All Challenges



Domains:
   

       

  • Anti-csrf Bypass | Variant 8
    Mission: Bypass Anti-CSRF defense
    Category: Bypassing Anti-csrf Protection
    Domain: The Web War


  • Anti-csrf Bypass | Variant 9 (per-page Token)
    Mission: Bypass Anti-CSRF defense
    Category: Bypassing Anti-csrf Protection
    Domain: The Web War


  • Anti-csrf Bypass | Variant 10
    Mission: Bypass Anti-CSRF defense
    Category: Bypassing Anti-csrf Protection
    Domain: The Web War


  • Encoded Xss | Variant 3
    Mission: Craft a payload URL that execute scripts upon page load. Your payload should not contai...
    Category: Xss/htmli: Universal Browser Edition
    Domain: The Web War


  • Anti-csrf Bypass | Variant 11
    Mission: Bypass Anti-CSRF defense
    Category: Bypassing Anti-csrf Protection
    Domain: The Web War


  • Anti-csrf Bypass | Variant 12 (captcha Edition)
    Mission: Bypass Anti-CSRF defense
    Category: Bypassing Anti-csrf Protection
    Domain: The Web War


  • Exploit Insecure Channel
    Mission: Practically prove MITM risk with hand-crafted BetterCap module
    Category: Exploitation Lab
    Domain: The Web War


  • Parenthesis Is Blocked - Pattern: Alert(0) | Variant 1
    Mission: Bypass XSS filter with a bypass technique used in SQL Injection
    Category: Bypasses In Cross Site Scripting (xss)
    Domain: The Web War


  • Do Subscriptions Or You Can't Read | Variant 1
    Mission: Read premium news without subscription
    Category: Data Is Golden
    Domain: The Web War


  • No External Url Allowed | Variant 1
    Mission: Redirect to external domain of your choice
    Category: Bypassing Open Redirect Protection
    Domain: The Web War