learn365

This repository contains all the information shared during my Learn 365 Challenge. Learn 365 is a challenge to keep the learning spirit going on and challenge myself to learn something daily for the whole year, it can be anything from infosec to general life. Follow me on Twitter for Regular Updates: Harsh Bothra. Huge thanks to Mehedi Hasan Remon, who originally created and maintained this repository.

Day	Topic
1	2FA Bypass Techniques
2	Regular Expression Denial Of Service
3	SAML Vulnerabilities
4	Unauthenticated & Exploitable JIRA Vulnerabilities
5	Client-Side Template Injection(CSTI)
6	Cross-Site Leaks (XS-Leaks)
7	Cross-Site Script Includes (XSSI)
8	JSON Padding Attacks
9	JSON Attacks
10	Abusing Hop-by-Hop Headers
11	Cache Poisoned Denial of Service (CPDos)
12	Unicode Normalization
13	WebSocket Vulns (Part-1)
14	WebSocket Vulns (Part-2)
15	WebSocket Vulns (Part-3)
16	Web Cache Deception Attack
17	Session Puzzling Attack
18	Mass Assignment Attack
19	HTTP Parameter Pollution
20	GraphQL Series (Part-1)
21	GraphQL Vulnerabilities (Part-2)
22	GraphQL WrapUp (Part-3)
23	Password Reset Token Issues
24	My previous works
25	Salesforce Security Misconfiguration (Part-1)
26	Salesforce Security Misconfiguration (Part-2))
27	Salesforce Configuration Review (Wrap)
28	Common Business Logic Issues: Part-1
29	Common Business Logic Issues (Part-2)
30	Common Business Logic Issues (Wrap)
31	Captcha Bypass Techniques
32	Pentesting Kibana Service
33	Pentesting Docker Registry
34	HTML Scriptless Attacks / Dangling Markup Attacks (Part - 1)
35	HTML Scriptless Attacks / Dangling Markup Attacks (Wrap)
36	Pentesting Rsync Service

About

This repo is about @harshbothra_ 365 days of learning Tweet & Mindmap collection