API Vulnerabilities Labs
The following list of Open Source vulnerability labs offers resources for both beginners and experienced cybersecurity experts. These labs tends to cover a wide variety of API vulnerabilities, from the most basic to the most complex, allowing you to gain hands-on experience in identifying, exploiting, and mitigating security flaws. For now, this list is not so large but do not hesitate to contribute.
To enhance your API cybersecurity knowledge and skill set, we invite you to explore and contribute to this list of vulnerabilities labs:
| Lab | Vulnerability |
|---|---|
| JWT Alg None Lab | JWT Alg None |
| JWT Blank Password Lab | JWT Blank Password |
| JWT Not Verified Lab | JWT Not Verified |
| JWT Null Signature Lab | JWT Null Signature |
| JWT Weak HMAC Secret Lab | JWT Weak HMAC Secret |
| JWT Weak RSA Key Lab | JWT Alg None |