# Web Application Hacking

- [Attack Methodology](/kb/pentesting/web-application-hacking/attack-methodology.md)
- [Attacking Web Applications](/kb/pentesting/web-application-hacking/attacking-web-applications.md)
- [Authentication Bypass](/kb/pentesting/web-application-hacking/authentication-bypass.md)
- [Cross-Site Scripting](/kb/pentesting/web-application-hacking/cross-site-scripting.md)
- [Cross-Site Request Forgery](/kb/pentesting/web-application-hacking/cross-site-request-forgery.md)
- [File Inclusion](/kb/pentesting/web-application-hacking/file-inclusion.md)
- [Injection](/kb/pentesting/web-application-hacking/injection.md)
- [Command Injection](/kb/pentesting/web-application-hacking/injection/command-injection.md)
- [LDAP Injection](/kb/pentesting/web-application-hacking/injection/ldap-injection.md)
- [SQL Injection](/kb/pentesting/web-application-hacking/injection/sql-injection.md)
- [Server-Side Request Forgery](/kb/pentesting/web-application-hacking/server-side-request-forgery.md)
- [Web Shells](/kb/pentesting/web-application-hacking/web-shells.md)
- [Laudanum](/kb/pentesting/web-application-hacking/web-shells/laudanum.md)
- [Antak Webshell](/kb/pentesting/web-application-hacking/web-shells/antak-webshell.md)
- [PHP Web Shells](/kb/pentesting/web-application-hacking/web-shells/php-web-shells.md)