The Authentication/Authorization Badge covers vulnerabilities in authentication and authorisation. If focuses on SAML and Oauth.

  • 1 video
  • RoR
  • Completed by 307 students

SAML: Introduction

  • Difficulty:

This exercise covers the exploitation of a signature stripping vulnerability in SAML

  • 1 video
  • RoR
  • Completed by 158 students

SAML: Signature Stripping

  • Difficulty:

This exercise covers the exploitation of a signature stripping vulnerability in SAML

  • Java/Spring
  • Completed by 0 students

CVE-2016-4977 Coming soon

  • Difficulty:

This exercise explains how you can gain code execution on a system that relies on a vulnerable version of Spring's Oauth

  • Ruby-On-Rails
  • Completed by 33 students

OAuth2: Authorization Server OpenRedirect

  • Difficulty:

This exercise covers the exploitation of an OpenRedirect in the Authorization Server

  • Ruby-On-Rails
  • Completed by 12 students

OAuth2: Client OpenRedirect

  • Difficulty:

This exercise covers the exploitation of an OpenRedirect in the OAuth2 Client