• Ruby-on-Rails
  • Completed by 3 students

From SQL injection to Shell III

  • Difficulty:

This exercise covers how to gain access to an administration interface using SQL injection followed by how to get command execution using ImageTragick

  • Ruby
  • Completed by 0 students

Length Extension Attack Coming soon

  • Difficulty:

This exercise covers how to use a length extension attack to exploit a directory traversal vulnerability

  • Ruby-on-Rails
  • Completed by 7 students

IDOR to Shell

  • Difficulty:

This exercise covers how to get code execution by chaining vulnerabilities in a Ruby-on-Rails application