ZTH: Obscure Web vuls is a learning room on TryHackMe created by Paradox. This room allows you to learn and practice exploiting a range of unique web vulnerabilities such as SSTI, CSRF, JWT and XXE.

Task 1 : Covers the intro and tells us that we will be learning SSTI, CSRF, JWT and XXE.

Click “Question Done” to proceed

Task 2: Provides an overview on how the room is divided up and the format on how questions and challenges will be presented.

Click “Question Done” to proceed

Task 3: Discusses Server Side Templates and what Server Side Template Injection SSTI is.

Click “Question Done” to proceed

Task 4: Provides explores template injection a little further with some detailed examples.

Octothorp

…I have no idea what I’m doing.

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store