Broken Authentication Testing

Identify and exploit authentication and session management vulnerabilities in web applications. Broken authentication consistently ranks in the OWASP Top 10 and can lead to account takeover, identity theft, and unauthorized access to sensitive systems. This skill covers testing methodologies for password policies, session handling, multi-factor authentication, and credential management. Understand the application's authentication architecture: Capture and analyze authentication requests: Evaluate password requirements and enforcement: Document policy gaps: Minimum length <8, no complexity, common passwords allowed, username as password. Test for username enumeration vulnerabilities: "Email sent if account exists" (secure) "No account with that email" (leaks info) {"error": "user_not_found"} {"error": "invalid_password"} Check for protections: Test with known breached credentials: Analyze session token security: Session token analysis: Test if session is regenerated after authentication: Attack scenario: Verify session expiration policies: Assess MFA implementation security: Test MFA enrollment: Analyze password reset security: Scenario: Test if account lockout can be bypassed Scenario: Exploit weak JWT implementation Scenario: Test password reset functionality - HTTP protocol and session mechanisms - Authentication types (SFA, 2FA, MFA) - Cookie and token handling - Common...