Social network The Secure was created as task for CTF on PHDays 2019 conference.
Social network contains vulnerabilities:
-
XSS
-
Lack of control over data from external systems
-
API design error
-
Compromise admin's JWT token
-
Copy .env.example and rename it to .env
-
Add setup to .env file
-
Make docker-compose up --build
MIT