Navigation X
ALERT
Click here to register with a few steps and explore all our cool stuff we have to offer!



 70312

[EXCLUSIVE] How To Bypass OTP On Almost Any Site!

by Badass - 25 August, 2020 - 10:07 PM
This post is by a banned member (Badass) - Unhide
Badass  
Godlike
1.380
Posts
593
Threads
4 Years of service
#1
(This post was last modified: 26 August, 2020 - 04:01 PM by Badass.)
This method is used by many pentester to exploit the vulnerabilities of a website with OTP functionality. Also, nowadays, unacademy's OTP vulnerability is exposed. 

This mainly requires a tool burp suite available for free, which can help you change the response of the OTP verification from the client-side. 
We have also attached a page where these vulnerabilities are explained very precisely.



Hidden Content
You must register or login to view this content.



⚠️ Note: This is an exemplary video showing the vulnerability of a website that is already patched. Such kind of vulnerability was also there in banking sites.

LEAVE LIKE OR I WILL REPORT YOU FOR LEECHING WHICH WILL GET YOUR ACCOUNT BANNED ! :pepegun:
This post is by a banned member (NamedGuyyy) - Unhide
This post is by a banned member (kilwa) - Unhide
kilwa  
Registered
34
Posts
0
Threads
4 Years of service
#3
thanks brool
This post is by a banned member (Malindu123) - Unhide
This post is by a banned member (Roselyn_Lowink) - Unhide
12
Posts
0
Threads
4 Years of service
#5
This is great learning material. A relative of mine somehow got hacked through a vulnerable app, I know it's from OTP but I always wonder how they did that. Thanks, dude.
This post is by a banned member (gnortseeb) - Unhide
gnortseeb  
Registered
5
Posts
0
Threads
4 Years of service
#6
(25 August, 2020 - 10:07 PM)badass_kid Wrote: Show More
This method is used by many pentester to exploit the vulnerabilities of a website with OTP functionality. Also, nowadays, unacademy's OTP vulnerability is exposed. 

This mainly requires a tool burp suite available for free, which can help you change the response of the OTP verification from the client-side. 
We have also attached a page where these vulnerabilities are explained very precisely.




⚠️ Note: This is an exemplary video showing the vulnerability of a website that is already patched. Such kind of vulnerability was also there in banking sites.

LEAVE LIKE OR I WILL REPORT YOU FOR LEECHING WHICH WILL GET YOUR ACCOUNT BANNED ! :pepegun:

thanks bro!
This post is by a banned member (charonx) - Unhide
charonx  
Registered
54
Posts
1
Threads
5 Years of service
#7
thanks bro!
This post is by a banned member (liceyav235) - Unhide

Create an account or sign in to comment
You need to be a member in order to leave a comment
Create an account
Sign up for a new account in our community. It's easy!
or
Sign in
Already have an account? Sign in here.


Forum Jump:


Users browsing this thread: 8 Guest(s)