PEN TESTING BOOK

📘PENETRATION TESTING BOOK
☮️PENTESTING PROCESS
🪟Windows Privilege Escalation
- 🛠️Windows Exploit Suggester
- 🏄‍♂️Windows-Privilege-Escalation
🐧Linux Privilege Escalation
- 🏄‍♀️LInux-Privilege-Escalation
🐧Linux Exploit Development Tools
- 🔧Exploit Development Tools
🕸️Web Application Pentesting
🔁Reverse Engineering
- 🐲intro to ghidra
🦹‍♂️Network Pentesting 101
🔅Internet of Things
🚔Automotive Pentesting
- 🔌Virtual CAN
  - Dump Traffic
🗳️Container Pentesting
🌆SMART CITY PENTESTING
- ♾️Protocols
  - LoRa-WAN
🪦ACTIVE DIRECTORY PENTESTING
- 🌌Active Directory Post Exploitation
☄️Command and Control
🦋PENTESTING CISCO DEVICES
- 🔦Cisco-Torch : Enumeration
- 🔓Password Attack (Type 5)
🦹‍♀️RED TEAMING
- 🦕Initial Access
  ⚔️Weaponization

Powered by GitBook

On this page

Practice
Authentication Bypass using DELETE Method
FOR FURTHER READING

Was this helpful?

🕸️Web Application Pentesting

🔓Authentication Bypass

Previousxxe attack NextWebshells

Last updated 8 months ago

Practice

Authentication Bypass using DELETE Method

Capture a Login request and send it to the burp repeater
In the repeater window change the request method from GET or POST to DELETE
If the response returns with 200 OK then you successfully bypassed the login mechanism

FOR FURTHER READING

https://book.hacktricks.xyz/pentesting-web/login-bypass
https://exploit-notes.hdks.org/exploit/web/method/web-login-bypass/