WEB Vulnerabilities
Server Side
SQL Injection
Directory Traversal
XXE Injection
SSRF - Server-side Request Forgery
Command Injection
Information Disclosure
Access Control Vulnerabilities and Privilege Escalation
File Upload Injections
Authentication
Client Side
XSS - Cross-site Scripting
DOM-Based Vulnerabilities
Clickjacking
CSRF - Cross-site Request Forgery
CORS - Cross-origin Resource Sharing
WebSockets
Advanced Techniques
...
Reverse Engineering
...
Crypto
...
Mobile
...
OSINT - Open-source Intelligence
...
Referências
PortSwigger Academy
HackTricks