Posted password cracking episode

tuftsdev · Oct 5, 2023 · e061e1f · e061e1f
1 parent f315756
commit e061e1f
Show file tree

Hide file tree

Showing 3 changed files with 24 additions and 2 deletions.
diff --git a/index.html b/index.html
@@ -160,8 +160,8 @@ <h2>Syllabus</h2>
                     <li><a href="readings/#module4">Readings and Videos</a></li>
                     <li>Thursday, October 5th: Password Cracking with John the Ripper
                         <ul>
-                            <li><a href="#" target="_blank">On Twitch</a></li>
-                            <li><a href="#" target="_blank">On YouTube with Closed Captioning</a></li>
+                            <li><a href="https://www.twitch.tv/videos/1943484691" target="_blank">On Twitch</a></li>
+                            <li><a href="https://www.youtube.com/watch?v=SM2puUUcacA" target="_blank">On YouTube with Closed Captioning</a></li>
                         </ul>
                     </li>
                 </ul>

diff --git a/labs/lab06-xss.md b/labs/lab06-xss.md
@@ -0,0 +1,9 @@
+# Lab: The XSS Game
+
+## Instructions
+
+Complete Google's XSS Game: https://xss-game.appspot.com/.  You must complete all six levels to receive credit.
+
+## Submitting This Lab
+
+For students officially enrolled in the course, submit lab on Canvas.
diff --git a/labs/lab07-sqli.md b/labs/lab07-sqli.md
@@ -0,0 +1,13 @@
+# Lab: Gain Access to Website
+
+## Instructions
+
+Visit [redacted URL --see Canvas]. Without using any tools such as Burp Suite or sqlmap, and only using a modern web browser, gain access to the website --bypass the login.
+
+1. Explain what you did, what you used for username and password fields.
+
+2. What is the content on the page, or the key, after you gained access to the website.
+
+## Submitting This Lab
+
+For students officially enrolled in the course, submit lab on Canvas.