thepentesting.ninja | Notes
Docs
Blog
Home
k
Toggle theme
Docs
Webapp
Web App Attacks
This section provides an index of the many web app hacking attack vectors.
Table of Contents
2FA-OTP
Bypass 403 / 401
Bypass Captcha
CMS
Command Injection
Cookies Misconfiguration
CORS
CRLF Injection
CSP Bypass
CSPT
CSTI
CSRF
Email Verification Bypass
Email Injections
File Inclusion LFI / RFI
File Upload Attacks
Fuzzing
HTTP Header Exploitation
HTTP Request Smuggling
HTTP Verb Tampering
IDOR
JSON Attack
JWT Token
LDAP Injection
Login Forms Attacks
Markdown Injection
NoSQL Injection
OAuth Misconfiguration
Open Redirection
Password Reset
Phone Number Injection
Price Manipulation Methods
Prototype Pollution
Registration Form
Relative Path Overwrite RPO
SQL Injection
SSI Injection, Server Side Include Injection
SSTI
SSRF
Tabnabbing
Testing Credit Cards
WAF Bypass
Web Cache
Web Enumeration
Web Mass Assignment
XSS
XXE
2FA / OTP
On this page
Table of Contents
Scroll to top