web-security-testing-tool

¿Qué es esto?

🎯 Consejos del simulador

📚 Glosario

SQLInjection

Insertar SQL malicioso en consultas

XSS

Cross-Site Scripting: inyectar scripts en páginas

CSRF

Falsificación de solicitudes entre sitios: forzar acciones no deseadas

IDOR

Referencia de objeto directo inseguro

SSRF

Falsificación de solicitudes del lado del servidor

BurpSuite

Popular herramienta de prueba de seguridad web

Fuzzing

Envío de datos aleatorios para encontrar fallas

Payload

Entrada maliciosa utilizada en el ataque

Sanitization

Limpiar la entrada del usuario de caracteres peligrosos

💬 Mensaje a los estudiantes

{'encouragement': "You're learning to protect the web. Every secure application you help create protects real people's data, money, and privacy. This is meaningful work.", 'reminder': 'ALWAYS test only applications you have permission to test. This simulator is safe - real unauthorized testing is illegal.', 'action': 'Start with injection attacks. Progress to XSS. Learn authentication testing. Eventually combine skills for full application assessments.', 'dream': 'A security tester from Kenya might protect African fintech applications. A researcher from Nigeria might earn bug bounties from global tech companies. Web security skills are valuable everywhere.', 'wiaVision': 'WIA Pin Code believes security skills should be global. As more services go online in developing nations, local security expertise becomes essential for protecting communities.'}

¿Qué es esto?

🎯 Consejos del simulador

📚 Glosario

💬 Mensaje a los estudiantes

Comenzar