WannaRace is a WebApp intentionally made vulnerable to Race Condition
Description
Race Condition vulnerability can be practiced in the developed WebApp. Task is to buy a Mega Box using race condition that costs more than available vouchers. Two challenges are made for practice. Challenge B is to be solved when PHPSESSID cookie is present, cookie is auto created when user is logged in. Happy learning .
Building And Running The Docker Image
Build the Docker image with:
git clone https://github.com/Xib3rR4dAr/WannaRace && cd WannaRace
docker build -t xib3rr4dar/wanna_race:1.0 .
Run Docker image:
docker run -it –rm xib3rr4dar/wanna_race:1.0
Then open in browser relevant IP:PORT
Screenshots
Main Page
Four vouchers worth 400 units available for recharge
Task is to buy Mega box (which is worth 401 units) by exploiting race condition
Challenge #2
Same as Challenge #1 but requires login so that PHPSESSID and appropriate cookies are set
garak checks if an LLM can be made to fail in a way we don't…
Vermilion is a simple and lightweight CLI tool designed for rapid collection, and optional exfiltration…
ADCFFS is a PowerShell script that can be used to exploit the AD CS container…
Tartufo will, by default, scan the entire history of a git repository for any text…
Loco is strongly inspired by Rails. If you know Rails and Rust, you'll feel at…
A data hoarder’s dream come true: bundle any web page into a single HTML file.…