00 — Overview

FirstBank — Transfer Funds

The transfer API accepts the amount from the client. Send a negative number and the money flows the wrong way.

Intermediate·20 min·3 tasks

// By the end of this module

→Exploit business logic flaws in a banking transfer workflow

→Manipulate transaction amounts and bypass approval thresholds

→Chain multiple logic flaws to drain a balance

// Prerequisites

Logic · Intermediate

40 min

IDOR · Beginner

20 min