Lesser Known Web Attack Lab is for intermediate pentester that can test and practice lesser known web attacks such as Object Injection, XSSI, PHAR Deserialization, variables variable ..etc. Write-ups are welcome.
Just clone the git with
git clone https://github.com/weev3/LKWA and move it to your web server and you are good to go.
You may be interested in...
Ring Video Doorbell (1st Gen) – 720p HD video, motion activated alerts, easy installation – Satin Nickel Safety Technology International, Inc. STI-6400 Exit Stopper Multifunction Door Alarm, Helps Prevent Unauthorized Exits or Entries Through Emergency Doors DoorBox - Weatherproof Package Delivery Box (US & Internationally Patented) Steel Cable, Anti-Theft Alarm, Secure Lock to Receive Multiple Deliveries (Ultra-Premium(Alarm Included), Large Blue) ZOSI 8CH 1080P Security Camera System Outdoor with 1TB Hard Drive,H.265+ 8Channel 1080P CCTV Recorder 8pcs HD 1920TVL Home Surveillance Cameras with 120ft Night Vision Easy Remote Access Motion Alert Swann 8 Channel 4 Camera Security System, Wired Surveillance 1080p HD DVR 1TB HDD, Audio Capture, Weatherproof, Color Night Vision, Heat & Motion Sensing Warning Light, Alexa + Google, SWDVK-845804WL
- Blind RCE
- PHAR Deserialization
- PHP Object Injection
- PHP Object Injection via Cookies
- PHP Object Injection (Object Reference)
- Variables variable