🇨🇳 简体中文 🇪🇸 Español 🇫🇷 Français 🇩🇪 Deutsch 🇯🇵 日本語 🇷🇺 Русский 🇰🇷 한국어 🇧🇷 Português 🇺🇸 English
Master client-side exploitation and authentication bypasses. Learn to identify XSS vulnerabilities, perform web brute-force attacks with Hydra, and exploit Insecure Direct Object References (IDOR).
| Index | Name | Difficulty | Practice |
|---|---|---|---|
| 1 | 🧩 🆓 Reflected Cross-Site Scripting (XSS) | Beginner | Start Lab |
| 2 | 🧩 🆓 Stored Cross-Site Scripting | Beginner | Start Lab |
| 3 | 🧩 🆓 Web Authentication Brute-Force | Beginner | Start Lab |
| 4 | 🧩 🆓 Broken Access Control (IDOR) | Beginner | Start Lab |
| 5 | 🎯 🆓 Web App Takeover Challenge | Intermediate | Start Challenge |
LabEx is an interactive, hands-on learning platform dedicated to coding and technology. It combines labs, AI assistance, and virtual machines to provide a no-video, practical learning experience. With a strict 'Learn by Doing' approach, interactive online environments in the browser with automated step-by-step checks, structured content organization through the Skill Tree learning system, and a growing resource of 30 Skill Trees and over 6,000 Labs, LabEx offers comprehensive practical education. The platform includes Labby, an AI learning assistant built on latest AI models, providing a conversational learning experience.