damn-vulnerable-bank

1 article
sort: new top best
clear filter
bug-bounty226 google197 microsoft163 facebook157 apple120 rce91 exploit74 web358 open-source44 smart-contract38 defi37 ai-agents36 writeup36 docker35 aws34 malware34 cve33 cloudflare32 ethereum32 access-control31 react31 ssrf31 dos30 sqli29 supply-chain26 bragging-post23 xss23 account-takeover22 node22 smart-contract-vulnerability21 wordpress20 automation20 race-condition20 oauth19 idor19 cors19 tool19 browser19 machine-learning18 authentication-bypass18 privilege-escalation18 ctf17 llm17 vulnerability-disclosure17 cloud17 sql-injection16 buffer-overflow16 phishing16 rust16 denial-of-service16
0 6/10
How I Exploited Three API Vulnerabilities in a Banking Application
tutorial

Walkthrough of exploiting three common API vulnerabilities—BOLA (Broken Object-Level Authorization), Broken Authentication, and BOPLA (Broken Object Property-Level Authorization)—in the Damn Vulnerable Bank deliberately vulnerable application using Burp Suite.

bola broken-authentication bopla api-security banking burp-suite authorization vulnerable-app damn-vulnerable-bank
Burp Suite Damn Vulnerable Bank Adeola Odunlade
adeolaodunlade.medium.com · Odunlade Adeola · 19 hours ago · details