01 Lab: Username enumeration via different responses

Objetivo

This lab is vulnerable to username enumeration and password brute-force attacks. It has an account with a predictable username and password, which can be found in the following wordlists:
Candidate usernames
Candidate passwords
To solve the lab, enumerate a valid username, brute-force this user's password, then access their account page.

Solución

El inicio de sesión lo mandamos al INTRUDER
image.png
Asignamos los diccionarios y le damos Iniciar ATAQUE
image.png
Verificamos las credenciales correctas
image.png
image.png

Previous14 Authentication Next02 Lab: 2FA simple bypass

Last updated 9 months ago