SQL injection, often referred to as SQLi, is an attack on a web application database server that causes malicious queries to be executed.

Time to open terminals in other’s machines with Command Injection and wreak havoc!

Time to learn how to detect and exploit XSS (Cross-site Scripting) vulnerabilities, giving us control of other visitors’ browsers.

We can hack a machine to gain access to its internal server resources with Server-Side Request Forgery. Let’s learn how.

Let’s learn how we can install Kali Linux (or any OS, really) on a Virtual Machine to keep learning how to hack with all of its tools!

When a website lets users introduce some type of data, it may be open to a File Inclusion attack, granting hackers access to the server.

Insecure Direct Object Reference or IDOR, is a relatively easy-to-spot vulnerability that can grant us access to things we shouldn’t have access to.

Let’s defeat logins and other authentication mechanisms that allow us access to unpermitted areas by learning about Authentication Bypass.

Time to learn the various ways of discovering subdomains to expand your attack surface of a target by finding hidden routes in a website.