How I found an IDOR in deletion of comparison lists
Read about an interesting scenario of IDOR that allowed to me view private user information and also delete publicly available list.
1 Comment
September 26, 2021
Understanding insecure deserialization
Hello everyone!! Serialization is a concept that is being implemented for very long, but the vulnerability has got much traction in recent years. In the OWASP top 10 list, 2017, insecure deserialization is positioned at 8th which has furthermore attracted hackers and pentesters to explore on the vulnerability. So lets deep-dive in understanding what exactly is serialization. It is a process of…
April 27, 2020
How to setup DVWA on kali linux
Setup you own lab to practice owasp top 10 using DVWA
April 27, 2020