pentest – Governance, Risk, & Compliance

Try Hack Me – Advent of Cyber 3 – Day 2 – Cookies

Posted on December 4, 2021 by Shobhit Mehta

HTTP(S) For your computer and a webserver to communicate with each other, an intermediary protocol is required. This is where the HTTP (Hypertext Transfer Protocol) is introduced! The HTTP protocol is a client-server protocol to provide communication between a client and a webserver. HTTP requests are similar to a standard TCP network request; however, HTTP adds specific…

Try Hack Me – Advent of Cyber 3 – Day 1 – IDOR

Posted on December 4, 2021December 8, 2021 by Shobhit Mehta

What is an IDOR vulnerability? IDOR stands for Insecure Direct Object Reference and is a type of access control vulnerability. An access control vulnerability is when an attacker can gain access to information or actions not intended for them. An IDOR vulnerability can occur when a web server receives user-supplied input to retrieve objects (files,…