VTVarkey Thomasinskinnyidiot.hashnode.dev·Oct 27, 2024 · 3 min readServer Side Request ForgeryIntro: This vulnerability allows an attacker to force the server side of a web application to make requests to normally unauthorized locations. Brief: Compared to the previous lab where the goal of to access the administrator panel by modifying a req...00
VTVarkey Thomasinskinnyidiot.hashnode.dev·Sep 12, 2024 · 2 min readServer Side Request ForgeryIntro: This vulnerability allows an attacker to force the server side of a web application to make requests to normally unauthorized locations. Brief: This attack occurs when an attacker modifies the URL sent from a web application, which can lead to...00
VTVarkey Thomasinskinnyidiot.hashnode.dev·Aug 31, 2024 · 1 min read2FA Simple BypassIntro: 2FA a.k.a 2 factor authentication is an authentication process in which a user goes through more than one type of authentication method in order to verify themselves to the system. In the case of 2FA, it is two verification methods, i.e passwo...00
VTVarkey Thomasinskinnyidiot.hashnode.dev·Jul 19, 2024 · 2 min readBrute-forcing and EnumerationIntro: Enumeration is a process in cybersecurity through which detailed information can be gathered about a target. Username enumeration is essentially the process of discovering valid usernames within a system or a network. The information can be ga...00
VTVarkey Thomasinskinnyidiot.hashnode.dev·Jul 16, 2024 · 2 min readHorizontal to Vertical Privilege EscalationIntro: This type of escalation is a combination of both horizontal, and vertical privilege escalation. First, an attacker gains access to an standard account without any administrative privileges. After accessing the standard account, the attacker wi...00