List of Challenges: ~ Chall 1 | URL ~ Chall 2 | Form ~ Chall 3 | User-Agent ~ Chall 4 | Referrer ~ Chall 5 | Cookie ~ Chall 6 | LocalStorage ~ Chall 7 | Login Page ~ Chall 8 | File Upload ~ Chall 9 | Base64 Encoding ~ Chall 10 | Removes Alert ~ Chall 11 | Removes Script ~ Chall 12 | Preg_replace ~ Chall 13 | HTML Entities ~ Chall 14 | Regex Filter #1 ~ Chall 15 | Regex Filter #2 ~ Chall 16 | Regex Filter #3 ~ Chall 17 | HTML Entities + URL Encode ~ Chall 18 | HTML Entities #2 (Special Character) ~ Chall 19 | HTML Entities #3 (Input Value) ~ Chall 20 | HTML Entities #4 (Input Value + Capitalizes) Screenshot: Instalation: Run your web server (XAMPP / LAMPP) Clone the repository and put the files in the /htdocs/xss-labs You can access http://localhost:8080/xss-labs Happy Hacking ^_^ Run this image: To run this image you need docker installed. Just run the command: docker run --name web-ctf -d -it -p 80:80 hightechsec/xsslabs Deploy Manually Docker image: Clone this repo (git clone https://github.com/tegal1337/0l4bs) Then run docker build -t "xsslabs" . and wait until it's done If the build is clear, run this command
A security-focused general purpose memory allocator providing the malloc API with hardening against heap corruption vulnerabilities.
cwe_checker is a suite of checks to detect common bug classes in ELF binaries using Ghidra for firmware analysis.
ConDroid performs concolic execution of Android apps to observe 'interesting' behavior in dynamic analysis.
Gitleaks is a SAST tool for detecting and preventing hardcoded secrets in git repos.
SAST and malware analysis tool for Android APKs with detailed scan information.
Drltrace is a dynamic API calls tracer for Windows and Linux applications.
API Security is a comprehensive solution that provides continuous discovery, vulnerability assessment, threat detection, compliance monitoring, dynamic testing, and remediation capabilities to protect APIs against various threats and vulnerabilities.
IDAPython plugin for generating Yara rules/patterns from x86/x86-64 code through parameterization.
An AI-powered career platform that automates the creation of cybersecurity job application materials and provides company-specific insights for job seekers.
Fabric Platform is a cybersecurity reporting solution that automates and standardizes report generation, offering a private-cloud platform, open-source tools, and community-supported templates.
Stay ahead in cybersecurity. Get the week's top cybersecurity news and insights in 8 minutes or less.
An AI-powered platform that automates threat hunting and analysis by processing cyber threat intelligence and generating customized hunt packages for SOC teams.
Aikido is an all-in-one security platform that combines multiple security scanning and management functions for cloud-native applications and infrastructure.
Permiso is an Identity Threat Detection and Response platform that provides comprehensive visibility and protection for identities across multiple cloud environments.
Wiz Cloud Security Platform is a cloud-native security platform that enables security, dev, and devops to work together in a self-service model, detecting and preventing cloud security threats in real-time.
Adversa AI is a cybersecurity company that provides solutions for securing and hardening machine learning, artificial intelligence, and large language models against adversarial attacks, privacy issues, and safety incidents across various industries.