In this episode of 'Loose Locks,' we dive into improper access control — a common security flaw where systems fail to restrict access to sensitive data or actions. Join us as we explore real-world examples, discuss why these vulnerabilities occur and how you can hunt for it.
.
.
.
Blogs: https://medusa0xf.medium.com/
.
.
.
Social media of host:
https://smilehaker.in/
https://x.com/_smile_hacker_
.
.
.
Social Media:
Twitter: https://twitter.com/medusa_0xf
Discord: https://discord.com/invite/2PUPD3RHHs
.
.
.
.
Timestamps:
0:00 Introduction
0:59 Welcome the host
1:22 Difference between improper and missing access control
2:54 A Bug Story on access control
8:29 Time Game
10:03 Favorite Bug Analysis
12:31 Lucky Hit
13:17 Tenant?
14:19 Approach while Hunting
18:24 Ending
#podcast #hacking #api #owasp #portswigger #bugbounty #bola #postman #pentesting #api #hack #bola #tryhackme #hackerone #apihacking #computerscience #javascript #python #postman #ctf #bughunting #pentesting #hacking #hackingtools #burpsuite #portswigger #ethicalhacking #OAuth #webhacking #programming #websecurity #technology #practical #artificialintelligence #web #recon #bypass