Bugcrowd slides

// list to focus on
Authentication and authorization
username enumeration
bypass authorization
authentication and authorization

session security - study guide
session hijacking and fixation
cross-site request forgery
session security


 use a HTML encode, from burp suite, in a tab called “decoder improved”, an extender, downloaded from BaP Store.
 
 attack exploring a simple xss reflected, turn this in a stored one and then elevate the impact of the flaw manipulating the session cookies granting sessions rights to another user.