🧪 PortSwigger Labs

This repo contains the solutions for the PortSwigger Labs available in the Academy section of their website: https://portswigger.net/web-security/all-labs

Why

This repo has been created to keep in a single place all the solutions of the labs. It should be helpful when preparing for the Burp Suite Certified Practitioner (https://portswigger.net/web-security/certification).

Tools

The tools needed (other than Burp Pro) to complete the labs.

• SQL Injection: sqlmap;
• XSS: dalfox, xsstrike;
• Clickjacking: None;
• DOM-based: None;
• CORS: None;
• XXE: None;
• SSRF: None;
• OS Command Injection: None;
• Server-Side Template Injection: None;
• Directory Traversal: None;
• Access Control: None;
• Authentication: None;
• WebSockets: None;
• Web Cache Poisoning: None;
• Information Disclosure: None;
• OAuth authentication: None;
• File Upload Vulnerabilities: ExifTool;

Roadmap

This primary goal is to add the Apprentice and Practitioner level labs (since are the ones suggested to complete before taking the exam):

• [x] SQL Injection Labs
• [x] XSS Labs
• [x] CSRF Labs
• [x] Clickjacking Labs
• [x] DOM-based vulnerabilities Labs
• [x] CORS Labs
• [x] XXE Injection Labs
• [x] SSRF Labs
• [ ] HTTP Request Smuggling Labs
• [x] OS Command Injection Labs
• [x] Server-Side Template Injection Labs
• [x] Directory Traversal Labs
• [x] Access Control Vulnerabilities Labs
• [x] Authentication Labs
• [x] WebSockets Labs
• [x] Web Cache Poisoning Labs
• [ ] Insecure Deserialization Labs
• [x] Information Disclosure Labs
• [ ] Business Logic Vulnerabilities Labs
• [ ] HTTP Host Header Attacks Labs
• [x] OAuth Authentication Labs
• [x] File Upload Vulnerabilities Labs