Exercises
| Exercise | Avg. Time | Difficulty | Solved by | Tier | |
|---|---|---|---|---|---|
|
XSL PHP II
This exercise covers the exploitation of a PHP application using XSL
|
< 1 Hr. |  |
237 | PRO |
|
API Payments 04
This exercise covers how to abuse a shopping cart allowing users to apply a voucher..
|
< 1 Hr. | |
1189 | PRO |
|
|
XSL PHP
This exercise covers the exploitation of a PHP application using XSL
|
< 1 Hr. | |
279 | PRO |
|
|
API Payments 03
This exercise covers a simple payments bypass.
|
< 1 Hr. | |
1296 | PRO |
|
Code Review 18
This exercise is one of our challenges to help you learn how to review real source code
|
1-2 Hr. | |
377 | PRO |
|
|
CVE-2020-13xxx
This challenge covers the review of a CVE and its patch
|
< 1 Hr. | |
654 | PRO |
|
|
CVE-2008-5x8x
This challenge covers the review of a CVE and its patch
|
< 1 Hr. |  |
829 | PRO |
|
|
CVE-2022-3x7x1
This challenge covers the review of a CVE and its patch
|
< 1 Hr. | |
756 | PRO |
|
|
Python Snippet #02
This challenge covers the review of a snippet of code written in Python
|
< 1 Hr. | |
2021 | PRO |
|
|
Java Snippet #12
This challenge covers the review of a snippet of code written in Java
|
< 1 Hr. | |
1347 | PRO |
|
|
Java Snippet #11
This challenge covers the review of a snippet of code written in Java
|
< 1 Hr. | |
1394 | PRO |
|
|
Java Snippet #10
This challenge covers the review of a snippet of code written in Java
|
< 1 Hr. | |
1499 | PRO |
|
|
API Payments 02
This exercise covers a simple payments bypass.
|
< 1 Hr. | |
1460 | PRO |
|
|
GCM Nonce Reuse
This challenge covers the impact of nonce reuse on GCM
|
< 1 Hr. | |
182 | PRO |
|
|
CVE-2019-5x2x
This challenge covers the review of a CVE and its patch
|
< 1 Hr. | |
605 | PRO |
|
|
Java Snippet #08
This challenge covers the review of a snippet of code written in Java
|
< 1 Hr. | |
1742 | PRO |
|
|
Java Snippet #07
This challenge covers the review of a snippet of code written in Java
|
< 1 Hr. | |
1725 | PRO |
|
|
Java Snippet #09
This challenge covers the review of a snippet of code written in Java
|
< 1 Hr. | |
1364 | PRO |
|
|
API Payments 01
API
This exercise covers a simple payments bypass.
|
< 1 Hr. | |
1894 | PRO |
|
|
CVE-2022-26xx9
This challenge covers a vulnerable snippet in a real Java application
|
< 1 Hr. | |
609 | PRO |
|
|
Python Snippet #08
This challenge covers the review of a snippet of code written in Python
|
< 1 Hr. | |
1583 | PRO |
|
|
Python Snippet #09
This challenge covers the review of a snippet of code written in Python
|
< 1 Hr. | |
1781 | PRO |
|
|
Python Snippet #07
This challenge covers the review of a snippet of code written in Python
|
< 1 Hr. | |
1661 | PRO |
|
|
Mongo IDOR
This challenge covers how to exploit an IDOR when Mongo IDs are used
|
< 1 Hr. | |
1154 | PRO |
|
|
CVE-2005-2x8x
This challenge covers the review of a CVE and its patch
|
< 1 Hr. |  |
632 | PRO |
|
|
CVE-2008-5x8x_ii
This challenge covers the review of a CVE and its patch
|
< 1 Hr. | |
630 | PRO |
|
|
Python Snippet #06
This challenge covers the review of a snippet of code written in Python
|
< 1 Hr. | |
1794 | PRO |
|
|
Java Snippet #06
This challenge covers the review of a snippet of code written in Java
|
< 1 Hr. | |
1390 | PRO |
|
|
Golang Snippet #01
This challenge covers the review of a snippet of code written in Golang
|
< 1 Hr. | |
1766 | PRO |
|
CVE-2022-21449
JWT
This exercise covers the exploitation of CVE-2022-21449 against a Java Application relying on JWT
|
< 1 Hr. | |
177 | PRO |
Showing 241–270 of 722 exercises
Free Labs of the Month
