# Portswigger writeups

- [SQLi labs Solution](/hackersnotes/writeups/portswigger-writeups/sqli-labs-solution.md): The page linked below shows a simple setup to start learning SQL and testing SQL injection payloads locally. One of the biggest things you can do to catapult your learning and experience is to set thi
- [Client-Side](/hackersnotes/writeups/portswigger-writeups/client-side.md)
- [Cross origin resource sharing (CORS)](/hackersnotes/writeups/portswigger-writeups/client-side/cross-origin-resource-sharing-cors.md)
- [Cross site request forgery (CSRF) Cookie](/hackersnotes/writeups/portswigger-writeups/client-side/cross-site-request-forgery-csrf-cookie.md)
- [Cross site request forgery (CSRF) Token](/hackersnotes/writeups/portswigger-writeups/client-side/cross-site-request-forgery-csrf-token.md)
- [Cross site scripting (XSS)](/hackersnotes/writeups/portswigger-writeups/client-side/cross-site-scripting-xss.md)
- [DOM BASED](/hackersnotes/writeups/portswigger-writeups/client-side/dom-based.md)
- [WebSocket](/hackersnotes/writeups/portswigger-writeups/client-side/websocket.md)
- [Server Side](/hackersnotes/writeups/portswigger-writeups/server-side.md)
- [Access control Vulnerabilities and privilege escalation](/hackersnotes/writeups/portswigger-writeups/server-side/access-control-vulnerabilities-and-privilege-escalation.md)
- [API testing](/hackersnotes/writeups/portswigger-writeups/server-side/api-testing.md)
- [Authentication vulnerabilities](/hackersnotes/writeups/portswigger-writeups/server-side/authentication-vulnerabilities.md)
- [Business logic vulnerabilities](/hackersnotes/writeups/portswigger-writeups/server-side/business-logic-vulnerabilities.md)
- [File Upload Vulnerabilities](/hackersnotes/writeups/portswigger-writeups/server-side/file-upload-vulnerabilities.md)
- [information disclosure vulnerabilities](/hackersnotes/writeups/portswigger-writeups/server-side/information-disclosure-vulnerabilities.md)
- [NoSQL Injection](/hackersnotes/writeups/portswigger-writeups/server-side/nosql-injection.md)
- [OAuth Authentication](/hackersnotes/writeups/portswigger-writeups/server-side/oauth-authentication.md)
- [OS Command injection](/hackersnotes/writeups/portswigger-writeups/server-side/os-command-injection.md)
- [Path Traversal](/hackersnotes/writeups/portswigger-writeups/server-side/path-traversal.md)
- [Race Condition](/hackersnotes/writeups/portswigger-writeups/server-side/race-condition.md)
- [Server side request forgery (SSRF)](/hackersnotes/writeups/portswigger-writeups/server-side/server-side-request-forgery-ssrf.md)
- [SQL Injection](/hackersnotes/writeups/portswigger-writeups/server-side/sql-injection.md)
- [XXE injection (Xml eXternal Entity)](/hackersnotes/writeups/portswigger-writeups/server-side/xxe-injection-xml-external-entity.md)