/vuln-netframework

vuln-netframework is a .net-framework 4.7 project that include worst coding practices about common vulnerabilities like Insecure Deserialization, Os Command Injection, SQL Injection, etc.

Primary LanguageC#Apache License 2.0Apache-2.0

build semgrep-rules Bugs Vulnerabilities

vuln-netframework

vuln-netframework is a .net-framework 4.7 project that include worst coding practices about common vulnerabilities like Insecure Deserialization, Os Command Injection, SQL Injection, etc.

setup

pre-request

  • .net framework 4.7
  • database for SQL Injection arttacks (optional)
    • change connection string via your db values
    • create a table that name USER
    • USER table must include two cloumns these names NAME and ROLE

security-topics

  • Injection
    • OS Command Injection
    • SQL Injection
  • Request Forgery Attacks
    • Server Side Request Forgery
  • General Web Vulnerabilities
    • Insecure Deserialization (Friday the 13th JSON)
    • Regular Expression DOS

devsecops

contribution

  • If you want to support, just send PR :)

Note: Please pay attantion project structure before creating PR