๐Ÿšฉ
THM Walkthroughs
  • THM Walkthroughs
    • ๐Ÿง‘โ€๐ŸซTutorial
  • ๐ŸŸฆDifficulty: Info
    • ๐Ÿ”ŒWhat is Networking?
    • ๐Ÿ”ŒIntro to LAN
    • ๐ŸงLinux Fundamentals
      • ๐ŸงLinux Fundamentals Part 1
        • Task 2 - A Bit of Background on Linux
        • Task 4 - Running Your First few Commands
        • Task 5 - Interacting With the Filesystem!
        • Task 6 - Searching for Files
        • Task 7 - An Introduction to Shell Operators
      • ๐ŸงLinux Fundamentals Part 2
        • Task 3 - Introduction to Flags and Switches
        • Task 4 - Filesystem Interaction Continued
        • Task 5 - Permissions 101
        • Task 6 - Common Directories
      • ๐ŸงLinux Fundamentals Part 3
        • Task 3 - Terminal Text Editors
        • Task 4 - General/Useful Utilities
        • Task 5 - Processes 101
        • Task 6 - Maintaining Your System: Automation
        • Task 8 - Maintaining Your System: Logs
    • ๐ŸชŸWindows Fundamentals
      • ๐ŸชŸWindows Fundamentals 1
      • ๐ŸชŸWindows Fundamentals 2
      • ๐ŸชŸWindows Fundamentals 3
    • ๐Ÿ”“Principles of Security
    • ๐ŸPython Basics
    • ๐Ÿ”History of Malware
    • ๐ŸฆนCommon Attacks
    • ๐Ÿ–ฅ๏ธSecurity Awareness
    • โš”๏ธIntro to Offensive Security
    • ๐ŸฆนPentesting Fundamentals
    • ๐Ÿ”“CVE Walkthroughs
      • ๐Ÿ–ฅ๏ธSudo Security Bypass: CVE-2019-14287
      • ๐Ÿ–ฅ๏ธSudo Buffer Overflow: CVE-2019-18634
      • ๐Ÿ–ฅ๏ธBaron Samedit: CVE-2021-3156
      • ๐Ÿ–ฅ๏ธOverlayFS: CVE-2021-3493
      • ๐Ÿ–ฅ๏ธPolkit: CVE-2021-3560
      • ๐Ÿ–ฅ๏ธPwnkit: CVE-2021-4034
      • ๐ŸชถApache HTTP Server Path Traversal: CVE-2021-41773/42013
      • ๐ŸงปDirty Pipe: CVE-2022-0847
      • ๐ŸŸขSpring4Shell: CVE-2022-22965
    • ๐ŸŸงBurp Suite
      • ๐ŸŸงBurp Suite: The Basics
      • ๐ŸŸงBurp Suite: Repeater
    • ๐ŸChallenges
      • โคด๏ธBypass Disable Functions
    • ๐ŸŽŸ๏ธTHM PROMOs
      • ๐ŸŽŸ๏ธLearn and win prizes [PROMO ENDED]
      • ๐ŸŽŸ๏ธLearn and win prizes #2 [PROMO ENDED]
  • ๐ŸŸฉDifficulty: Easy
    • ๐Ÿš€Learning Cyber Security
    • ๐Ÿ”The Hacker Methodology
    • ๐Ÿ”Google Dorking
      • Task 2 - Let's Learn About Crawlers
      • Task 4 - Beepboop - Robots.txt
      • Task 5 - Sitemaps
      • Task 6 - What is Google Dorking?
    • ๐ŸOWASP Top 10
      • Task 5 - Command Injection Practical
      • Task 7 - Broken Authentication Practical
      • Task 11 - Sensitive Data Exposure (Challenge)
      • Task 13 - XML External Entity - eXtensible Markup Language
      • Task 14 - XML External Entity - DTD
      • Task 16 - XML External Entity - Exploiting
      • Task 18 - Broken Access Control (IDOR Challenge)
      • Task 19 - Security Misconfiguration
      • Task 20 - Cross-site Scripting
      • Task 21 - Insecure Deserialization
      • Task 24 - Insecure Deserialization - Cookies
      • Task 25 - Insecure Deserialization - Cookies Practical
      • Task 30 - Insufficient Logging and Monitoring
    • ๐Ÿ“กNmap
      • Task 2 - Introduction
      • Task 3 - Nmap Switches
      • Task 5 - TCP Connect Scans
      • Task 6 - Scan Types SYN Scans
      • Task 7 - UDP Scans
      • Task 8 - NULL, FIN and Xmas
      • Task 9 - ICMP Network Scanning
      • Task 10 - NSE Scripts Overview
      • Task 11 - Working with the NSE
      • Task 12 - Searching for Scripts
      • Task 13 - Firewall Evasion
      • Task 14 - Practical
    • ๐Ÿ“กRustScan
      • Task 2 - Installing RustScan
      • Task 5 - Extensible
