Need Virtual Machine to learn Ethical Hacking ? XVWA | Xtreme Vulnerable Web Application
In this video we create a virtual machine known as XVWA (extremely vulnerable web application) which is used to learn application security.
This VM can be download from the following link
https://www.vulnhub.com/entry/xtreme-...
XVWA is designed to understand following security issues.
SQL Injection – Error Based
SQL Injection – Blind
OS Command Injection
XPATH Injection
Formula Injection
PHP Object Injection
Unrestricted File Upload
Reflected Cross Site Scripting
Stored Cross Site Scripting
DOM Based Cross Site Scripting
Server Side Request Forgery (Cross Site Port Attacks)
File Inclusion
Session Issues
Insecure Direct Object Reference
Missing Functional Level Access Control
Cross Site Request Forgery (CSRF)
Cryptography
Unvalidated Redirect & Forwards
Server Side Template Injection
Ref:
https://www.vulnhub.com/entry/xtreme-...
#XVWA
#XtremeVulnerableWebApplication
