This repository contains the course materials for the Web Hacking 101 workshop, created by Etive Mor for Codegarden 2025.
- Slides
- Exercises
The following lists will come in useful in some of the exercises:
- directories.txt for directory busting.
- emails.txt for user enumeration.
- passwords.txt for password guessing.
In this workshop we will look at an intentionally vulnerable web application called Damn Vulnerable Umbraco Application, or DVUA.
If you are attending the workshop in-person or live, a link to a hosted deployment of DVUA will be provided for you to attack. Otherwise, you can run it locally. Check out the DVUA repository for more information.
To get your certificate, after you complete the workshop, send a pull request
to this repository adding a JSON file in the _data/hackers directory. See the
README for more information.
The details you provide will be displayed on the course website which is public (as is this repository), so only share what you're comfortable with. You can then share it to your socials and such to show everyone you are now an elite hacker!
This workshop was created by a real person.
