Early surface:
SQL Injection
(1) how to determine a page SQL injection, in what ways
(2) how to inject specific databases, such as access, sqlserver, mysql, oracle, mongodb, Nosql
(3) How come there are circumstances Waf bypass, which bypasses means
XSS
(1) XSS Category
(2) Dom type scenario XSS
Specific action (3) XSS of
CSRF
(4) Principle
(5) specific application scenario
Upload
(6) Given a scenario, how to get around, bypassing the black list
Code audit
(7) which code audit done, what specific vulnerabilities found, what is the principle
EXP writing ability
(8) given a specific scenario, manually write a Java deserialization CVE EXP
Competition ability
More meaningful topics (9) competition encountered
coding
(10) Cookie and Session principles