A comprehensive collection of labs designed to simulate XML External Entity (XXE) attacks across various programming languages and parsers. It serves as a sandbox for testing Web Application Firewalls and secure parser configurations.
Tech Stack
PHPTesting & QA
Why XXE-study?
• Covers diverse parser behaviors
• Ideal for local security training
• Supports WAF rule validation
Limitations
• Requires multiple runtimes
• Complex local setup
• No automated grading
10/23/2025
Last Update
35
Forks
2
Issues
MIT
License
Financial Leak Detected
Stop the "SaaS Tax"
Your team could be burning cash. Switching to XXE-study instantly boosts your runway.
Competitor Cost
-$1,440
/ year (est. based on PortSwigger Web Security Academy)
