Web Security

CSE 365 - Spring 2023.

Exploit various web security vulnerabilities.

Exploit a path traversal vulnerability

Connect with SSH

Link your SSH key, then connect with: ssh hacker@pwn.college

Exploit a command injection vulnerability

Connect with SSH

Link your SSH key, then connect with: ssh hacker@pwn.college

Exploit an authentication bypass vulnerability

Connect with SSH

Link your SSH key, then connect with: ssh hacker@pwn.college

Exploit a structured query language injection vulnerability to login

Connect with SSH

Link your SSH key, then connect with: ssh hacker@pwn.college

Exploit a structured query language injection vulnerability to leak data

Connect with SSH

Link your SSH key, then connect with: ssh hacker@pwn.college

Exploit a structured query language injection vulnerability with an unknown database structure

Connect with SSH

Link your SSH key, then connect with: ssh hacker@pwn.college

Exploit a structured query language injection vulnerability to blindly leak data

Connect with SSH

Link your SSH key, then connect with: ssh hacker@pwn.college

Exploit a cross site scripting vulnerability

Connect with SSH

Link your SSH key, then connect with: ssh hacker@pwn.college

Exploit a cross site scripting vulnerability with more complicated context

Connect with SSH

Link your SSH key, then connect with: ssh hacker@pwn.college

Exploit a cross site scripting vulnerability to cause a user action

Connect with SSH

Link your SSH key, then connect with: ssh hacker@pwn.college

Exploit a cross site request forgery vulnerability

Connect with SSH

Link your SSH key, then connect with: ssh hacker@pwn.college

Exploit a cross site request forgery vulnerability where the request must POST

Connect with SSH

Link your SSH key, then connect with: ssh hacker@pwn.college

Exploit a cross site scripting vulnerability to exfilitrate user session data

Connect with SSH

Link your SSH key, then connect with: ssh hacker@pwn.college

Exploit a cross site scripting vulnerability to exfilitrate user data

Connect with SSH

Link your SSH key, then connect with: ssh hacker@pwn.college

Exploit a (memory corruption) stack injection vulnerability

Connect with SSH

Link your SSH key, then connect with: ssh hacker@pwn.college

30-Day Scoreboard:

This scoreboard reflects solves for challenges in this module after the module launched in this dojo.

7-Day | 30-Day | All-Time

Rank		Hacker	Badges		Score

Web Security

CSE 365 - Spring 2023.

Web Security: Introduction

Web Security: Structured Query Language

Web Security: Injection

Web Security: Same-Origin Policy

Tooling Documentation

level1

Connect with SSH

level2

Connect with SSH

level3

Connect with SSH

level4

Connect with SSH

level5

Connect with SSH

level6

Connect with SSH

level7

Connect with SSH

level8

Connect with SSH

level9

Connect with SSH

level10

Connect with SSH

level11

Connect with SSH

level12

Connect with SSH

level13

Connect with SSH

level14

Connect with SSH

level15

Connect with SSH

30-Day Scoreboard:

Web Security

CSE 365 - Spring 2023.

Web Security: Introduction

Web Security: Introduction

Web Security: Structured Query Language

Web Security: Structured Query Language

Web Security: Injection

Web Security: Injection

Web Security: Same-Origin Policy

Web Security: Same-Origin Policy

Tooling Documentation

Tooling Documentation

level1 7057 solves

level1

Connect with SSH

level2 6011 solves

level2

Connect with SSH

level3 5749 solves

level3

Connect with SSH

level4 5520 solves

level4

Connect with SSH

level5 5344 solves

level5

Connect with SSH

level6 5079 solves

level6

Connect with SSH

level7 4108 solves

level7

Connect with SSH

level8 5152 solves

level8

Connect with SSH

level9 4958 solves

level9

Connect with SSH

level10 4421 solves

level10

Connect with SSH

level11 3949 solves

level11

Connect with SSH

level12 3561 solves

level12

Connect with SSH

level13 2997 solves

level13

Connect with SSH

level14 2816 solves

level14

Connect with SSH

level15 1187 solves

level15

Connect with SSH

30-Day Scoreboard: