Authentication / Authorization Badge

The Authentication/Authorization Badge covers vulnerabilities in authentication and authorisation. If focuses on SAML and Oauth.

5

Exercises

0

Completed this badge

4

CPEs

SAML: Introduction

This exercise covers the exploitation of a signature stripping vulnerability in SAML

Difficulty: EASY
  • 1 video
  • RoR
  • Completed by 456 students
  • Takes Less than an hour on average

SAML: Signature Stripping

This exercise covers the exploitation of a signature stripping vulnerability in SAML

Difficulty: EASY
  • 1 video
  • RoR
  • Completed by 284 students
  • Takes Less than an hour on average

CVE-2016-4977 Coming soon

This exercise explains how you can gain code execution on a system that relies on a vulnerable version of Spring's Oauth

Difficulty: MEDIUM
  • Java/Spring
  • Completed by 0 student
  • Takes -- on average

OAuth2: Authorization Server OpenRedirect

This exercise covers the exploitation of an OpenRedirect in the Authorization Server

Difficulty: MEDIUM
  • Ruby-On-Rails
  • Completed by 78 students
  • Takes Between 2 and 4 hours on average

OAuth2: Client OpenRedirect

This exercise covers the exploitation of an OpenRedirect in the OAuth2 Client

Difficulty: MEDIUM
  • Ruby-On-Rails
  • Completed by 40 students
  • Takes Between 1 and 2 hours on average