Penetration Testing For - Web | Mobile | API | Thick Client | Source Code Review | DevSecOps | Wireless | Network Pentesting, etc...

A OWASP Based Checklist With 80+ Test Cases

Vulnerable Client-Server Application (VuCSA) is made for learning how to perform penetration tests of non-http thick clients. It is written in Java (with JavaFX graphical user interface) and contains multiple challenges including SQL injection, RCE, XML vulnerabilities and more.

A website that lets the user upload his songs on a server. It was made in two versions: Pure HTML (thin Client) and Thymeleaf Rich Internet Application (thick Client)

TIW (Track 4) 2022 - Project for "Technologies for the Web" course at Politecnico di Milano - Grade: 30/30