> ## Documentation Index
> Fetch the complete documentation index at: https://rootea.es/llms.txt
> Use this file to discover all available pages before exploring further.

# Web Cache Attacks (Poisoning / Deception)

> Recursos cross-platform para Web Cache Attacks (Poisoning / Deception): máquinas HTB, labs PortSwigger y rooms TryHackMe curados, con writeups validados y skills relacionadas.

# Web Cache Attacks (Poisoning / Deception)

Esta página agrega los **recursos para practicar Web Cache Attacks (Poisoning / Deception)** de forma cross-platform: máquinas retiradas de Hack The Box, labs de PortSwigger Web Security Academy y rooms de TryHackMe, más recursos curados (HackTricks, PortSwigger, etc.) y skills relacionadas.

## Recursos curados

| Fuente      | Enlace                                                                                                               |
| ----------- | -------------------------------------------------------------------------------------------------------------------- |
| PortSwigger | [https://portswigger.net/web-security/web-cache-deception](https://portswigger.net/web-security/web-cache-deception) |

## Labs PortSwigger que practican Web Cache Attacks (Poisoning / Deception) (21)

| Lab                                                                                                                                                                                                                                                                | Dificultad                                                 | Topic                    | Oficial                                                                                                                                                                                        |
| ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ | ---------------------------------------------------------- | ------------------------ | ---------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |
| [Cache key injection](/portswigger/labs/web-cache-poisoning/exploiting-implementation-flaws-web-cache-poisoning-cache-key-injection)                                                                                                                               | <span className="dbadge dbadge-easy">APPRENTICE</span>     | Web Cache Poisoning      | [Abrir](https://portswigger.net/web-security/web-cache-poisoning/exploiting-implementation-flaws/lab-web-cache-poisoning-cache-key-injection)                                                  |
| [Combining web cache poisoning vulnerabilities](/portswigger/labs/web-cache-poisoning/exploiting-design-flaws-web-cache-poisoning-combining-vulnerabilities)                                                                                                       | <span className="dbadge dbadge-easy">APPRENTICE</span>     | Web Cache Poisoning      | [Abrir](https://portswigger.net/web-security/web-cache-poisoning/exploiting-design-flaws/lab-web-cache-poisoning-combining-vulnerabilities)                                                    |
| [Exploiting exact-match cache rules for web cache deception](/portswigger/labs/web-cache-deception/wcd-exploiting-exact-match-cache-rules)                                                                                                                         | <span className="dbadge dbadge-easy">APPRENTICE</span>     | Web Cache Deception      | [Abrir](https://portswigger.net/web-security/web-cache-deception/lab-wcd-exploiting-exact-match-cache-rules)                                                                                   |
| [Exploiting HTTP request smuggling to perform web cache deception](/portswigger/labs/request-smuggling/exploiting-perform-web-cache-deception)                                                                                                                     | <span className="dbadge dbadge-easy">APPRENTICE</span>     | HTTP Request Smuggling   | [Abrir](https://portswigger.net/web-security/request-smuggling/exploiting/lab-perform-web-cache-deception)                                                                                     |
| [Exploiting HTTP request smuggling to perform web cache poisoning](/portswigger/labs/request-smuggling/exploiting-perform-web-cache-poisoning)                                                                                                                     | <span className="dbadge dbadge-easy">APPRENTICE</span>     | HTTP Request Smuggling   | [Abrir](https://portswigger.net/web-security/request-smuggling/exploiting/lab-perform-web-cache-poisoning)                                                                                     |
