Security Knowledge Framework
Courses
Free Labs
Requirements
Available Labs
Showing
0
of
0
Labs
Difficulty: All
All
Easy
Medium
Hard
Lab Name
Difficulty
Write-up
Start
Auth Bypass
Easy
View
Auth Bypass 1
Easy
View
Auth Bypass 2
Easy
View
Auth Bypass 3
Easy
View
Auth Bypass Simple
Easy
View
Client Side Restriction Bypass
Easy
View
Client Side Restriction Bypass 2
Medium
View
Client Side Template Injection
Medium
View
CMD Injection 1
Medium
View
CMD Injection 2
Hard
View
Command Injection 3
Hard
View
Python Command Injection 4
Hard
View
Blind CMD Injection 1
Hard
View
Content Security Policy
Medium
View
CORS Exploitation
Medium
View
Credentials Guessing 1
Easy
View
Credentials Guessing 2
Medium
View
Cross Site Scripting
Easy
View
Cross Site Scripting Attribute
Medium
View
Cross Site Scripting Href
Medium
View
XSS DOM
Hard
View
XSS DOM 2
Hard
View
XSS Stored
Medium
View
CSRF
Easy
View
CSRF SameSite
Medium
View
CSRF Weak
Easy
View
CSS Injection
Medium
View
Deserialisation YAML
Hard
View
Des Pickle 1
Hard
View
Des Pickle 2
Hard
View
DoS Regex
Medium
View
File Upload
Medium
View
Formula Injection
Medium
View
GraphQL DoS
Hard
View
GraphQL IDOR
Medium
View
GraphQL Injections
Hard
View
GraphQL Introspection
Medium
View
GraphQL Mutations
Hard
View
Python HttpOnly Session Hijacking XSS
Hard
View
HttpOnly Session Hijacking XSS
Hard
View
Information Leakage Comments
Easy
View
Information Leakage Metadata
Medium
View
Insecure Direct Object References
Medium
View
JWT Null
Hard
View
JWT Secret
Medium
View
LDAP
Hard
View
LDAP Harder
Hard
View
LFI 1
Medium
View
LFI 2
Hard
View
LFI 3
Hard
View
Parameter Binding
Medium
View
Prototype Pollution
Hard
View
Race Condition
Hard
View
RaceCondition File Write
Hard
View
Ratelimiting
Easy
View
Remote File Inclusion
Hard
View
Right To Left Override
Medium
View
Server Side Request Forgery
Hard
View
Server Side Template Injection
Hard
View
Session Puzzling
Hard
View
Session Management 1
Medium
View
SQLi Union Select
Hard
View
SQLi Login Bypass
Medium
View
SQLi LIKE
Medium
View
SQLi Blind
Hard
View
TLS Downgrade
Hard
View
Include Files From Untrusted Sources JS
Hard
View
Open Redirect
Easy
View
Open Redirect Hard
Hard
View
Open Redirect Harder 2
Hard
View
Open Redirect Harder 2
Hard
View
WebSocket Message Manipulation
Hard
View
XXE
Hard
View