Web attacks

Methodology & Academy OWASP Top 10 Avoid Aggressive Scanning Web Enumeration Fuzzing Bypass 403 / 401 Registration Form Email Verification Bypass Email injections Phone Number Injection Login Forms Attacks Bypass Captcha OAuth Misconfiguration 2FA / OTP Bypass 302 Password Reset SQL Injection NoSQL injection LDAP Injection XSS SSI / ESI Injection CSP Bypass File Inclusion LFI / RFI File Upload Attacks Command Injection Markdown injection XPath Injection HTTP Verb Tampering HTTP Header Exploitation HTTP Request Smuggling Price / Checkout Manipulation Methods Testing Credit Cards Cookies Misconfiguration Basic HTTP Authentification JWT Token IDOR XXE / XSLT SSTI CSTI SSRF CSRF CORS Open Redirection CSPT Relative Path Overwrite, RPO CRLF Injection JSON Attack Prototype Pollution Web Mass Assignment Web Cache Clickjacking Tabnabbing Race Conditons WAF Bypass CMS Django Flask / Werkzeug Tomcat (8080)Tomcat CGI Nginx IIS Exchange / OWA GitLab Jenkins Splunk Elasticsearch PRTG Network Monitor osTicket ColdFusion Nagios Webmin Slack Moodle Jira Magento Prestashop Docker

PreviousEncryption NextMethodology & Academy

Was this helpful?