Skip to main content

API Vulnerabilities Labs

The following list of Open Source vulnerability labs offers resources for both beginners and experienced cybersecurity experts. These labs tends to cover a wide variety of API vulnerabilities, from the most basic to the most complex, allowing you to gain hands-on experience in identifying, exploiting, and mitigating security flaws. For now, this list is not so large but do not hesitate to contribute.

To enhance your API cybersecurity knowledge and skill set, we invite you to explore and contribute to this list of vulnerabilities labs:

JWT Alg None LabJWT Alg None
JWT Blank Password LabJWT Blank Password
JWT Not Verified LabJWT Not Verified
JWT Null Signature LabJWT Null Signature
JWT Weak HMAC Secret LabJWT Weak HMAC Secret
JWT Weak RSA Key LabJWT Alg None