# NTUST Web Security ###### tags: `NTUSTWS` `CTF` `Web` ## Beginner - [0x24(Lab - how2http)](https://hackmd.io/@SBK6401/BkPYzYwHT) ## Information Leak - [0x01(Lab - `gitleak`)](/3Xj8_w8DRXCiQTkOVZDUDA) - [0x02(Lab - `.DS_Store`)](/PFcCv9a0R6qYe5zWjF8lxw) ## SQL Injection - [0x03(Lab - Log me in + Revenge)](/Qxr4qzRkTn-Nu9pC18lrRQ) ## Upload - [0x04(Lab - Image Space 0x01)](/hHnfNHNUT4elsfJornKfeQ) - [0x05(Lab - Image Space 0x02)](/o-gUAJR0Sc-m5u8jqkKbSA) - [0x06(Lab - Image Space 0x03)](/GvKwznABQjiT7oMLK_fpWA) ## LFI - [0x07(Lab - `HakkaMD`)](/nGAjlvyURtOcRBW1XfCfOA) - [0x08(Lab - My First Meow Website)](/c065ai1ITBeJ-xwaFXZKBQ) ## Command Injection - [0x09(Lab - DNS Lookup Tool)](/TTdIKJ9jSA2CT_DEHwuLGA) - [0x10(Lab - DNS Lookup Tool | WAF)](/7x0Gr0C_QEahfS_QaTLYTg) ## Fronted - [0x11(Lab - XSS Me)](/P_fM0z45S92aIJ1aAlw75g) ## SSRF - [0x12(Lab - Web Preview Card)](/QnbdmctMRbWe43_bFasl3A) - [0x13(Lab - SSRFrog)](/lNI_b0-ISsG0ICnbe48--A) - [0x14(Lab - Debug)](/TWGY21P6QmSxOereuY0dgQ) ## Language Feature - [0x19(Lab - PHP Login)](/vqzpUFbdRM2wJ8S-xwBJGA) ## SSTI - [0x15(Lab - Jinja)](/X-7i36xjQl6g9PN6v6L1CQ) - [0x22(Lab - Pug)](/BDru5NA7QA-srBMgMKcbtQ) ## Deserialization - [0x15.5(Pickle)](/IcoQql7UQiegLv8KtK2wOw) - [0x16(Lab - Pickle)](/bJMLdsBQRhW_rYhtcu-xXQ) - [0x16.5(php unserialize)](/FkF8p-zrSMSOWFkE4vvAJQ) - [0x17(Lab - Baby Cat)](/V7vE-hvdSWKLFrIBUyW-jw) - [0x18(Lab - Magic Cat)](/t4kXUrE1R3KPFkr6akwfMQ) - [0x23(Lab - XXE)](/BQoomS34SEybdHUKv8l1Jw)
{"metaMigratedAt":"2023-06-17T21:22:14.308Z","metaMigratedFrom":"Content","title":"NTUST Web Security","breaks":true,"description":"0x01(Lab - gitleak)","contributors":"[{\"id\":\"507cd57e-1008-4e58-8e33-79854a8ea67c\",\"add\":1583,\"del\":102}]"}
Expand menu