
|
Python Snippet #07
This challenge covers the review of a snippet of code written in Python
|
< 1 Hr. | |
1543 | PRO |
|
|
Python Snippet #09
This challenge covers the review of a snippet of code written in Python
|
< 1 Hr. | |
1660 | PRO |
|
|
Python Snippet #08
This challenge covers the review of a snippet of code written in Python
|
< 1 Hr. | |
1469 | PRO |
|
|
Mongo IDOR
This challenge covers how to exploit an IDOR when Mongo IDs are used
|
< 1 Hr. | |
1154 | PRO |
|
|
CVE-2008-5x8x_ii
This challenge covers the review of a CVE and its patch
|
< 1 Hr. | |
544 | PRO |
|
|
CVE-2005-2x8x
This challenge covers the review of a CVE and its patch
|
< 1 Hr. |  |
623 | PRO |
|
|
Golang Snippet #01
This challenge covers the review of a snippet of code written in Golang
|
< 1 Hr. | |
1744 | PRO |
|
|
Java Snippet #06
This challenge covers the review of a snippet of code written in Java
|
< 1 Hr. | |
1281 | PRO |
|
|
Python Snippet #06
This challenge covers the review of a snippet of code written in Python
|
< 1 Hr. | |
1671 | PRO |
|
CVE-2022-21449
JWT
This exercise covers the exploitation of CVE-2022-21449 against a Java Application relying on JWT
|
< 1 Hr. | |
169 | PRO |
Showing 211–240 of 692 exercises
Free Labs of the Month
