Skip to content

vulnerability guides - Vulnerability Analysis & Exploitation Guides

Every vulnerability class has a fingerprint Learn to recognize , exploit , and write up each one. These guides cover the full spectrum from injection attacks to logic flaws with real payload examples , detection techniques , and remediation advice

Covered vulnerabilities:

  • Injection - SQLi , NoSQLi , command injection , template injection (SSTI) , LDAP injection
  • Access Control - IDOR , authorization bypass , authentication bypass , privilege escalation
  • Web Specific - XSS , CSRF , SSRF , open redirect , HTTP request smuggling
  • File Operations - LFI , RFI , file upload vulnerabilities , path traversal
  • Logic & Concurrency - race conditions , business logic flaws , deserialization attacks , RCE

first topic => authentication-bypass/


From the 0x1RIS OffSec library - for authorized testing only , Document everything