all InfoSec news
Writeups for Damn Vulnerable Web Application (DVWA)
Oct. 1, 2023, 6:29 p.m. | Aftab Sama
InfoSec Write-ups - Medium infosecwriteups.com
Read this on GitHub
DVWA Writeup
- Brute Force
- Command Injection
- Cross Site Request Forgery (CSRF)
- File Inclusion
- File Upload
- SQL Injection
- SQL Injection (Blind)
- Weak Session IDs
- DOM Based Cross Site Scripting (XSS)
- Reflected Cross Site Scripting (XSS)
- Stored Cross Site Scripting (XSS)
- Content Security Policy (CSP) Bypass
- JavaScript Attacks
Brute Force
The goal is to brute force an HTTP login page.
Security level is currently: low.
On submitting the username and password we see that it is using get …
More from infosecwriteups.com / InfoSec Write-ups - Medium
Honeypots 101: A Beginner’s Guide to Honeypots
3 days, 11 hours ago |
infosecwriteups.com
No Dev Team? No Problem: Writing Malware and Anti-Malware With GenAI
3 days, 23 hours ago |
infosecwriteups.com
Devvortex Hackthebox Walkthrough
4 days, 12 hours ago |
infosecwriteups.com
Port Scanning for Bug Bounties
4 days, 12 hours ago |
infosecwriteups.com
Jobs in InfoSec / Cybersecurity
Senior Security Engineer - Detection and Response
@ Fastly, Inc. | US (Remote)
Application Security Engineer
@ Solidigm | Zapopan, Mexico
Defensive Cyber Operations Engineer-Mid
@ ISYS Technologies | Aurora, CO, United States
Manager, Information Security GRC
@ OneTrust | Atlanta, Georgia
Senior Information Security Analyst | IAM
@ EBANX | Curitiba or São Paulo
Senior Information Security Engineer, Cloud Vulnerability Research
@ Google | New York City, USA; New York, USA