> For the complete documentation index, see [llms.txt](https://wiki.smhuda.com/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://wiki.smhuda.com/pentesting/application-security/web-application-security.md).

# Web Application Security

- [Web Shells](https://wiki.smhuda.com/pentesting/application-security/web-application-security/web-shells.md)
- [CSV Injection](https://wiki.smhuda.com/pentesting/application-security/web-application-security/csv-injection.md): A collection of CSV Injection templates and payloads
- [Measure Response Time using CURL](https://wiki.smhuda.com/pentesting/application-security/web-application-security/measure-response-time-using-curl.md)
- [OSINT](https://wiki.smhuda.com/pentesting/application-security/web-application-security/osint.md)
- [EyeWitness](https://wiki.smhuda.com/pentesting/application-security/web-application-security/osint/eyewitness.md)
- [GraphQL Hacking](https://wiki.smhuda.com/pentesting/application-security/web-application-security/graphql-hacking.md)
