search

Insecure Direct Object Reference (IDOR)

hashtag
Change HTTP method

GET /users/delete/123 -> 403
POST /users/delete/123 -> 200

hashtag
Change file extension

Try to change the extension of the endpoint that you have.

#Endpoint found
/users/password -> 401

#Endpoints to test
/users/password.json
/users/password.xml

hashtag
Convert request body

Convert the body of the request to array or to include a json on it.

#Original body
{"id":1}

#Bypasses
{"id":[1]}
{"id":{"id":1}}

hashtag
Test wildcards

Change the identifier of the request to a wildcard.

hashtag
Check another version

Many API endpoints expose the version in the request, try to change it to use another older.

hashtag
Missing Function Level Access Control (MFLAC)

hashtag
Path Traversal Secondary Context

hashtag
HTTP Parameter Pollution

hashtag
References

LogoAutorizeportswigger.netchevron-right
Burp Suite extension aimed at helping the penetration tester to detect authorization vulnerabilities
LogoAutoRepeaterportswigger.netchevron-right
Burp Suite extension that automatically repeats requests, with replacement rules and response diffing
PreviousWAF BypassesNextInsecure File Upload

Last updated