Foundations Lab  · On-demand

API2:2023 Demonstrating BUA Exploitation in crAPI

Foundations Lab

Solution overview

In this hands-on lab, you will explore the exploitation of Broken User Authentication (BUA) vulnerabilities within the crAPI application. This exercise is designed to provide practical experience in identifying and manipulating authentication mechanisms to gain unauthorized access. Using tools such as Burp Suite, Postman, and FoxyProxy, you will intercept and alter API calls to demonstrate the impact of BUA vulnerabilities.

Refer to the video tutorial in the next section for a detailed workflow.

Lab diagram

Labs are secured to WWT customers and partners. Login to access.