Web Vulnerabilities

Web security vulnerabilities and exploit techniques

SQL Injection

SQL injection payloads, detection, and exploitation techniques

60+ commands

WordPress

WordPress security vulnerabilities and exploitation

40+ commands

Open Redirect

Open redirect methods and bypass techniques

25+ commands

CRLF Injection

Carriage Return Line Feed injection attacks

20+ commands

SSRF

Server-Side Request Forgery testing with cloud metadata endpoints, URL schemes, and exploitation techniques

60+ commands

Dependency Confusion

Exploiting package manager vulnerabilities

25+ commands

Host Header Injection

Host header injection and cache poisoning

30+ commands

403 Bypass

403 forbidden bypass techniques and methods

50+ commands

Email Input Testing

RFC822 validation, XSS, SSRF, header injection, SQLi, command injection, and more

55+ commands

JSON Privilege Escalation

Mass-assignment, hidden JSON fields, and privilege escalation in registration flows

40+ commands

Web Vulnerabilities

Web security vulnerabilities and exploit techniques

SQL Injection

SQL injection payloads, detection, and exploitation techniques

60+ commands

WordPress

WordPress security vulnerabilities and exploitation

40+ commands

Open Redirect

Open redirect methods and bypass techniques

25+ commands

CRLF Injection

Carriage Return Line Feed injection attacks

20+ commands

SSRF

Server-Side Request Forgery testing with cloud metadata endpoints, URL schemes, and exploitation techniques

60+ commands

Dependency Confusion

Exploiting package manager vulnerabilities

25+ commands

Host Header Injection

Host header injection and cache poisoning

30+ commands

403 Bypass

403 forbidden bypass techniques and methods

50+ commands

Email Input Testing

RFC822 validation, XSS, SSRF, header injection, SQLi, command injection, and more

55+ commands

JSON Privilege Escalation

Mass-assignment, hidden JSON fields, and privilege escalation in registration flows

40+ commands