Web Application Pentest Lab
Overview
Comprehensive web application penetration testing practice covering the full OWASP Top 10 vulnerability classes. Used Burp Suite Professional to intercept, modify, and replay HTTP traffic. Exploited SQL injection, Cross-Site Scripting, Insecure Direct Object Reference, and Server-Side Request Forgery vulnerabilities on DVWA and HackTheBox platforms. Documented findings with exploitation proof-of-concept and remediation guidance.
Key Features
- ▸ OWASP Top 10 coverage (SQLi, XSS, IDOR, SSRF)
- ▸ Burp Suite Professional workflow
- ▸ DVWA and HackTheBox exploitation
- ▸ Proof-of-concept documentation
- ▸ Remediation guidance writing