Writeups for Damn Vulnerable Web Application (DVWA)

Read this on GitHub

DVWA Writeup

• Brute Force
• Command Injection
• Cross Site Request Forgery (CSRF)
• File Inclusion
• File Upload
• SQL Injection
• SQL Injection (Blind)
• Weak Session IDs
• DOM Based Cross Site Scripting (XSS)
• Reflected Cross Site Scripting (XSS)
• Stored Cross Site Scripting (XSS)
• Content Security Policy (CSP) Bypass
• JavaScript Attacks

Brute Force

The goal is to brute force an HTTP login page.

Security level is currently: low.

On submitting the username and password we see that it is using get …

ctf cybersecurity dvwa infosec owasp