mirror of
https://github.com/0x5t4l1n/hunting.git
synced 2026-05-26 19:36:33 +00:00
copilot-swe-agent[bot]
ab9c127df3
Co-authored-by: Stalin-143 <161853795+Stalin-143@users.noreply.github.com>
15 lines
624 B
Markdown
15 lines
624 B
Markdown
# A02 - Cryptographic Failures
|
|
|
|
## Description
|
|
Previously known as Sensitive Data Exposure, this category focuses on failures related to cryptography which often lead to exposure of sensitive data. Common issues include weak cryptographic algorithms, improper key management, and data transmitted in clear text.
|
|
|
|
## Common Vulnerabilities
|
|
- Weak encryption algorithms
|
|
- Hardcoded credentials
|
|
- Insecure key storage
|
|
- Data transmitted in clear text
|
|
- Missing encryption
|
|
|
|
## Testing Approach
|
|
Look for sensitive data exposure through weak or missing encryption, analyze SSL/TLS configurations, and check for hardcoded secrets.
|