Yield Cat - Security Learning Platform

Understanding Web Vulnerabilities Through Hacking a Live App

Engineering Teams

Learning not to break stuff through breaking stuff

All vulnerabilities are explained with prevention strategies - perfect for eng teams adopting secure coding.

Login
Immersive Environment

Your investment company has given you access to evaluate bonds for possible investment.

Find a way to the profitable data. Greed is good.

Live Stats
  • 147 Published Bonds
  • 67 Upcoming Bonds
  • 60 Active Investors
Login
What is Yield Cat?

The Yield Cat platform simulates a high-yield bond trading system with numerous security flaws.

Some of our challenges (and coding errors):
  • Find SQL injection vulnerabilities
  • Discover stored and reflected XSS opportunities
  • Bypass authorization mechanisms
  • Exploit SSRF vulnerabilities
  • Find exposed code and leaking APIs
  • Abuse log data and error messages
Yield Cat
Random Cat
Platform Status

No incidents detected today.

View Report