Skip to content

LinuxUser255/Web-Security-Academy-Series

BranchesTags
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

837 Commits
API
API
 
 
DeleteCarlos
DeleteCarlos
 
 
GraphQL-API
GraphQL-API
 
 
HTTP_Request_Smuggling
HTTP_Request_Smuggling
 
 
HackingTools
HackingTools
 
 
Insecure-Deserialization
Insecure-Deserialization
 
 
JWT
JWT
 
 
LLM
LLM
 
 
SSTI
SSTI
 
 
broken-access-control
broken-access-control
 
 
broken-authentication
broken-authentication
 
 
business-logic-vulnerabilities
business-logic-vulnerabilities
 
 
clickjacking
clickjacking
 
 
command-injection
command-injection
 
 
cors
cors
 
 
csrf
csrf
 
 
directory-traversal
directory-traversal
 
 
dom-based-vulnerabilities
dom-based-vulnerabilities
 
 
file-upload-vulnerabilities
file-upload-vulnerabilities
 
 
information-disclosure
information-disclosure
 
 
scripts
scripts
 
 
sql-injection
sql-injection
 
 
ssrf
ssrf
 
 
turbo_intruder_scripts
turbo_intruder_scripts
 
 
websockets-vulnerabilities
websockets-vulnerabilities
 
 
xss
xss
 
 
xxe-injection
xxe-injection
 
 
Checklist.md
Checklist.md
 
 
ExtraBurpSuiteStuff.md
ExtraBurpSuiteStuff.md
 
 
LICENSE
LICENSE
 
 
MapTheApp.png
MapTheApp.png
 
 
README.md
README.md
 
 
WebAppHackers_Checklist.md
WebAppHackers_Checklist.md
 
 
introduction-slides.pptx
introduction-slides.pptx
 
 
main.py
main.py
 
 
practitioner-level-labs.md
practitioner-level-labs.md
 
 

Repository files navigation

Web Security Academy Series: Learning Path

This is a forked repo of rkhal101's original Web Security Academy Series.

In this version, many of the Python scripts have been refactored as well as expanding many of the notes and adding extra resources. Think of it being to PortSwigger WebAcademy what SwissKeyRepo is to Web App Pentesting payloads - A one stop shop for everything you need, built on the FOSS Philosophy.

To view the commit history and changes, click --> Here.

Feel free to suggest any imporvements, submit a pull request, etc, and share with anyone who might find this useful. Colaboration and suggestions for improvement is always welcomed. Click here to vist PortSwigger's Learning Path

How to use this repo ?

  • Bookmark this page and use it as a jumping off point for the Learning Path.
  • Right-click open in new tab, any of the links on this README.
  • Think of it as a point of reference as you go through the labs.
  • Open and explore any of the directories for notes, scripts and resources for any of the challenges.

Web Academy videos: walkthrough & explanations.

Useful resources. I recommend bookmarking for quick access & reference.

People, researchers and organizations

Preparing for the Certification:

Web Security Academy Learning PathWebSecurityAcademyLogo

More videos

About

Exploit Code, notes, and resources to accompany PortSwiggers' WebAcademy Labs.

portswigger.net/web-security/learning-path

Topics

authentication python3 webapp exploits fileupload business-logic xss-exploitation clickjacking pentest-scripts burpsuite command-injection csrf-attacks xxe-injection information-disclosure portswigger ssrf-tool portswigger-labs webapppentesting webapphacking

Resources

Readme

License

GPL-3.0 license
Activity

Stars

5 stars

Watchers

1 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Python 81.3%
  • HTML 11.6%
  • JavaScript 3.4%
  • PHP 1.2%
  • C 0.7%
  • Java 0.5%
  • Other 1.3%