The Nen-Book
  • Whoami
  • Write-ups
    • Intigriti 1337Up 2024
      • Intigriti 1337Up 2024-CTF OSINT Challenges
      • Intigriti 1337Up Live 2024-CTF Web Challenges
    • CyCTF Quals 2024
      • OSINT Challenges CyCTF Quals 2024
      • Old Friend OSINT Challenge CyCTF 2024 Quals Writeup
    • PicoCTF
      • PicoCTF 2024 Web Exploitation Challenges
      • PicoCTF 2024 General Skills Challenges
      • PicoCTF 2021 Web Exploitation Challenges Walkthrough
      • PicoCTF 2019 Web Exploitation Challenges
  • πŸ•ΈοΈWeb_AppSec πŸ•ΈοΈ
    • Web_Recon
    • ATO
    • Backend_Technology_Tips
    • XSS
    • SSRF
    • CSRF
    • XXE
    • SSTI
    • Insecure_Deserialization
    • Open_Redirects
    • Information_Disclosures
    • Rate_Limiting
    • Clickjacking
    • Broken Access Control & IDORS
    • Bash_Scripting
    • Authentication_Vulnerabilities
    • App_Logic_Errors
  • πŸ“ΊNetwork_Pentesting πŸ“Ί
    • Scanning & Enumeration
    • Active_Directory
      • AD_Overview_&_ Lab Build
      • AD_Initial_Attack_Vectors
      • AD_Post-Compromise_Enumeration
      • AD_Post-Compromise_Attacks
    • Buffer_Overflow_Attacks
    • Web_Applications
    • Privilege_Escalation
  • 🌩️Cloud_Security 🌩️
    • AWS Pentesting
  • 🀡APISec 🀡
    • API_Recon
    • Broken_Access_Control & Info_Leaks
  • πŸ”¬Code_Review πŸ”¬
    • Source_Code_Review_101
    • Code Review Tools
  • 🐝Bug_Bounty 🐝
    • Picking_A_BugBounty_Program
    • Writing_A_Good_Report
  • πŸ“‘Purple Teaming & MITRE ATT&CK πŸ“‘
    • Introducing the ATT&CK Framework
    • MITRE Engenuity
    • Threat-Informed Defense
Powered by GitBook
On this page

Was this helpful?

Edit on GitHub
  1. Web_AppSec πŸ•ΈοΈ

App_Logic_Errors

the App use the MFA to login users using multiple ways not just the password so let's assume a normal authentication flow would look like this: Step 1 (Password Check) -> Step 2 (MFA) -> Step 3 (Security Questions)

  • step 1 the user will provide the pass at https://example.com/login/

  • step 2 to provide the MFA code at https://example.com/mfa/

  • step 3 security question at https://example.com/security_questions/ what if u manipulate the URL and access the https://example.com/security_questions/ directly without providing the MFA code? if it worked then it's a broken logic and access control

PreviousAuthentication_VulnerabilitiesNextScanning & Enumeration

Last updated 7 months ago

πŸ•ΈοΈ