Nova Web Security Labs

Nova Web Security Labs For Web Pen-testing Learners By Yell Phone Naing

Installation For Linux

apt update
apt install docker*
cd ~ && wget https://raw.githubusercontent.com/yellphonenaing/WebHackingLiveClass/main/LabInstallation/novawebseclab.sh
sudo bash ~/novawebseclab.sh start

Vulnerabilities :-

1. Command Injection
2. Cross Site Request Forgery
3. Server Side Request Forgery
4. Arbitrary File Upload
5. File Inclusion
6. Remote Code Execution
7. Host Header Injection
8. Playing with htaccess
9. Insecure Deserialization
10. Broken Authentication and Authorization
11. Sensitive Data Exposure
12. Security Headers Misconfiguration
13. Race Conditions
14. Unvalidated Redirects and Forwards
15. Variables variable
16. Cross Site Scripting
17. Cross Site Scripting Inclusion
18. SQL Injection
19. Server Side Template Injection
20. CPanel Hacking / Cracking / Phishing (Doc)

Online Access :: https://lab.novacomputertraining.org/

All vulnerabilities are designed for beginner levels.