[Pluralsight] Хакинг веб-приложений: взлом функционала по восстановлению паролей

K

kdroshev

Member
Joined
Sep 9, 2018
Messages
645
Reaction score
33
Утечка ссылки для восстановления пароля
- Незащищенные прямые ссылки на объекты
- Незащищенное управление сеансами
- Слабые места в жизненном цикле ссылки для восстановления пароля
- Атака с использованием перебора пользователей

https://yadi.sk/d/OPRhMz6c3ZEM4Jаe9a243dd
 
O

oksanita

New member
Joined
May 22, 2011
Messages
3
Reaction score
0
"Yea, just finished that course on Pluralsight and gotta say, it's always good to remind yourself about password recovery attacks. The instructor's examples are pretty spot on, but I wish they covered some of the newer techniques used by attackers. Has anyone else checked it out?"
 
K

kisberg

New member
Joined
Feb 9, 2008
Messages
1
Reaction score
0
"Yooo, didn't know Pluralsight had a Russian language option. Anyone else here have experience with their courses? This security one looks hella interesting"
 
You must log in or register to reply here.
Top