Welcome to my repository containing writeups for the PortSwigger Web Security Academy labs. This repository serves as a collection of my solutions and explanations for various challenges available on PortSwigger's platform.
This repository contains detailed explanations and solutions for a variety of web security challenges available on PortSwigger's Web Security Academy. The writeups are organized by category and challenge name, making it easy to navigate and find solutions for specific topics.
You can access the PortSwigger Labs here.
The challenges in this repository are organized into the following categories:
- SQL Injection
- Authentication
- Access Control
- File upload vulnerabilities
- Server-Side Request Forgery (SSRF)
- ... and more
To navigate through the writeups, simply browse through the folders corresponding to each category. Within each category folder, you will find individual markdown files for each challenge, containing detailed explanations and solutions.
Feel free to explore, learn, and contribute your own solutions or improvements to the existing writeups.
Contributions to this repository are highly encouraged. If you have alternative solutions, improvements, or additional writeups for challenges not covered yet, please consider submitting a pull request. Your contributions will help enrich the content and make it more valuable for the community.
These writeups are intended for educational purposes only. They are meant to provide learning opportunities and insights into web security concepts. Please use the knowledge gained responsibly and adhere to ethical standards when applying it.
Special thanks to PortSwigger for providing the Web Security Academy platform and the challenges that inspire learning and experimentation in the field of web security.