Ways To Bypass Authentication ;

 Ways To Bypass Authentication.


1:) Direct page request;

:)a.k.a forced browsing.

:)successful authentication => Redir to /admin.

:)functionality is inappropriately protected , just go to:

 https//your.target.site/admin.


2. Parameter Modification;

:) When authentication is verified via fixed parameters.

"authenticated" = "yes"

"logged_in" = true

"is_admin"= true



3. Session ID Prediction;


:) Cookies, tokens, etc.

:) If ID is predictable => can be bruteforced/guessed.


4. SQL Injection

:)improper input sanitization

 admin' or '1'='1


More payloads: https://gist.github.com/spenkk/2cd2f7eeb9cac92dd550855e522c558f.

:)Use Intruder with default or custom payloads in Burp Suite.


5:) Default accounts ;

admin/admin

root/admin

admin/password



6. Weak Password Change/Reset Feature ;

 :)Current password not required.


:)Host header poisoning: https://0xn3va.gitbook.io/cheat-sheets/web-application/broken-authentication.


Video link:

https://youtu.be/x6bX26f_Ibw


      Thank you !










Comments

Post a Comment

Popular posts from this blog

Two Factor Authentication ! [2FA]

Image
 Two Factor Authentication ! What is 2FA 🤔 ? Let's get started , 2FA stands for 2-factor authentication. It is used as an additional layer of security for user accounts. This simply means there will be two factors for you to authenticate into your account. One is simply your credentials, and if due to some case they are compromised the additional layer(second authentication) can protect your account from getting takeover. This can be of many forms like ;    1:) Sending verification code to email. 2:) Sending OTP to email or mobile number. 3:) Third-party app-generated codes. 4:) Verification through QR codes. 5:)     SMS verification. This provides an extra layer of security for user accounts. Even if your credentials got exposed, your account can still be safe if you have your 2FA turned on. But what if this 2FA is also vulnerable. Then your account is not safe even if you have your 2FA turned on. So this vulnerability is a serious one and can be used to take over other accounts
Read more