All efforts for the AWAE course and preparation for the Offensive Security Web Expert (OSWE) exam.
- https://popped.io/hijacking-sessions-using-socat/
- https://pentesterlab.com/exercises/xss_and_mysql_file/course
- https://www.acunetix.com/blog/articles/persistent-xss/
- https://portswigger.net/web-security/cross-site-scripting
-
XSS and MySQL
- https://www.exploit-db.com/docs/english/45074-file-upload-restrictions-bypass.pdf
- http://www.securityidiots.com/Web-Pentest/hacking-website-by-shell-uploading.html
- https://www.owasp.org/index.php/Unrestricted_File_Upload
- Popcorn machine from HackTheBox
- Vault machine from HackTheBox
- [Paper] File Upload Restrictions Bypass
- Shell the web - Methods of a Ninja
- Unrestricted File Upload
- Atlassian Crowd Pre-auth RCE
- Popcorn machine from HackTheBox
- Vault machine from HackTheBox
- Introduction to WebSockets
- [Video] Hacking with Websocket - BlackHat
- Remote Hardware takeover via Websocket Hijacking
- Cross-Site WebSocket Hijacking to full Session Compromise
- Introduction to Code Review [PentesterLab]
- Static code analysis writeups
- TrendMicro - Secure Coding Dojo
- Bug Hunting with Static Code Analysis [Video]
- Shopify Remote Code Execution - Hackerone
- Finding vulnerabilities in source code ( APS.NET)
- A deep dive into ASP.NET Deserialization
- Writeups by mr_me
- https://www.owasp.org/images/6/6b/PHPMagicTricks-TypeJuggling.pdf
- https://medium.com/@Q2hpY2tlblB3bnk/php-type-juggling-c34a10630b10
- https://foxglovesecurity.com/2017/02/07/type-juggling-and-php-object-injection-and-sqli-oh-my/
- https://www.netsparker.com/blog/web-security/php-type-juggling-vulnerabilities/
- http://turbochaos.blogspot.com/2013/08/exploiting-exotic-bugs-php-type-juggling.html
- https://www.netsparker.com/blog/web-security/type-juggling-authentication-bypass-cms-made-simple/
- https://www.php.net/manual/en/types.comparisons.php
- https://github.com/spaze/hashes
- https://www.whitehatsec.com/blog/magic-hashes/
- Falafel machine from HackTheBox
- OWASP - PHPMagicTricks TypeJuggling
- PHP Type Juggling - Introduction
- Type Juggling, PHP Object Injection, SQLi
- Writing Exploits For PHP Type Juggling
- Type Juggling Authentication Bypass Vulnerability in CMS Made Simple
- PHP Magic Hashes
- Detailed Explanation of PHP Type Juggling Vulnerabilities
- [Video] PHP Type Juggling Vulnerabilities, Netsparker
- [Video] Falafel machine from HackTheBox
- https://ckarande.gitbooks.io/owasp-nodegoat-tutorial/content/tutorial/a1_-_server_side_js_injection.html
- https://capacitorset.github.io/mathjs/
- Server Side JS Injection
- Remote Code Execution in math.js
- Arbitrary code execution in fast-redact
- NVIDIA GeForce Experience OS Command Injection - CVE-2019-5678
- SetTimeout and SetInterval use eval therefore are evil
- Pentesting Node.js Application : Nodejs Application Security
- NodeJS remote debugging with vscode
- Escape NodeJS Sandboxes
- https://maikthulhu.github.io/2019-05-17-remote-debugging-node-vscode/
- https://github.com/ajinabraham/Node.Js-Security-Course
- https://www.acunetix.com/blog/web-security-zone/deserialization-vulnerabilities-attacking-deserialization-in-js/
- https://www.yeahhub.com/nodejs-deserialization-attack-detailed-tutorial-2018/
- Celestial machine from HackTheBox
- RCE with SQL Injection - MSSQL
- SQL Injection to LFI to RCE - MySQL
- From SQLi to SHELL (I and II) - PentesterLab
- Pre-Auth Takeover of OXID eShops
- Blind SQL Injection
- [Paper] PostgreSQL Injection
- Having Fun With PostgreSQL
- Blind Postgresql Sql Injection Tutorial
- SQL Injection Cheat Sheet - PentestMonkey
- SQL Injection Cheat Sheet - PayloadAllTheThings
- Exploiting H2 SQL injection to RCE \
- https://pentesterlab.com/exercises/from_sqli_to_shell/course
- https://www.acunetix.com/websitesecurity/blind-sql-injection/
- http://pentestmonkey.net/cheat-sheet/sql-injection/postgres-sql-injection-cheat-sheet
- http://www.leidecker.info/pgshell/Having_Fun_With_PostgreSQL.txt
- https://www.exploit-db.com/papers/13084
- http://www.postgresqltutorial.com/postgresql-string-functions/
- https://www.linuxtopia.org/online_books/database_guides/Practical_PostgreSQL_database/c7547_002.htm
- https://www.infigo.hr/files/INFIGO-TD-2009-04_PostgreSQL_injection_ENG.pdf
- https://dotcppfile.wordpress.com/2014/07/12/blind-postgresql-sql-injection-tutorial/
- A Deep Dive into XXE Injection
- From XXE to RCE: Pwn2Win CTF 2018 Writeup
- Blind XXE to RCE
- Apache Flex BlazeDS XXE Vulnerabilty
- WebLogic EJBTaglibDescriptor XXE
- [Portswigger Research] Server Side Template Injection
- [Video] SSTI : RCE For The Modern Web App - albinowax
- Server Side Template Injection
- Jinja2 template injection filter bypasses
- Exploitation of Server Side Template Injection with Craft CMS plugin SEOmatic <=3.1.3
- Use of Deserialization in .NET Framework Methods and Classes. https://www.nccgroup.trust/globalassets/our-research/uk/images/whitepaper-new.pdf
- https://www.blackhat.com/docs/us-17/thursday/us-17-Munoz-Friday-The-13th-JSON-Attacks-wp.pdf
- Testing Password rest functionalities
- OWASP - Forgot Password Cheatsheet
- How we hacked multiple user accounts using weak reset tokens for passwords