This page includes following test cases:
https://wiki.owasp.org/index.php/Test_User_Registration_Process_(OTG-IDENT-002)
https://wiki.owasp.org/index.php/Testing_for_Weak_lock_out_mechanism_(OTG-AUTHN-003)
https://wiki.owasp.org/index.php/Testing_for_Bypassing_Authentication_Schema_(OTG-AUTHN-004)
https://wiki.owasp.org/index.php/Testing_for_Vulnerable_Remember_Password_(OTG-AUTHN-005)
https://wiki.owasp.org/index.php/Testing_for_Browser_cache_weakness_(OTG-AUTHN-006)
https://wiki.owasp.org/index.php/Testing_for_Weak_security_question/answer_(OTG-AUTHN-008)
https://wiki.owasp.org/index.php/Testing_for_Weak_or_unenforced_username_policy_(OTG-IDENT-005)
https://wiki.owasp.org/index.php/Testing_for_default_credentials_(OTG-AUTHN-002)
- [2020] - Facebook OAuth Framework Vulnerability
- [2020] - [shopify] Takeover an account that doesn't have a Shopify ID and more
- [2020] - [authmagic-timerange-stateless-core] Improper Authentication in NodeJS
- [2020] - Ability to link a Google account to another staff account/store owner that isn't linked yet
- [2020] - through %09 Character the attacker is able to steal Github Token
- [2020] - Leak of authorization urls leads to account takeover
- [2020] - OTP Verification Bypass (response edit)
- [2020] - Full account takeover at Reverb.com
- [2020] - bypass old password with array in /admin/account-user-email.php
- [2020] - Information can be changed without a password
- [2019] - Full account takeover via reset password function
- [2019] - Password Reset Vulnerability (Poisoning)
- [2019] - Password Reset Vulnerability — Full Account takeover (Insecure Direct Object Reference)
- [2019] - How I was able to bypass OTP code requirement in Razer [The story of a critical bug]
- [2019] - Password Reset Link not expiring after changing the email Leads To Account Takeover
- [2019] - Ability to verify any email address you don't own - accounts.shopify.com
- [2019] - Bypassing GitHub's OAuth flow
- [2019] - Analysis of Two Newly Patched Kubernetes Vulnerabilities
- [2019] - How I was able to bypass OTP code requirement in Razer
- [2019] - $3,000 - Bypass Email Verification in GitLab -- Able to Access Internal Gitlab Services that use Login with Gitlab and Perform Check on email domain
- [2019] - How I abused 2FA to maintain persistence after a password change (Google, Microsoft, Instagram, Cloudflare, etc)
- [2019] - Hijacking Accounts By Retrieving Jwt Tokens Via Unvalidated Redirects
- [2019] - A Curious Case From Little To Complete Email Verification Bypass
- [2019] - Insecure Zendesk SSO implementation by generating JWT client-side
- [2019] - Password theft login.newrelic.com via Request Smuggling
- [2019] - Ability to reset password for account
- [2018] - Forget password link not expiring after email change.
- [2018] - Bypass HackerOne 2FA requirement and reporter blacklist
- [2018] - Password reset token leakage via referer
- [2018] - Able to reset other user's password in https://card.starbucks.com.sg/
- [2018] - How I bypassed 2-Factor Authentication in a bug bounty program
- [2018] - [www.coursera.org] Leaking password reset link on referrer header
- [2018] - Instagram Multi-factor authentication Bypass
- [2018] - [www.boozt.com] - Authentication bypass
- [2017] - Password reset token issue
- [2018] - Password reset token not expiring
- [2017] - Password reset link injection allows redirect to malicious URL
- [2017] - Forgot password link doesn't expire after used, only after some hours
- [2017] - Authentication bypass on Uber’s Single Sign-On via subdomain takeover
- [2017] - SAML Bug in Github worth $15,000
- [2017] - Authentication bypass on Airbnb via OAuth tokens theft
- [2017] - Yahoo Bug Bounty: Exploiting OAuth Misconfiguration To Takeover Flickr Accounts
- [2016] - Paypal 2FA Bypass
- [2016] - OneLogin authentication bypass on WordPress sites
- [2016] - OneLogin authentication bypass on WordPress sites via XMLRPC