@roz101.bsky.social
Spotted a great lab demonstrating some classic .NET MVC mistakes:
- Basic Auth over HTTP
- Base64 “security” for role tokens
- Open redirects
Each vuln comes with working exploits and modern fixes- a solid resource for anyone practicing AppSec.
Repo: medium.com/@paulvolosen...
#AppSec #WebSecurity
- Basic Auth over HTTP
- Base64 “security” for role tokens
- Open redirects
Each vuln comes with working exploits and modern fixes- a solid resource for anyone practicing AppSec.
Repo: medium.com/@paulvolosen...
#AppSec #WebSecurity
Modernizing Legacy Auth: A Simulated Lab
When I first set out to build this lab, I couldn’t shake the memory of a real-world engagement where a partner thought they’d “secure”…
medium.com
January 26, 2026 at 9:51 AM
Spotted a great lab demonstrating some classic .NET MVC mistakes:
- Basic Auth over HTTP
- Base64 “security” for role tokens
- Open redirects
Each vuln comes with working exploits and modern fixes- a solid resource for anyone practicing AppSec.
Repo: medium.com/@paulvolosen...
#AppSec #WebSecurity
- Basic Auth over HTTP
- Base64 “security” for role tokens
- Open redirects
Each vuln comes with working exploits and modern fixes- a solid resource for anyone practicing AppSec.
Repo: medium.com/@paulvolosen...
#AppSec #WebSecurity