Offensive security - Testing for Broken Access Control (OWASP)

#cybersecurity #security #beginners #owasp

Hills Nfor @hills

About: Beginner in Web2 & Web3 Security | Learning in Public | Passionate About Awareness & Education I’m Hills currently learning the ropes of Web2 and Web3 security from scratch. I share what I learn

Location:

Yaounde, Cameroon

Joined:

Jul 30, 2025

Offensive security - Testing for Broken Access Control (OWASP)

Publish Date: Aug 4

0 0

Hands-on at tryhackme room #1..

I used dirb on CLI to brute-force hidden directories on a static web app

dirb http://www.targetwebsite.com/

Findings:

I access the site like a normal user
Discovered/admin/endpoints not shown in UI

Lesson: Obscurity is not equal security

Always enforce rule base control when building your website

Day #3/50 journey...

Comments 0 total

Add comment