Week 1
Intro 
(no 6843 lecture)
Break 1: *.nsnagency (Solution)
Week 2
Week 3
Break 2: (Solution)
dev.ns.agency
team.ns.agency
admin.ns.agency
Ext Break 1: (Solution)
oauth-really-secret.jp.ns.agency
very-secret.jp.ns.agency
Week 4
Session Management 
OAuth and SAML 
Week 5
Access Control 
XXE + PHP Unserialize 
Break 3: (Solution)
yipple.ns.agency
yipple-dev.ns.agency
pre-flighting.ns.agency
yipple-qa.ns.agency
Ext Break 2: (Solution)
sharp-edges.ru.ns.agency
saml-super-secret.eu.ns.agency
hush-hush-con.eu.ns.agency
cereal.dev.ns.agency
8xxxxxxxxml.redline.jp.ns.agency
Week 6
Week 7
Revision – no slides wtf
(Shubs and Naffy guest talk)
Week 8
Break 4: (Solution)
gov.ns.agency
yuan.ns.agency
ru.ns.agency
Ext Break 3: (Solution)
internship.dev.ns.agency
cspdomain1.dev.ns.agency
cspxss1.dev.ns.agency
cspdomain2.dev.ns.agency
Week 9
Week 10
Break 5: (Solution)
smartcontracts.dev1-x.ns.agency
math.group.ns.agency
vault5.gov.ns.agency
Ext Break 4: (Solution)
moonshot.oneshot.ns.agency
ssrfsquared.ns.agency
Week 11
Environment 
Vuln Research (not examinable?)
Week 12
Revision
(no 6843 lecture)
[6843 Tutorial links]
Dont expect these links to resolve outside of session.
| 7xxxxxxxml.redline.eu.ns.agency | xxe |
| logfile.lecture.ns.agency | logfile injection |
| chain.demo.ns.agency | CSRF |
| ssrf1.lecture.ns.agency | SSRF |
| ssrfphp.lecture.ns.agency | SSRF |
| xml.lecture.ns.agency | xxe into ssrf |
| xxe-xss.demo.ns.agency/testxml | xxee to xss |
| ssti.lecture.ns.agency | Template Injection / __mro__ |
Other
Sean’s 2017 Exam Writeup (broken)