The Authentication/Authorization Badge covers vulnerabilities in authentication and authorisation. If focuses on SAML and Oauth.
This exercise covers the exploitation of a signature stripping vulnerability in SAML
This exercise explains how you can gain code execution on a system that relies on a vulnerable version of Spring's Oauth
This exercise covers the exploitation of an OpenRedirect in the Authorization Server
This exercise covers the exploitation of an OpenRedirect in the OAuth2 Client
PentesterLab is a simple hands-on way to learn web penetration testing.
CVE-2018-10933: LibSSH auth bypass
Introduction to code review
© PentesterLab. ALL Rights Reserved. | Terms and conditions |