Web vulnerabilities

LFI/RFI

HTTP parameters pollution

HPP attacks can be defined as the feasibilty to override or add HTTP GET/POST parameters by injecting query string delimiters. HtmlEntities are out of context here.

Session Fixation

  • http://shiflett.org/articles/session-fixation

SSRF

CSRF

SQLI

Cloud

  • madhuakula/kubernetes-goat designed to be intentionally vulnerable cluster environment to learn and practice Kubernetes security.