# Web Application Attacks

- [SQL Injection](/notes/web-application-attacks/sql-injection.md)
- [MySQL](/notes/web-application-attacks/sql-injection/mysql.md)
- [MSSQL](/notes/web-application-attacks/sql-injection/mssql.md)
- [Enable xp\_cmdshell](/notes/web-application-attacks/sql-injection/mssql/enable-xp_cmdshell.md)
- [xp\_cmdshell PowerShell Reverse Shell](/notes/web-application-attacks/sql-injection/mssql/xp_cmdshell-powershell-reverse-shell.md)
- [Blind SQLi in Websocket](/notes/web-application-attacks/sql-injection/blind-sqli-in-websocket.md)
- [OWASP Top 10 (2021)](/notes/web-application-attacks/owasp-top-10-2021.md)
- [Broken Access Control](/notes/web-application-attacks/owasp-top-10-2021/broken-access-control.md)