| [Exploiting path mapping for web cache deception](/portswigger/labs/web-cache-deception/wcd-exploiting-path-mapping)                                                                                                                                               | <span className="dbadge dbadge-easy">APPRENTICE</span>     | Web Cache Deception      | [Abrir](https://portswigger.net/web-security/web-cache-deception/lab-wcd-exploiting-path-mapping)                                                                                              |
| [Internal cache poisoning](/portswigger/labs/web-cache-poisoning/exploiting-implementation-flaws-web-cache-poisoning-internal)                                                                                                                                     | <span className="dbadge dbadge-easy">APPRENTICE</span>     | Web Cache Poisoning      | [Abrir](https://portswigger.net/web-security/web-cache-poisoning/exploiting-implementation-flaws/lab-web-cache-poisoning-internal)                                                             |
| [Web cache poisoning to exploit a DOM vulnerability via a cache with strict cacheability criteria](/portswigger/labs/web-cache-poisoning/exploiting-design-flaws-web-cache-poisoning-to-exploit-a-dom-vulnerability-via-a-cache-with-strict-cacheability-criteria) | <span className="dbadge dbadge-easy">APPRENTICE</span>     | Web Cache Poisoning      | [Abrir](https://portswigger.net/web-security/web-cache-poisoning/exploiting-design-flaws/lab-web-cache-poisoning-to-exploit-a-dom-vulnerability-via-a-cache-with-strict-cacheability-criteria) |
| [Exploiting cache server normalization for web cache deception](/portswigger/labs/web-cache-deception/wcd-exploiting-cache-server-normalization)                                                                                                                   | <span className="dbadge dbadge-medium">PRACTITIONER</span> | Web Cache Deception      | [Abrir](https://portswigger.net/web-security/web-cache-deception/lab-wcd-exploiting-cache-server-normalization)                                                                                |
| [Exploiting origin server normalization for web cache deception](/portswigger/labs/web-cache-deception/wcd-exploiting-origin-server-normalization)                                                                                                                 | <span className="dbadge dbadge-medium">PRACTITIONER</span> | Web Cache Deception      | [Abrir](https://portswigger.net/web-security/web-cache-deception/lab-wcd-exploiting-origin-server-normalization)                                                                               |
| [Exploiting path delimiters for web cache deception](/portswigger/labs/web-cache-deception/wcd-exploiting-path-delimiters)                                                                                                                                         | <span className="dbadge dbadge-medium">PRACTITIONER</span> | Web Cache Deception      | [Abrir](https://portswigger.net/web-security/web-cache-deception/lab-wcd-exploiting-path-delimiters)                                                                                           |
| [Parameter cloaking](/portswigger/labs/web-cache-poisoning/exploiting-implementation-flaws-web-cache-poisoning-param-cloaking)                                                                                                                                     | <span className="dbadge dbadge-medium">PRACTITIONER</span> | Web Cache Poisoning      | [Abrir](https://portswigger.net/web-security/web-cache-poisoning/exploiting-implementation-flaws/lab-web-cache-poisoning-param-cloaking)                                                       |
| [Targeted web cache poisoning using an unknown header](/portswigger/labs/web-cache-poisoning/exploiting-design-flaws-web-cache-poisoning-targeted-using-an-unknown-header)                                                                                         | <span className="dbadge dbadge-medium">PRACTITIONER</span> | Web Cache Poisoning      | [Abrir](https://portswigger.net/web-security/web-cache-poisoning/exploiting-design-flaws/lab-web-cache-poisoning-targeted-using-an-unknown-header)                                             |
| [URL normalization](/portswigger/labs/web-cache-poisoning/exploiting-implementation-flaws-web-cache-poisoning-normalization)                                                                                                                                       | <span className="dbadge dbadge-medium">PRACTITIONER</span> | Web Cache Poisoning      | [Abrir](https://portswigger.net/web-security/web-cache-poisoning/exploiting-implementation-flaws/lab-web-cache-poisoning-normalization)                                                        |
