Overview This lab involves a vulnerable e-commerce application named Flower, where a SQL Injection flaw exists in the product search functionality. The vulnerability allows an attacker to manipula...

Overview This lab focuses on a notes web application where restricted admin access was protected using an adminAccessToken. While normal authentication was handled via JWT, the admin panel relied ...

Overview Tanuki is a web application that includes a user registration system with role-based access control. During testing, a critical authorization flaw was discovered where the client was able ...

Overview Diceforge is a web-based dice simulation application where users can select different dice types (e.g., d6, d8) and roll them to generate results. The backend processes user input and retu...

Overview Ottergram is a prototype social media web application similar to Instagram, featuring account registration, post creation, and image uploads. While exploring the application’s functionalit...

Overview This lab demonstrates an Insecure Direct Object Reference (IDOR) vulnerability in a note-sharing feature of a web application. Users can generate shareable links for their notes, but the ...

Overview This lab demonstrates a Broken Access Control vulnerability in an API endpoint used for retrieving user statistics in a typing test application. The issue arises because the server fails...

Overview This challenge demonstrates how sensitive information can be exposed through publicly accessible components of a web application, including source code comments, HTTP response headers, an...

Overview This room demonstrates exploitation of a critical SMB vulnerability (MS17-010), commonly known as EternalBlue. The attack leads to remote code execution on a Windows machine and full syst...

Overview This room focuses on web enumeration, exploiting a known CMS vulnerability, and privilege escalation using misconfigured sudo permissions. The attack path demonstrates how outdated softwa...