Course
In this course, you will learn how to exploit an insecure SAML implementation that allows attackers to set their own Identity Provider (IDP) without validation. By creating and configuring a malicious IDP, you can trick the Service Provider into thinking you are an admin user.
Ready to practice?
Get access to this lab and 600+ hands-on exercises with a PRO subscription.
