web application exploitation
Step 1:
https://owasp.org/www-project-top-ten/
Step 2:
https://application.security/free/owasp-top-10
https://tryhackme.com/room/learnowaspzap
https://tryhackme.com/module/web-hacking-1
https://tryhackme.com/path/outline/web
Step 3:
https://portswigger.net/web-security