| [Web cache poisoning via a fat GET request](/portswigger/labs/web-cache-poisoning/exploiting-implementation-flaws-web-cache-poisoning-fat-get)                                                                                                                     | <span className="dbadge dbadge-medium">PRACTITIONER</span> | Web Cache Poisoning      | [Abrir](https://portswigger.net/web-security/web-cache-poisoning/exploiting-implementation-flaws/lab-web-cache-poisoning-fat-get)                                                              |
| [Web cache poisoning via ambiguous requests](/portswigger/labs/host-header/exploiting-host-header-web-cache-poisoning-via-ambiguous-requests)                                                                                                                      | <span className="dbadge dbadge-medium">PRACTITIONER</span> | HTTP Host Header Attacks | [Abrir](https://portswigger.net/web-security/host-header/exploiting/lab-host-header-web-cache-poisoning-via-ambiguous-requests)                                                                |
| [Web cache poisoning via an unkeyed query parameter](/portswigger/labs/web-cache-poisoning/exploiting-implementation-flaws-web-cache-poisoning-unkeyed-param)                                                                                                      | <span className="dbadge dbadge-medium">PRACTITIONER</span> | Web Cache Poisoning      | [Abrir](https://portswigger.net/web-security/web-cache-poisoning/exploiting-implementation-flaws/lab-web-cache-poisoning-unkeyed-param)                                                        |
| [Web cache poisoning via an unkeyed query string](/portswigger/labs/web-cache-poisoning/exploiting-implementation-flaws-web-cache-poisoning-unkeyed-query)                                                                                                         | <span className="dbadge dbadge-medium">PRACTITIONER</span> | Web Cache Poisoning      | [Abrir](https://portswigger.net/web-security/web-cache-poisoning/exploiting-implementation-flaws/lab-web-cache-poisoning-unkeyed-query)                                                        |
| [Web cache poisoning with an unkeyed cookie](/portswigger/labs/web-cache-poisoning/exploiting-design-flaws-web-cache-poisoning-with-an-unkeyed-cookie)                                                                                                             | <span className="dbadge dbadge-medium">PRACTITIONER</span> | Web Cache Poisoning      | [Abrir](https://portswigger.net/web-security/web-cache-poisoning/exploiting-design-flaws/lab-web-cache-poisoning-with-an-unkeyed-cookie)                                                       |
| [Web cache poisoning with an unkeyed header](/portswigger/labs/web-cache-poisoning/exploiting-design-flaws-web-cache-poisoning-with-an-unkeyed-header)                                                                                                             | <span className="dbadge dbadge-medium">PRACTITIONER</span> | Web Cache Poisoning      | [Abrir](https://portswigger.net/web-security/web-cache-poisoning/exploiting-design-flaws/lab-web-cache-poisoning-with-an-unkeyed-header)                                                       |
| [Web cache poisoning with multiple headers](/portswigger/labs/web-cache-poisoning/exploiting-design-flaws-web-cache-poisoning-with-multiple-headers)                                                                                                               | <span className="dbadge dbadge-medium">PRACTITIONER</span> | Web Cache Poisoning      | [Abrir](https://portswigger.net/web-security/web-cache-poisoning/exploiting-design-flaws/lab-web-cache-poisoning-with-multiple-headers)                                                        |

## Rooms TryHackMe que practican Web Cache Attacks (Poisoning / Deception) (1)

| Room                                                      | Dificultad                                       | Tipo        | Acceso  | Oficial                                    |
| --------------------------------------------------------- | ------------------------------------------------ | ----------- | ------- | ------------------------------------------ |
| [L2 MAC Flooding & ARP Spoofing](/tryhackme/rooms/layer2) | <span className="dbadge dbadge-easy">EASY</span> | Walkthrough | 🟢 Free | [Abrir](https://tryhackme.com/room/layer2) |

***

← [Volver al glosario completo](/glosario)

<script type="application/ld+json">
  {`{"@context":"https://schema.org","@type":"DefinedTerm","name":"Web Cache Attacks (Poisoning / Deception)","termCode":"web-cache-attacks","inLanguage":"es","url":"https://rootea.es/skills/web-cache-attacks","inDefinedTermSet":{"@type":"DefinedTermSet","name":"Glosario táctico de pentesting","url":"https://rootea.es/glosario"}}`}
</script>

*Última actualización: 2026-05-09*