      • Task 7 - Scanning Time!
      • Task 8 - RustScan Quiz
    • ๐Ÿ™Crack the hash
    • ๐ŸŒOhSINT
    • ๐Ÿง‘โ€๐Ÿš€Vulnversity
    • ๐ŸงŠIce
    • ๐ŸชŸBlue
    • ๐ŸŽ„Advent of Cyber 4 (2022)
  • ๐ŸŸจDifficulty: Medium
    • ๐ŸชŸAttacktive Directory
      • Task 3 - Welcome to Attacktive Directory
      • Task 4 - Enumerating Users via Kerberos
      • Task 5 - Abusing Kerberos
      • Task 6 - Back to the Basics
      • Task 7 - Elevating Privileges within the Domain
      • Task 8 - Flag Submission Panel
    • ๐Ÿ’€Mr Robot CTF
    • ๐Ÿ›—Linux PrivEsc
    • ๐Ÿ›—Linux PrivEsc Arena [WIP]
    • ๐Ÿ›—Windows PrivEsc Arena
  • ๐ŸŸงDifficulty: Hard
    • ๐Ÿ˜Hacking Hadoop [WIP]
  • ๐ŸŸฅDifficulty: Insane
    • โ›บYou're in a cave [WIP]
  • Blank Room (Duplicate Me)
Powered by GitBook
On this page
  • Task 1 Introduction
  • Read the above.
  • Task 2 Accessing machines
  • Connect to our network or deploy the AttackBox.
  • Task 3 [Severity 1] Injection
  • I've understood Injection attacks.
  • Task 4 [Severity 1] OS Command Injection
  • I've understood command injection.
  • Task 5 [Severity 1] Command Injection Practical
  • Task 6 [Severity 2] Broken Authentication
  • I've understood broken authentication mechanisms.
  • Task 7 [Severity 2] Broken Authentication Practical
  • Task 8 [Severity 3] Sensitive Data Exposure (Introduction)
  • Read the introduction to Sensitive Data Exposure and deploy the machine.
  • Task 9 [Severity 3] Sensitive Data Exposure (Supporting Material 1)
  • Read and understand the supporting material on SQLite Databases.
  • Task 10 [Severity 3] Sensitive Data Exposure (Supporting Material 2)
  • Read the supporting material about cracking hashes.
  • Task 11 [Severity 3] Sensitive Data Exposure (Challenge)
  • Task 12 [Severity 4] XML External Entity
  • Deploy the machine attached to the task.
  • Task 13 [Severity 4] XML External Entity - eXtensible Markup Language
  • Task 14 [Severity 4] XML External Entity - DTD
  • Task 15 [Severity 4] XML External Entity - XXE Payload
  • Try the payload mentioned in description on the website.
  • Task 16 [Severity 4] XML External Entity - Exploiting
  • Task 17 [Severity 5] Broken Access Control
  • Read and understand how broken access control works.
  • Task 18 [Severity 5] Broken Access Control (IDOR Challenge)
  • Task 19 [Severity 6] Security Misconfiguration
  • Task 20 [Severity 7] Cross-site Scripting
  • Task 21 [Severity 8] Insecure Deserialization
  • Task 22 [Severity 8] Insecure Deserialization - Objects
  • Select the correct term of the following statement "if a dog was sleeping", would this be: A) A State, B) A Behaviour
  • Task 23 [Severity 8] Insecure Deserialization - Deserialization
  • What is the name of the base-2 formatting that data is sent across a network as?
  • Task 24 [Severity 8] Insecure Deserialization - Cookies
  • Task 25 [Severity 8] Insecure Deserialization - Cookies Practical
  • Task 26 [Severity 8] Insecure Deserialization - Code Execution
  • flag.txt
  • Task 27 [Severity 9] Components With Known Vulnerabilities - Intro
  • Read above.
  • Task 28 [Severity 9] Components With Known Vulnerabilities - Exploit
  • Read the above!
  • Task 29 [Severity 9] Components With Known Vulnerabilities - Lab
  • How many characters are in /etc/passwd (use wc -c /etc/passwd to get the answer)
  • Task 30 [Severity 10] Insufficient Logging and Monitoring
  • Task 31 What Next?
  • Read the above!

