Broken Access Control - Lab #11 Insecure direct object references | Long Version
In this video, we cover Lab #11 in the Access Control Vulnerabilities module of the Web Security Academy. This lab stores user chat logs directly on the server's file system, and retrieves them using static URLs. To solve the lab, we find the password for the user carlos, and log into his account. ▬ ✨ Support Me ✨ ▬▬▬▬▬▬▬▬▬▬ Buy my course: https://bit.ly/30LWAtE ▬ 📖 Contents of this video 📖 ▬▬▬▬▬▬▬▬▬▬ 00:00 - Introduction 00:12 - Web Security Academy Course (https://bit.ly/30LWAtE) 01:23 - Navigation to the exercise 01:59 - Understand the exercise and make notes about what is required to solve it 02:27 - Exploit the lab 23:41 - Summary 23:54 - Thank You ▬ 🔗 Links 🔗 ▬▬▬▬▬▬▬▬▬▬ Notes.txt document: https://github.com/rkhal101/Web-Secur... Python script: https://github.com/rkhal101/Web-Secur... Web Security Academy Exercise Link: https://portswigger.net/web-security/... Rana's Twitter account: / rana__khalil
Broken Access Control - Lab #12 Multi-step process with no access control on one step | Long Version
Broken Access Control - Lab #10 User ID controlled by param with password disclosure | Long Version
Insecure Direct Object Reference (IDOR) Explained
System Design Explained: APIs, Databases, Caching, CDNs, Load Balancing & Production Infra
Using Large Language Models | Build Your Own LLM Workshop #1
Broken Access Control | Complete Guide
Business Logic Vulnerabilities - Lab #4 Flawed enforcement of business rule | Long Version
Uruguay – Spanien Highlights | Gruppe H, FIFA WM 2026 | sportstudio
Billionaire's WARNING: I'm SELLING. The Crash Is Already Here!
Creator of C++: Bell Labs, Negative Overhead Abstraction, Mistakes | Bjarne Stroustrup
Business Logic Vulnerabilities - Lab #5 Low Level Logic Flaw | Long Video
Broken Access Control - Lab #9 UID controlled by param with data leakage in redirect | Long Version
Super-KI? Die große Lüge der Tech-Konzerne
Business Logic Vulnerabilities - Lab #1 Excessive trust in client-side controls | Long Version
SUMMER DEEP HOUSE Musics Mix 2026 ♫ Bruno Mars, Lady Gaga,Dua Lipa, Adele,Ed Sheeran, The Weeknd #02
DEF CON 33 - Kill List: Hacking an Assassination Site on the Dark Web - Carl Miller, Chris Monteiro
Business Logic Vulnerabilities - Lab #6 Inconsistent handling of exceptional input | Long Video
What to teach when AI writes the code | Rainer Stropek | TEDxLinz
