The Authentication/Authorization Badge covers vulnerabilities in authentication and authorisation. If focuses on SAML and Oauth.
This exercise covers the exploitation of a signature stripping vulnerability in SAML
This exercise explains how you can gain code execution on a system that relies on a vulnerable version of Spring's Oauth
PentesterLab is a simple hands-on way to learn web penetration testing.
CVE-2018-10933: LibSSH auth bypass
Introduction to code review
© PentesterLab. ALL Rights Reserved. | Terms and conditions |