LAB 124 - Identifying Horizontal Privilege Escalation

Course Details

Course Number: LAB 124

Course Duration: 5 minutes

Course CPE Credits: 0.1

NICE Specialty Areas

Risk Management (RSK)
Securely Provision (SP)
Software Development (DEV)

Related Subject Matter

CWE
Learn Labs
MITRE ATT&CK
OWASP Web
Web

Foreign Languages Available:

English

Course Overview

This lab on Horizontal Privilege Escalation assesses the learner’s understanding of how existing Broken Object-level Authorization and Weak or Missing Cryptography vulnerabilities in an e-commerce application can be discovered and exploited.

After completing this lab, the learner will understand how adversaries can exploit such vulnerabilities to gain unauthorized access to objects belonging to other users with the same level of privilege in order to exfiltrate, tamper with, or destroy them.

Ready to Demo this course? Questions? Contact Us!