Day-4.md

Day-4 (30-Days-Of-Hacking)

1. Read 3 Article: [DONE]

• https://medium.com/@vamshivaran110/my-first-blind-sql-injection-7db4b5e5c66d
• https://medium.com/@vamshivaran110/full-account-takeover-due-to-improper-validation-of-old-password-d4b9f4eec3f8
• https://medium.com/@vamshivaran110/sensitive-information-disclosure-through-unrestricted-directories-82b720994f36

Learned:

2. TryHackMe Labs: [DONE]

• Solved Complete Room Of REmux The Tmux && OWASP ZAP : https://tryhackme.com/room/tmuxremux , https://tryhackme.com/room/learnowaspzap

3. PortSwigger Labs: [DONE]

• Access control vulnerabilities (3/13)
• Lab: Unprotected admin functionality (https://portswigger.net/web-security/access-control/lab-unprotected-admin-functionality)
• Lab: Unprotected admin functionality with unpredictable URL (https://portswigger.net/web-security/access-control/lab-unprotected-admin-functionality-with-unpredictable-url)
• Lab: User role controlled by request parameter (https://portswigger.net/web-security/access-control/lab-user-role-controlled-by-request-parameter)

4. Youtube Video: [DONE]

• Watched : OrwaGodFather Part 4 Video : (https://www.youtube.com/watch?v=_aST_z_qTYE&t=890s)