Challenge 1 Complete!

Well done! Whilst a developer commenting about hard coded credentials is unlikely, there may be things that give away details about the implementation.

Challenge 2

For this exercise you will practice making a XSS attack.

This involves entering data containing Javascript. To help understand this and make your first XSS attack, try copy-pasting each of the below in turn into the text field.

  1. XSS
  2. <b>XSS</b>
  3. <script>alert('XSS')</script>

Your answer: Enter your attack into the form to practice XSS

Once you enter the XSS attack above, a link to the next challenge will appear here. It has to be an exact match.

Created by Richard Adams :: View challenge list