root
/
public
mirror of https://github.com/01-edu/public.git
14
27
Fork 3
Code Issues 178 Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
5714 Commits
73 Branches
1 Tag
310 MiB
 
 
 
 
 
 
Branch: master
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'master'
${ noResults }
public/subjects/cybersecurity/web-hack
davhojt 78016943b0
docs(cybersecurity): add warning to advise that projects are for educative purposes only 		1 year ago
..
audit docs(web-hack): restore hyperlink 1 year ago
resources docs(cibersecurity): add cibersecurity branch subjects to public 1 year ago
README.md docs(cybersecurity): add warning to advise that projects are for educative purposes only 1 year ago

README.md
escape_control_characters

Web Hack

Objective

To validate the project you will have to deploy the web platform, find at least 3 vulnerabilities and develop a c99, r57 type shell. Your php shell should allow you to add a file, delete a file, and execute a command.

Advice

https://owasp.org/
https://en.wikipedia.org/wiki/Web_shell

Submission and audit

Files that must be inside your repository:

  • a README.md file, Which explains all the steps you went through in order to benefit from the all vulnerabilities and how to fix all of them.

Don’t hesitate to double check the names of your folders and files to ensure they are correct!

These methods and tools are for educational purposes only, so that you have a better understanding of how to protect against similar vulnerabilities. You must ensure that you do not attempt any exploit-type activity without the explicit permission of the owner of the machine, system or application. Failure to obtain permission risks breaking the law.