Ninjas workout : Vulnerable NodeJS Web Application

Kali Linux

Ninjas workout : Vulnerable NodeJS Web Application

Ninjas workout is a Vulnerable NodeJS Web Application.

Quick Start

Download the Repo =>
run npm i

After Installing all dependency just run the application

node app.js or nodemon app.js

ADDED BUGS

Prototype Pollution
No SQL Injection
Cross site Scripting
Broken Access Control
Broken Session Management
Weak Regex Implementation
Race Condition
CSRF -Cross Site Request Forgery
Weak Bruteforce Protection
User Enumeration
Reset Password token leaking in Referrer
Reset Password bugs
Sensitive Data Exposure
Unicode Case Mapping Collision
File Upload
SSRF
XXE
Open Redirection
Directory Traversal
Insecure Deserilization => Remote Code Execution
Server Side Template Injection
Timing Attack

Download

R K

Next BloodyAD : An Active Directory Privilege Escalation Framework »

Previous « FACT : A Tool To Collect, Process And Visualise Forensic Data From Clusters Of Machines

Burrow – Breaking Through Firewalls With Open Source Ingenuity

Burrow is an open source tool for burrowing through firewalls, built by teenagers at Hack Club.…

1 day ago

Cyber security

Its-A-Trap : Building Secure Web Applications With A Golang Web Server For Authentication

Simple golang webserver that listens for basic auth or post requests and sends a notification…

1 day ago

Cyber security

Nutek-Apple : Unleashing Power On macOS And Linux

Nutek Security Platform for macOS and Linux operating systems. Tools for hackers, bug hunters and…

1 day ago

Cyber security

SecureSphere Labs – A Haven For Cybersecurity Innovators And Ethical Hackers

Welcome to SecureSphere Labs, your go-to destination for a curated collection of powerful hacking tools…

1 day ago

Cyber security

Vulpes/VulpOS : The Docker-Powered All-in-One Workstation For Penetration Testing And Offsec Labs

All in one Docker-based workstation with hacking tools for Pentesting and offsec Labs by maintained…

1 day ago

Hacking Tools

LiCo-Extrator : Revolutionizing Icon Extraction Across Platforms

Got it! Below is the updated README.md file with instructions for downloading the project on…

2 days ago

Kali Linux Tutorials