Catching up on my cybersecurity journey 🔐
Completed 2 modules ✅, now diving into Networks & Network Security. Updates coming daily! #Cybersecurity #WebApplicationSecurity #OWASP #BurpSuite #LearningInPublic #CybersecurityJourneyi
8
Search
This is why understanding APIs is an important skill in web application security.
#100DaysOfCyberSecurity
#WebApplicationSecurity
1
9
Example:
/account?id=124 → /account?id=125
If the server doesn't verify ownership, sensitive data can be exposed.
Small parameter changes can lead to big security flaws.
#100DaysOfCyberSecurity
#WebApplicationSecurity
21
Day 14/100 - Learning Web Application Security.
Today I solved this lab on portswigger academy.
Lab: User ID controlled by request parameter, with unpredictable user IDs.
We move 🎉
#100DaysOfCyberSecurity
#WebApplicationSecurity
@ireteeh @ce3nerd @WebSecAcademyc
Day 13/100- Learning Web Application Security.
Today I reviewed everything I’ve learned so far:
• HTTP requests & responses
• Cookies & sessions
• Same-Origin Policy & CORS
• Burp Suite (Proxy & Repeater)
• Broken Access Control (IDOR)
Something I’m realizing:
👇👇
2
113
Most web vulnerabilities exist because developers trust user input too much.
Change a parameter… and sometimes you become admin.
Still learning. Still sharpening the hacker mindset.
#100DaysOfCyberSecurity
#WebApplicationSecurity
@ireteeh @ce3nerd @CyberRacheal
2
47
If I you can solve the lab, you can hunt for the bug. We move🤗
#100DayOfCyberSecurity
#WebApplicationSecurity
@WebSecAcademy @ireteeh @ce3nerd
29
controls.
This taught me an important lesson:
Never trust the frontend. Always test how the server reacts.
Every parameter is a potential entry point.
Slowly, I'm learning to see applications like an attacker.
#100DaysOfCyberSecurity
#WebApplicationSecurity.
@4osp3l @ireteeh
3
23
Understanding OWASP Top 10: A Comprehensive Guide to Web Application Security
read more: reconbee.com/owasp-top-10-w…
#owasptop10 #OWASP #webapplicationsecurity #webappsecurity #webapplication #cybersecurity
OWASP Top 10 Web Application Security Vulnerabilities
In this blog post we will delve into the OWASP Top 10 Web Application Security Vulnerabilities, exploring each security risk in detail
From reconbee.com 12
This lab gave me small headache, but we move.🥰
User role controlled by request parameter.
Interesting tho.
#WebApplicationSecurity
@4osp3l @ireteeh @WebSecAcademyb
1
33
Me and this Access Control.
Someone must give up.
But obviously not me.
Solved this lab on portswigger.
Lab: Unprotected admin functionality with unpredictable URL.
we move! Consistency is the key 🔐
#WebApplicationSecurity.
@ireteeh @4osp3lJ
3
1
35
1.5K
Day 10/100 - Web Application Security Journey
Today I successfully exploited an authorization vulnerability using Burp Suite Repeater.
IDOR (Insecure direct object references).
I feel so excited., 😊😆
#100DaysOfLearningCyberSecurity #WebApplicationSecurity.
@ireteeh0S
Day 9/100 — Web Application Security Journey
Today, I went deep into understanding IDOR (Insecure Direct Object Reference) and Burp Suite Intruder.
I learned that whenever an application exposes object IDs like user_id, order_id, or account_id, the most important question is:..
1
79
Came earlier than thought, so I was able to set up my labs completely.... let's go 🥳
Hacking is fun, hacking is interesting.
#WebApplicationSecurity
@ireteeh @ce3nerd @cyb3rshi3ldN
Day 6/100 - Web Application Security Journey.
Today I decided to set up the lab I'll be using for my practicals, I set up my kai Linux and Burp suite community on it...also created an account with Portswigger academy before NEPA take light....I will set up my DVWA tomorrow....
2
51
