Simple websites vulnerable to Server Side Template Injections(SSTI)
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
XVWA is a badly coded web application written in PHP/MySQL that helps security enthusiasts to learn application security.
This lab is created to demonstrate pass-the-hash, blind sql and SSTI vulnerabilities