About Us

This is a simple website for practice of VAPT labs

Challenges

Welcome to Vulnerable Challenges

Challenges 1 to 4 - Injection based client side attacks

Challenge 1

DOM-based XSS

Go to Challenge

Challenge 2

XSS

Go to Challenge

Challenge 3

HTML Injection

Go to Challenge

Challenge 4

IFRAME Injection

Go to Challenge

Challenges 5 to 8 - Sensitive Information Disclosure

Challenge 5

Sensitive Information Disclosure

Go to Challenge

Challenge 6

Cookie Theft (Simulated)

Go to Challenge

Challenge 7

Sensitive Data in URL

Go to Challenge

Challenge 8

Source Code Disclosure

Go to Challenge

Challenges 9 to 10 Parameter Manipulation attacks

Challenge 9

Insecure Direct Object Reference (IDOR)

Go to Challenge

Challenge 10

Insecure Forms

Go to Challenge

Challenges 11 to 12 - Attacks on Login for authentication bypass

Challenge 10

Go to Challenge

Challenge 11

Go to Challenge

Challenge 12

Captcha Bypass

Go to Challenge

Challenge 14 Open Redirect(Server attack)

Challenge 14

Open Redirect

Go to Challenge

Challenge 15 to 18 Improper security headers and controls

Challenge 15

Clickjacking

Go to Challenge

Challenge 16

Client Side Request Forgery

Go to Challenge

Challenge 17

Improper Input Validation

Go to Challenge

Challenge 18

HTTP Parameter Pollution

Go to Challenge