HTTP Parameter Pollution (HPP) Labs
Learn how duplicate parameters can bypass security controls and manipulate application logic.
Lab 1 - HPP Auth Role Escalation (login + duplicate param)
Lab 2 - HPP Auth Bypass
Lab 3 - HPP WAF Evasion
Solution
More web challenges at RatCTF →
Get certified: Web App Pentesting (CxWAP) →