BloomTech’s Downfall: A Long Time Coming

Bugcrowd University - Broken Access Control Testing

Bugcrowd University - Broken Access Control Testing

Bugcrowd via YouTube Direct link

Intro

1 of 22
Next

1 of 22

Intro

Class Central Classrooms beta

YouTube playlists curated by Class Central.

Classroom Contents

Bugcrowd University - Broken Access Control Testing

Automatically move to the next video in the Classroom when playback concludes
  1. 1 Intro
  2. 2 Module Trainer
  3. 3 Module Outline
  4. 4 Module Reading
  5. 5 Introduction to Access Control bugs
  6. 6 Simple numeric IDOR
  7. 7 Bugcrowd VRT Rating
  8. 8 GUID based IDOR (cont.)
  9. 9 Hash based IDOR
  10. 10 Request methods
  11. 11 Local File Inclusion and Path Traversal
  12. 12 Static pages & "forceful browsing"
  13. 13 Static files
  14. 14 Direct function calling
  15. 15 Parameter Manipulation
  16. 16 Logic Flaws
  17. 17 Auxiliary Tips
  18. 18 Likely parameters/keyword to check for IDOR
  19. 19 COTS, OSS, and paywalled applications
  20. 20 Create a function matrix for MFLAC
  21. 21 Burp Intruder
  22. 22 References

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.