In this video, we'll explore the concept of an Insecure Direct Object Reference (IDOR) attack and how to investigate it in the SOC. IDOR is a type of vulnerability that allows an attacker to access sensitive information or perform malicious actions by manipulating direct object references in a web application. As a SOC analyst or DFIR professional, it is crucial to be aware of IDOR and how it can be exploited.
We will cover the following topics in this video:
- What is IDOR and how does it work?
- Real-world examples of IDOR attacks
- Techniques for identifying and exploiting IDOR vulnerabilities
To demonstrate IDOR attacks and defenses, we will be using LetsDefend.io, a platform that provides realistic simulations of cyber attacks. Additionally, we will reference PortSwigger Academy, a free online resource for learning web application security.
Whether you are new to IDOR or a seasoned professional, this video will provide valuable insights and practical tips for protecting your organization against this common vulnerability. So, sit back, relax, and let's dive into the world of IDOR attack and defense!
9 мар 2023
