{"version":1,"pages":[{"id":"F6svucYQz8cMy8H7Pvi9","title":"Bienvenid@!","pathname":"/","siteSpaceId":"sitesp_BUIip","emoji":"1f44b","description":""},{"id":"bbMjTn8isVzkC8TMOxUA","title":"WebSockets","pathname":"/websockets","siteSpaceId":"sitesp_BUIip","description":""},{"id":"Oz7Ajat1ot4FjV0zrdfM","title":"Lab: Manipulating WebSocket messages to exploit vulnerabilities","pathname":"/websockets/lab-manipulating-websocket-messages-to-exploit-vulnerabilities","siteSpaceId":"sitesp_BUIip","description":"","breadcrumbs":[{"label":"WebSockets"}]},{"id":"LC6Yj5rejd0Ilcy8SbqH","title":"Lab: Manipulating the WebSocket handshake to exploit vulnerabilities","pathname":"/websockets/lab-manipulating-the-websocket-handshake-to-exploit-vulnerabilities","siteSpaceId":"sitesp_BUIip","description":"","breadcrumbs":[{"label":"WebSockets"}]},{"id":"QQiKVpNKhsxt88oeXSOM","title":"Lab: Cross-site WebSocket hijacking","pathname":"/websockets/lab-cross-site-websocket-hijacking","siteSpaceId":"sitesp_BUIip","description":"","breadcrumbs":[{"label":"WebSockets"}]},{"id":"agek1KgtkiRl6E6gMV7K","title":"Insecure deserialization","pathname":"/insecure-deserialization","siteSpaceId":"sitesp_BUIip","description":""},{"id":"ZUWZzLLXyG9PYgPAOTrT","title":"Lab: Modifying serialized objects","pathname":"/insecure-deserialization/lab-modifying-serialized-objects","siteSpaceId":"sitesp_BUIip","description":"","breadcrumbs":[{"label":"Insecure deserialization"}]},{"id":"WNynbpjASHlVIQIqyR1P","title":"Lab: Modifying serialized data types","pathname":"/insecure-deserialization/lab-modifying-serialized-data-types","siteSpaceId":"sitesp_BUIip","description":"","breadcrumbs":[{"label":"Insecure deserialization"}]},{"id":"ItAu0DYjM6lek1r06EPh","title":"Lab: Using application functionality to exploit insecure deserialization","pathname":"/insecure-deserialization/lab-using-application-functionality-to-exploit-insecure-deserialization","siteSpaceId":"sitesp_BUIip","description":"","breadcrumbs":[{"label":"Insecure deserialization"}]},{"id":"RFz5pXWUndCQDejluD2f","title":"Lab: Arbitrary object injection in PHP","pathname":"/insecure-deserialization/lab-arbitrary-object-injection-in-php","siteSpaceId":"sitesp_BUIip","description":"","breadcrumbs":[{"label":"Insecure deserialization"}]},{"id":"TeWZSCLccfGI4GWqznaT","title":"Lab: Exploiting Java deserialization with Apache Commons","pathname":"/insecure-deserialization/lab-exploiting-java-deserialization-with-apache-commons","siteSpaceId":"sitesp_BUIip","description":"","breadcrumbs":[{"label":"Insecure deserialization"}]},{"id":"Vg16QeeVkn0KcewVSSKa","title":"Lab: Exploiting PHP deserialization with a pre-built gadget chain","pathname":"/insecure-deserialization/lab-exploiting-php-deserialization-with-a-pre-built-gadget-chain","siteSpaceId":"sitesp_BUIip","description":"","breadcrumbs":[{"label":"Insecure deserialization"}]},{"id":"4Vd4YUUNAmblfXsSvnUV","title":"Lab: Exploiting Ruby deserialization using a documented gadget chain","pathname":"/insecure-deserialization/lab-exploiting-ruby-deserialization-using-a-documented-gadget-chain","siteSpaceId":"sitesp_BUIip","description":"","breadcrumbs":[{"label":"Insecure deserialization"}]},{"id":"IG8CsaPZSHevYEgot0Aj","title":"Lab: Developing a custom gadget chain for Java deserialization","pathname":"/insecure-deserialization/lab-developing-a-custom-gadget-chain-for-java-deserialization","siteSpaceId":"sitesp_BUIip","description":"","breadcrumbs":[{"label":"Insecure deserialization"}]},{"id":"xBr1YgrKM51lZY1dAMhc","title":"Lab: Developing a custom gadget chain for PHP deserialization","pathname":"/insecure-deserialization/lab-developing-a-custom-gadget-chain-for-php-deserialization","siteSpaceId":"sitesp_BUIip","description":"","breadcrumbs":[{"label":"Insecure