Beta - This platform is in active development. Features may change and data may be reset.
// path

Web Application Security

A structured introduction to web application security. Covers the two most prevalent and impactful vulnerability classes - Cross-Site Scripting and SQL Injection - with enough depth to understand, find, and fix them.

Cross-Site Scripting (XSS) 7 modules
beginner What is Cross-Site Scripting?
+100 XP
beginner Reflected XSS
+100 XP
intermediate Stored XSS
+175 XP
intermediate DOM-Based XSS
+175 XP
advanced XSS Filter Bypass Techniques
+250 XP
intermediate Preventing XSS
+175 XP
beginner Lab: Reflected XSS Discovery
+150 XP
SQL Injection 7 modules
beginner What is SQL Injection?
+100 XP
intermediate In-Band SQL Injection
+175 XP
intermediate Blind SQL Injection
+175 XP
advanced Out-of-Band SQL Injection
+250 XP
intermediate SQL Injection Across Different Databases
+175 XP
intermediate Preventing SQL Injection
+175 XP
beginner Lab: SQL Injection Basics
+150 XP
Sign up to start learning

Already have an account? Sign in