Authentication Vulnerabilities - Lab #13 Broken brute-force protection | Short Version

In this video, we cover Lab #13 in the Authentication module of the Web Security Academy. This lab is vulnerable due to a logic flaw in its brute-force protection. To solve the lab, brute-force Carlos's password, then access his account page. ▬ ✨ Support Me ✨ ▬▬▬▬▬▬▬▬▬▬ Buy my course: https://academy.ranakhalil.com/p/web-... ▬ 🔗 Links 🔗 ▬▬▬▬▬▬▬▬▬▬ Convert PWD Python script: https://github.com/rkhal101/Web-Secur... Web Security Academy Lab Exercise: https://portswigger.net/web-security/... Rana's Twitter account:   / rana__khalil  

Join Today
Authentication Vulnerabilities - Lab #14 2FA bypass using a brute-force attack | Short Version
▶︎

Authentication Vulnerabilities - Lab #14 2FA bypass using a brute-force attack | Short Version

Authentication Vulnerabilities - Lab #6 Broken brute-force protection, IP block | Long Version
▶︎

Authentication Vulnerabilities - Lab #6 Broken brute-force protection, IP block | Long Version

bWAPP Tutorial for Beginners (2026) | Broken Auth | Password Attacks | Python | Hydra Walk-through
▶︎

bWAPP Tutorial for Beginners (2026) | Broken Auth | Password Attacks | Python | Hydra Walk-through

Authentication Vulnerabilities - Lab #13 Broken brute-force protection | Long Version
▶︎

Authentication Vulnerabilities - Lab #13 Broken brute-force protection | Long Version

Ethical Hacking Deep Dive: Metasploit, Nmap, and Advanced Techniques
▶︎

Ethical Hacking Deep Dive: Metasploit, Nmap, and Advanced Techniques

Visible error based SQL injection (Lab #13) [Hindi]
▶︎

Visible error based SQL injection (Lab #13) [Hindi]

Broken Authentication - Brute Forcing a Stay Logged In Cookie
▶︎

Broken Authentication - Brute Forcing a Stay Logged In Cookie

Authentication Vulnerabilities - Lab #11 Password reset poisoning via middleware | Short Version
▶︎

Authentication Vulnerabilities - Lab #11 Password reset poisoning via middleware | Short Version

Authentication Vulnerabilities - Lab #6 Broken brute-force protection, IP block | Short Version
▶︎

Authentication Vulnerabilities - Lab #6 Broken brute-force protection, IP block | Short Version

LAWYER: If Cops Ask "Where Are You Coming From?" - Say These Words
▶︎

LAWYER: If Cops Ask "Where Are You Coming From?" - Say These Words

I Made an Antivirus That Secretly Attacks Scammers
▶︎

I Made an Antivirus That Secretly Attacks Scammers

Bypassing Brute-Force Protection with Burpsuite
▶︎

Bypassing Brute-Force Protection with Burpsuite

People Who Messed With The Royal Guard and Regretted It!
▶︎

People Who Messed With The Royal Guard and Regretted It!

Why Israel is the World's Top Hacking Nation | VICE: Cyberwar | Blueprint
▶︎

Why Israel is the World's Top Hacking Nation | VICE: Cyberwar | Blueprint

Flow State Music | No Lyrics Creative Flow Music - Ultimate Work Flow Music For Focus Mode
▶︎

Flow State Music | No Lyrics Creative Flow Music - Ultimate Work Flow Music For Focus Mode

DEF CON 33 - Kill List: Hacking an Assassination Site on the Dark Web - Carl Miller, Chris Monteiro
▶︎

DEF CON 33 - Kill List: Hacking an Assassination Site on the Dark Web - Carl Miller, Chris Monteiro

Authentication Vulnerabilities - Lab #14 2FA bypass using a brute-force attack | Long Version
▶︎

Authentication Vulnerabilities - Lab #14 2FA bypass using a brute-force attack | Long Version

Attacking AI - Jason Haddix - NDC Security 2026
▶︎

Attacking AI - Jason Haddix - NDC Security 2026

She Asks if I Know Coldplay and This Singer Shocks The Street
▶︎

She Asks if I Know Coldplay and This Singer Shocks The Street