2FA simple bypass
To access the lab click on the following link:
This lab’s two-factor authentication can be bypassed. We already have a valid username and password, but do not have access to the user’s 2FA verification code. To solve the lab, we need to access Carlos’s account page.
- Your credentials:
wiener:peter - Victim’s credentials
carlos:montoya
Click on “Access the lab” button to open the lab page.
On the lab page, you will see the “My Account” option in the top right corner. Click on it to log in using the provided credentials.
Enter the given credentials and click on “login”.
As soon as we try to login it asks for the 4 digit security code. We can see the “email client” button on top of the page. Click on that to see the email.
On Email client page we can see the security code provided is 0250.
Let’s enter that security code and login.
We are successfully logged in as wiener.
By observing the link after login we can see that the link is changed to my-account?id=wiener. This information can be useful in bypassing 2FA (Two-Factor Authentication) through URL parameter manipulation.
We have been provided with the victim’s username and password. So let’s login with the provided username and password.
Again it asks for the 4-digit security code. Observe the URL of this page, we can simply try to manipulate the URL to login.
Let’s manipulate the URL by adding my-account at the end of url. Booom!! We are logged in as carlos. We have successfully bypassed 2FA by manipulating url.
Congratulations! The walkthrough of second authentication lab finishes here.
You can see walkthrough of Third lab by clicking the following link:
