/cheatsheets/bugbounty/web/Recent content in Web Checklists on nix4cyberHugoenCopyright (c) 2025 nix4cyber/cheatsheets/bugbounty/web/403-forbidden-bypass/Mon, 01 Jan 0001 00:00:00 +0000/cheatsheets/bugbounty/web/403-forbidden-bypass/<p>A 403 Forbidden bypass refers to techniques used to circumvent HTTP access control restrictions and gain unauthorized access to protected web resources. These methods exploit server misconfigurations through header manipulation, path obfuscation, URL encoding, and cache poisoning to access restricted endpoints that normally return a 403 status code.</p>/cheatsheets/bugbounty/web/idor/Mon, 01 Jan 0001 00:00:00 +0000/cheatsheets/bugbounty/web/idor/<h2 id="idor-insecure-direct-object-reference">IDOR (Insecure Direct Object Reference)</h2> <p><strong>IDOR</strong> is an access control vulnerability where an application uses a <strong>direct identifier</strong> (like an account number or user ID) without properly verifying if the requesting user is authorized to access it.</p>/cheatsheets/bugbounty/web/open-redirects/Mon, 01 Jan 0001 00:00:00 +0000/cheatsheets/bugbounty/web/open-redirects/<h2 id="how-to-find-entry-points-to-test">How to find entry points to test?</h2> <ul> <li> <p>Caido HTTP history (look at URLs with parameters)</p> </li> <li> <p><a href="/cheatsheets/osint/google-dorks">Google dorking</a></p> <div class="expressive-code"> <figure class="frame not-content"> <figcaption class="header"> <span class="title"></span> </figcaption> <div class="highlight"><pre tabindex="0" class="chroma"><code class="language-txt" data-lang="txt"><span class="line"><span class="cl">site:target.com inurl:(go= OR return= OR r_url= OR returnUrl= OR returnUri= OR locationUrl= OR goTo= OR return_url= OR next= OR continue= OR checkout_url= OR dest= OR destination= OR image_url= OR redirect= OR redir= OR return_path= OR return_to= OR rurl= OR target= OR view=)</span></span></code></pre></div> </figure> </div> </li> <li> <p>Functionalities usually associated with redirects:</p>