- designed for Intraworlds security workshop
- Install Docker
- Install Docker Compose
- Clone this repository
git clone https://github.com/intraworlds/workshop-hackthisweb.git
or download ZIP file
-
before run check if your ports
localhost:80
andlocalhost:8080
are "free", not running app using these ports -
run
docker-compose up
and you access the website- app: https://localhost/
- username:
[email protected]
- password:
richie
- adminer: http://localhost:8080/?server=mysql&username=admin&db=demo
- password:
1234
- ... need any inspiration?
- OWASP SQL injection
- Soom: SQL Injection (Full Paper) (czech only)
- PHP triky: Obrana proti SQL Injection (czech only)
- OWASP CSFR
- Soom (czech only)
- PHP triky: Cross-Site Request Forgery (czech only)
- Co je Cross-Site Request Forgery a jak se mu bránit (czech only)