Gold Standard: Advanced Banking Web Site
This advanced banking application includes 54 challenges such as SQL Injection, XSS, authentication/authorization issues, business logic flaws, and more. Many of these vulnerabilities include some form of poorly implemented mitigations such as blacklisting attack strings and client-side validation making them harder to exploit than Shadow Bank. Players have to be creative and thorough in their testing to bypass the mitigations and successfully exploit the system!
||Bank officials (via admin interface) can: