# 6. Web Application

***

## Sections

1. [Web App Lab Setup](https://blog.syselement.com/tcm/courses/peh/6-webapp/1-web-lab)
2. [Web App - SQL Injection](https://blog.syselement.com/tcm/courses/peh/6-webapp/2-web-sqli)
3. [Web App - XSS](https://blog.syselement.com/tcm/courses/peh/6-webapp/3-web-xss)
4. [Web App - Command Injection](https://blog.syselement.com/tcm/courses/peh/6-webapp/4-web-cmd-injection)
5. [Web App - Insecure File Upload](https://blog.syselement.com/tcm/courses/peh/6-webapp/5-web-file-upload)
6. [Web App - Authentication Attacks](https://blog.syselement.com/tcm/courses/peh/6-webapp/6-web-auth-attacks)
7. [Web App - XXE](https://blog.syselement.com/tcm/courses/peh/6-webapp/7-web-xxe)
8. [Web App - IDOR](https://blog.syselement.com/tcm/courses/peh/6-webapp/8-web-idor)
9. [Web App - Capstone Practical Lab](https://blog.syselement.com/tcm/courses/peh/6-webapp/9-web-capstone-lab)

***