BOOK THIS SPACE FOR AD
ARTICLE ADSecurity Operations Center Classroom. iCSI@NEISD (San Antonio, TX)
This lab explores XXE exploitation, focusing on general vs. parameter entities — an essential concept in CTF competitions. General and parameter entities in XML each have distinct properties, limitations, and use cases. This lab provides hands-on experience with both types, highlighting their roles in data exfiltration techniques.
VM and Walkthrough here: