vuln-netframework is a .net-framework 4.7 project that include worst coding practices about common vulnerabilities like Insecure Deserialization, Os Command Injection, SQL Injection, etc.
- .net framework 4.7
- database for SQL Injection arttacks (optional)
- change connection string via your db values
- create a table that name
USER USERtable must include two cloumns these namesNAMEandROLE
- Injection
- OS Command Injection
- SQL Injection
- Request Forgery Attacks
- Server Side Request Forgery
- General Web Vulnerabilities
- Insecure Deserialization (Friday the 13th JSON)
- Regular Expression DOS
- All vulnerabilities can be detected via semgrep-rules
- If you want to support, just send PR :)
Note: Please pay attantion project structure before creating PR