Below is a comprehensive demonstrating the methodology and techniques expected at a "Web-200" skill level. This is a composite scenario designed to teach the concepts often found in Offensive Security PDFs or exam reports.
: Document every payload that works during your lab time. Group them by vulnerability type and required server environment. web-200 offensive security pdf
CSRF forces an end user to execute unwanted actions on a web application in which they are currently authenticated. Below is a comprehensive demonstrating the methodology and
Exploits the browser's default behavior of automatically including session cookies with cross-site requests. web-200 offensive security pdf