Account Takeover Methodology
Application Level DoS
Authentication Bypass
Broken-Link Hijacking
Broken Auth And Session Management
Finding CVEs
Web Page Source Code Review
EXIF Geo Data Not Stripped
File Upload Bypass
Find Origin IP
GraphQL
HTTP Desync Attack
Host-Header Attack
HTML-Injection
IDOR
JWT ATTACK
OAuth
SSTI
Sign Up Functionality
Tabnabbing
Weak Password Policy
Open Redirection Bypass
This bypass I found in a application while I doing pentesting. I hope it will helps you too!
  1. 1.
    While you I trying to redirect https://targetweb.com?url=http://attackersite.com it did not redirected!
  2. 2.
    I Created a new subdomain with with www.targetweb.com.attackersite.com
  3. 3.
    And when I tried to redirect with https://targetweb.com?url=www.targetweb.com.attackersite.com​
  4. 4.
    It will successfully redirected to the www.targetweb.com.attackersite.com website!
  5. 5.
    Due to the bad regex it has been successfully bypass their protection!

Authors:

Reference Tweets: