Lesser Known Web Attack Lab is for intermediate pentester that can test and practice lesser known web attacks such as Object Injection, XSSI, PHAR Deserialization, variables variable ..etc. Write-ups are welcome. My own walk-through is here .

Just clone the git with git clone https://github.com/weev3/LKWA and move it to your web server and you are good to go.

• For XSSI, challenge you need to change Allow Override None to Allow Override ALL in apache2.conf file or move apache2.conf file to /etc/apache2/
• For PHAR Deserialization, you need to change phar.readonly = On to phar.readonly = Off in php.ini setting.

• Just run docker-compose up inside the Docker folder and open the browser on http:https://localhost:3000.
• For Docker Hub run docker pull kminthein/lkwa:latest then run docker run -ti -p 3000:80 kminthein/lkwa:latest

• Blind RCE
• XSSI
• PHAR Deserialization
• PHP Object Injection
• PHP Object Injection via Cookies
• PHP Object Injection (Object Reference)
• SSRF
• Variables variable

• Edoardo Rosa (@edoz90)