Exploit SQL injection, command injection, code execution, LDAP injection, NoSQL injection, server-side template injection, and file inclusion vulnerabilities.

SQL Injection 01 Pro

Exploitation

SQL Injection 02 Pro

Exploitation

Command Execution 01 Pro

Exploitation

Command Execution 02 Pro

Exploitation

Command Execution 03 Pro

Exploitation

Code Execution 01 Pro

Exploitation

Code Execution 02 Pro

Exploitation

Code Execution 03 Pro

Exploitation

Code Execution 04 Pro

Exploitation

Code Execution 05 Pro

Exploitation

Code Execution 06 Pro

Exploitation

Code Execution 07 Pro

Exploitation

Code Execution 08 Pro

Exploitation

Code Execution 09 Pro

MongoDB Injection 01 Pro

Exploitation

MongoDB Injection 02 Pro

Exploitation

Server Side Template Injection 01 Pro

Exploitation

Server Side Template Injection 02 Pro

Recommended: Complete Chapter 1 first

Chapter 3

Files, Paths & Server-Side Requests

Exploit directory traversal, file upload, XML external entities, open redirects, and server-side request forgery vulnerabilities.

Directory Traversal 01 Pro

Exploitation

Directory Traversal 02 Pro

Exploitation

Directory Traversal 03 Pro

Server Side Request Forgery 01 Pro

Exploitation

Server Side Request Forgery 02 Pro

Exploitation

Server Side Request Forgery 03 Pro

Exploitation

Server Side Request Forgery 04 Pro

Exploitation

Recommended: Complete Chapters 1 & 2 first

Chapter 4

Authentication, Authorization & JWT

Identify and exploit authentication bypass, broken access controls, insecure direct object references, and JWT implementation flaws.

Authentication 01 Pro

Exploitation

Authentication 02 Pro

Exploitation

Authentication 03 Pro

Exploitation

Authentication 04 Pro

Exploitation

Authentication 05 Pro

JSON Web Token None Algorithm Pro

Exploitation

Recommended: Complete all previous chapters

Get Full Access to This Track

Unlock every exercise across all chapters with PRO.

Unlock PRO Access