๐ŸOWASP Top 10

Learn about and exploit each of the vulnerabilities; the 10 most critical web security risks.

PreviousTask 6 - What is Google Dorking?NextTask 5 - Command Injection Practical

Last updated 2 years ago

Room AttributesValue

Task 1 Introduction

This room breaks each category in the OWASP Top 10 (2017) project down and includes details on what the vulnerability is, how it occurs and how you can exploit it. You will put the theory into practise by completing supporting challenges.

  • Injection

  • Broken Authentication

  • Sensitive Data Exposure

  • XML External Entity

  • Broken Access Control

  • Security Misconfiguration

  • Cross-site Scripting

  • Insecure Deserialization

  • Components with Known Vulnerabilities

  • Insufficent Logging & Monitoring

The room has been designed for beginners and assume no previous knowledge of security.

Read the above.

No answer needed

Task 2 Accessing machines

Connect to our network or deploy the AttackBox.

No answer needed

Task 3 [Severity 1] Injection

I've understood Injection attacks.

No answer needed

Task 4 [Severity 1] OS Command Injection

I've understood command injection.

No answer needed

Task 5 [Severity 1] Command Injection Practical

Task 6 [Severity 2] Broken Authentication

I've understood broken authentication mechanisms.

No answer needed

Task 7 [Severity 2] Broken Authentication Practical

Task 8 [Severity 3] Sensitive Data Exposure (Introduction)

Read the introduction to Sensitive Data Exposure and deploy the machine.

No answer needed

Task 9 [Severity 3] Sensitive Data Exposure (Supporting Material 1)

Read and understand the supporting material on SQLite Databases.

No answer needed

Task 10 [Severity 3] Sensitive Data Exposure (Supporting Material 2)

Read the supporting material about cracking hashes.

No answer needed

Task 11 [Severity 3] Sensitive Data Exposure (Challenge)

Task 12 [Severity 4] XML External Entity

Deploy the machine attached to the task.

No answer needed

Task 13 [Severity 4] XML External Entity - eXtensible Markup Language

Task 14 [Severity 4] XML External Entity - DTD

Task 15 [Severity 4] XML External Entity - XXE Payload

Try the payload mentioned in description on the website.

No answer needed

Task 16 [Severity 4] XML External Entity - Exploiting

Task 17 [Severity 5] Broken Access Control

Read and understand how broken access control works.

No answer needed

Task 18 [Severity 5] Broken Access Control (IDOR Challenge)

Task 19 [Severity 6] Security Misconfiguration

Task 20 [Severity 7] Cross-site Scripting

Task 21 [Severity 8] Insecure Deserialization

Task 22 [Severity 8] Insecure Deserialization - Objects

Select the correct term of the following statement "if a dog was sleeping", would this be: A) A State, B) A Behaviour

Task 23 [Severity 8] Insecure Deserialization - Deserialization

What is the name of the base-2 formatting that data is sent across a network as?

Task 24 [Severity 8] Insecure Deserialization - Cookies

Task 25 [Severity 8] Insecure Deserialization - Cookies Practical

Task 26 [Severity 8] Insecure Deserialization - Code Execution

flag.txt

Task 27 [Severity 9] Components With Known Vulnerabilities - Intro

Read above.

No answer needed

Task 28 [Severity 9] Components With Known Vulnerabilities - Exploit

Read the above!

No answer needed

Task 29 [Severity 9] Components With Known Vulnerabilities - Lab

How many characters are in /etc/passwd (use wc -c /etc/passwd to get the answer)

HINT: You know its a bookstore application, you should check for recent unauthenticated bookstore app rce's.

Task 30 [Severity 10] Insufficient Logging and Monitoring

Task 31 What Next?

Donate to the OWASP Foundation!

Read the above!

No answer needed

OWASP Logo
Reveal Flag
Reveal Flag
Reveal Flag
Reveal Flag

A Behaviour

Binary

4a69a7ff9fd68

1611

๐Ÿšฉ
๐Ÿšฉ
๐Ÿšฉ
๐Ÿšฉ
๐Ÿšฉ
๐Ÿšฉ
๐Ÿšฉ
๐Ÿšฉ
Task 5 - Command Injection Practical
Task 7 - Broken Authentication Practical
Task 11 - Sensitive Data Exposure (Challenge)
Task 13 - XML External Entity - eXtensible Markup Language
Task 14 - XML External Entity - DTD
Task 16 - XML External Entity - Exploiting
Task 18 - Broken Access Control (IDOR Challenge)
Task 19 - Security Misconfiguration
Task 20 - Cross-site Scripting
Task 21 - Insecure Deserialization
Task 24 - Insecure Deserialization - Cookies
Task 25 - Insecure Deserialization - Cookies Practical
Task 30 - Insufficient Logging and Monitoring

Subscription Required

False [Free]

Type

Walkthrough

Difficulty

Easy

Tags

OWASP, Top 10, Injection, Broken Authentication

Page cover image
LogoTryHackMe | OWASP Top 10TryHackMe
https://tryhackme.com/room/owasptop10
LogoDonate to Open Source Security Projects | OWASP Foundation