This repository will contain an evolving set of .NET applications that can be used for testing.
We have implemented the following vulnerabilities:
| OWASP Vuln Type | Path | Status |
|---|---|---|
| Directory Traversal | /api/saveSettings | completed |
| XSS | /api/xss | completed |
| Serialization | /api/serial | completed |
| SQLi | /api/Add | completed |
| Data Leak | /api/customers/id | completed |
| Insecure Cookie | WIP | |
| XXE | /api/xxe | completed |