deserialization"}]},{"id":"0C5OCoako9PfcfpAsdXj","title":"Lab: Using PHAR deserialization to deploy a custom gadget chain","pathname":"/insecure-deserialization/lab-using-phar-deserialization-to-deploy-a-custom-gadget-chain","siteSpaceId":"sitesp_BUIip","description":"","breadcrumbs":[{"label":"Insecure deserialization"}]},{"id":"13Q8DjYFGyIjvvCGLCDL","title":"GraphQL API vulnerabilities","pathname":"/graphql-api-vulnerabilities","siteSpaceId":"sitesp_BUIip","description":""},{"id":"84Q80jW9u8LSyj5yPvdG","title":"Server-side template injection","pathname":"/server-side-template-injection","siteSpaceId":"sitesp_BUIip","description":""},{"id":"BNOoznqP5aFujP3DQcfJ","title":"Lab: Basic server side template injection","pathname":"/server-side-template-injection/lab-basic-server-side-template-injection","siteSpaceId":"sitesp_BUIip","breadcrumbs":[{"label":"Server-side template injection"}]},{"id":"r197pO9419i5MAh7EAmL","title":"Lab: Basic server side template injection (code context)","pathname":"/server-side-template-injection/lab-basic-server-side-template-injection-code-context","siteSpaceId":"sitesp_BUIip","breadcrumbs":[{"label":"Server-side template injection"}]},{"id":"SGZIkUM3Zat798XjqHmE","title":"Lab: Server side template injection using documentation","pathname":"/server-side-template-injection/lab-server-side-template-injection-using-documentation","siteSpaceId":"sitesp_BUIip","breadcrumbs":[{"label":"Server-side template injection"}]},{"id":"Sm7sQqY1I1ENFQnLIcdv","title":"Lab: Server side template injection in an unknown language with a documented exploit","pathname":"/server-side-template-injection/lab-server-side-template-injection-in-an-unknown-language-with-a-documented-exploit","siteSpaceId":"sitesp_BUIip","breadcrumbs":[{"label":"Server-side template injection"}]},{"id":"rtvMvTuuXzeLHrUXfOGx","title":"Lab: Server side template injection with information disclosure via user supplied objects","pathname":"/server-side-template-injection/lab-server-side-template-injection-with-information-disclosure-via-user-supplied-objects","siteSpaceId":"sitesp_BUIip","breadcrumbs":[{"label":"Server-side template injection"}]},{"id":"urWCn3sRunDPZwW32dRU","title":"Lab: Server side template injection in a sandboxed environment","pathname":"/server-side-template-injection/lab-server-side-template-injection-in-a-sandboxed-environment","siteSpaceId":"sitesp_BUIip","breadcrumbs":[{"label":"Server-side template injection"}]},{"id":"nR24zqzQoOz9XSer2UYH","title":"Lab: Server side template injection with a custom exploit","pathname":"/server-side-template-injection/lab-server-side-template-injection-with-a-custom-exploit","siteSpaceId":"sitesp_BUIip","breadcrumbs":[{"label":"Server-side template injection"}]},{"id":"CpMSgyoaGOSGDjnU26Qv","title":"Web cache poisoning","pathname":"/web-cache-poisoning","siteSpaceId":"sitesp_BUIip","description":""},{"id":"5xmklVoLVUKn6oFKq4m0","title":"HTTP Host header attacks","pathname":"/http-host-header-attacks","siteSpaceId":"sitesp_BUIip","description":""},{"id":"UeIZGviG3EiiWPQSnKAU","title":"HTTP request smuggling","pathname":"/http-request-smuggling","siteSpaceId":"sitesp_BUIip","description":""},{"id":"L2shbQtShyOn5vXzvIyh","title":"OAuth authentication","pathname":"/oauth-authentication","siteSpaceId":"sitesp_BUIip","description":""},{"id":"VumPcqBqptADQJ3TZpSd","title":"JWT attacks","pathname":"/jwt-attacks","siteSpaceId":"sitesp_BUIip","description":""},{"id":"pYealWhyxiAIkAWkIgai","title":"Prototype pollution","pathname":"/prototype-pollution","siteSpaceId":"sitesp_BUIip","description":""},{"id":"JVxt96MaCH115aZCSg8O","title":"Essential skills","pathname":"/essential-skills","siteSpaceId":"sitesp_BUIip","description":""}]}