Vulnerabilities Explained
Before you begin; The tutorials included here are for education purposes only, and are intended only to educate the user around the dangers of insecure coding, how vulnerable code that users write could potentially be exploited, and how users could perform validation against potential vulnerabilities in their own applications. In no way should these tutorials be construed as educating users how to perform malicious attacks, nor should these tutorials be considered to replace formal web application security testing training.
If you’ve come here to learn how to hack,
you have come to the wrong place
you have come to the wrong place
There are a wide range of vulnerabilities out there, but most knowledge bases presume prior knowledge of web application security. Consider these “introductory articles” to vulnerabilities – a starting point to begin building further knowledge.
- Why Firewalls Aren’t Everything – sometimes the most devious traffic can look innocent
- SQL Injection – how to acheive it, and what the risks are
- Cross-Site Scripting (XSS) – the easiest attack ever
- XSS Unleashed – some more advanced XSS techniques explained
