31-Days-Challenge Days Learned Day 1 2FA bypass techniques Day 2 Regular Expression Denial of Service Day 3 SAML Vulnerabilities Day 4 Unauthenticated & Exploitable JIRA Vulnerabilities Day 5 Server-Side/Client-Side Template Injection Day 6 Cross-Site Leaks Day 7 Cross-Site Script Inclusion Day 8 JSON Padding Attacks Day 9 JSON Attacks Day 10 Hop-By-Hop Attacks & CPDoS Attacks Day 11 Web Cache Poisoning Day 12 Websocket Vulns Part 1 Day 13 Websocket Vulns Part 2 Day 14 Web Cache Deception Attack Day 15 Session Puzzling Attack Day 16 Mass Assignment Attack Day 17 HTTP Parameter Pollution Day 18 GraphQL Attacks Day 19 Password Reset Token Issues Day 20 Account Takeover Techniques Day 21 Race Condition Day 22 Bussiness Logic Issues Day 23 CAPTCHA Bypass Day 24 HTML Scriptless Attacks/Dangling Markup Attacks Day 25 Rsync Service Day 26 CRLF Injection Day 27 OpenID Connect Issues Day 28 Cookie Based Authentication Vulnerabilities Day 29 Cobalt Vulnerability Wiki Day 30 CORS Misconfiguration Day 31 DNS Rebinding