📕 The full case study: bbre.dev/atocs
📧 Subscribe to BBRE Premium: bbre.dev/premium
✉️ Sign up for the mailing list: bbre.dev/nl
📣 Follow me on Twitter: bbre.dev/tw
I studied 146 disclosed bug bounty reports and in this video, I'm showing you what techniques for taking over an account are most common.
Videos mentioned:
• MetaMask - stealing ET...
• Inside the Mind of the...
• $37,500 Shopify auth b...
• 2022-style OAuth accou...
• Hacking Facebook in 3 ...
Timestamps:
00:00 Intro
00:30 Clickjacking
3:14 Pre-account takeover
5:36 Direct authentication bypass
13:22 SSO takeover
23:11 Reset victim's password
Негізгі бет Ғылым және технология How to do account takeover? Case study of 146 bug bounty reports
Пікірлер: 29