mirror of https://github.com/0x5t4l1n/hunting.git synced 2026-05-26 11:35:51 +00:00

Files

T

History

copilot-swe-agent[bot] 79cc1966ad Add open-redirect folder with comprehensive payloads and documentation

Co-authored-by: Stalin-143 <161853795+Stalin-143@users.noreply.github.com>

2026-01-04 18:39:07 +00:00

open-redirect

Add open-redirect folder with comprehensive payloads and documentation

2026-01-04 18:39:07 +00:00

idor-payloads.txt

Add comprehensive OWASP Top 10 directory structure with injection payloads

2026-01-04 18:24:32 +00:00

path-traversal-payloads.txt

Add comprehensive OWASP Top 10 directory structure with injection payloads

2026-01-04 18:24:32 +00:00

README.md

Add comprehensive OWASP Top 10 directory structure with injection payloads

2026-01-04 18:24:32 +00:00

README.md

A01 - Broken Access Control

Description

Access control enforces policy such that users cannot act outside of their intended permissions. Failures typically lead to unauthorized information disclosure, modification, or destruction of all data or performing a business function outside the user's limits.

Common Vulnerabilities

Path Traversal
IDOR (Insecure Direct Object References)
Missing Function Level Access Control
Forced Browsing
Privilege Escalation

Testing Approach

Test for access control by manipulating URLs, parameters, and attempting to access resources without proper authorization.