IDOR Vulnerability Explained Full with 6 Different cases | Security Awareness
Pada video kali ini kita akan membahas tentang jenis kerentanan yang cukup mengerikan yaitu IDOR. Disini kita akan belajar tentang basic exploitation kernetanan IDOR ini pada suatu labs untuk belajar pentest, simak kelanjutannya pada video ini!
Link Github VulnLab:
https://github.com/Yavuzlar/VulnLab
Cara Installasi :
sudo apt install docker.io
docker run --name vulnlab -d -p 1337:80 yavuzlar/vulnlab:latest
Setup Burpsuite Proxy :
https://null-byte.wonderhowto.com/how-to/use-burp-foxyproxy-easily-switch-between-proxy-settings-0196630/
------------------------------------------------------------------
Jangan lupa untuk Subscribe Meta4sec
REGISTRASI BOOTCAMP : https://redlimit.id/bootcamp-pentester/
☑ Instagram: https://www.instagram.com/redlimit.id || https://www.instagram.com/meta4sec
☑ Website: https://redlimit.id || https://meta4sec.com
☑ Discord: https://discord.gg/meta4sec
☑ Linkedin: https://www.linkedin.com/company/redlimit || https://www.linkedin.com/company/meta4sec
☑ Youtube: https://youtube.com/@Meta4sec
☑ WhatsApp: https://wa.me/6282299996445
☑ Facebook: https://www.facebook.com/redlimit.id || https://www.facebook.com/profile.php?id=61558371757242
------------------------------------------------------------------
Timestamp ⏩ :
0:00 Intro
1:00 Pengenalan IDOR
3:05 Hal yang harus disiapkan
4:45 IDOR 1 (URL ID Parameter Manipulation)
5:46 IDOR 2 (Price Manipulation)
8:40 IDOR 3 (Changing Password)
11:10 IDOR 4 (Money Transfer)
14:04 IDOR 5 (Address Entry)
15:51 IDOR 6 (Edit Profile)
