Bypassing Authentication Schema

Check List

• Ensure that authentication is applied across all services that require it.

Methodology

Black Box

White Box

Cheat Sheet

Parameter Modification

Session ID Prediction

SQL Injection (HTML Form Authentication)

PHP Loose Comparison