vuln-netframework is a .net-framework 4.7 project that include worst coding practices about common vulnerabilities like Insecure Deserialization, Os Command Injection, SQL Injection, etc.

• .net framework 4.7
• database for SQL Injection arttacks (optional)
  • change connection string via your db values
  • create a table that name USER
  • USER table must include two cloumns these names NAME and ROLE

• Injection
  • OS Command Injection
  • SQL Injection
• Request Forgery Attacks
  • Server Side Request Forgery
• General Web Vulnerabilities
  • Insecure Deserialization (Friday the 13th JSON)
  • Regular Expression DOS

• All vulnerabilities can be detected via semgrep-rules

• If you want to support, just send PR :)

Note: Please pay attantion project structure before creating PR