# Web Application Security

- [Web Shells](/pentesting/application-security/web-application-security/web-shells.md)
- [CSV Injection](/pentesting/application-security/web-application-security/csv-injection.md): A collection of CSV Injection templates and payloads
- [Measure Response Time using CURL](/pentesting/application-security/web-application-security/measure-response-time-using-curl.md)
- [OSINT](/pentesting/application-security/web-application-security/osint.md)
- [EyeWitness](/pentesting/application-security/web-application-security/osint/eyewitness.md)
- [GraphQL Hacking](/pentesting/application-security/web-application-security/graphql-hacking.md)