Preview Image

Username enumeration via account lock

Laboratorio de Portswigger sobre Authentication

Jan 27, 2025 Portswigger Labs, Authentication

Preview Image

Broken brute-force protection, IP block

Laboratorio de Portswigger sobre Authentication

Jan 27, 2025 Portswigger Labs, Authentication

Preview Image

Username enumeration via response timing

Laboratorio de Portswigger sobre Authentication

Jan 27, 2025 Portswigger Labs, Authentication

Preview Image

Username enumeration via subtly different responses

Laboratorio de Portswigger sobre Authentication

Jan 23, 2025 Portswigger Labs, Authentication

Preview Image

Password reset broken logic

Laboratorio de Portswigger sobre Authentication

Jan 22, 2025 Portswigger Labs, Authentication

Preview Image

2FA simple bypass

Laboratorio de Portswigger sobre Authentication

Jan 22, 2025 Portswigger Labs, Authentication

Preview Image

Username enumeration via different responses

Laboratorio de Portswigger sobre Authentication

Jan 22, 2025 Portswigger Labs, Authentication

Preview Image

DOM-based cookie manipulation

Laboratorio de Portswigger sobre DOM Based

Jan 21, 2025 Portswigger Labs, DOM Based

Preview Image

DOM-based open redirection

Laboratorio de Portswigger sobre DOM Based

Jan 21, 2025 Portswigger Labs, DOM Based

Preview Image

DOM XSS using web messages and JSON.parse

Laboratorio de Portswigger sobre DOM Based

Jan 19, 2025 Portswigger Labs, DOM Based