00 — Overview

Password Reset Flaws

Learn how password reset flows break — Host header poisoning redirects reset links to attacker servers, and predictable tokens are brute forced in seconds.

Intermediate·40 min·5 tasks

// By the end of this module

→Identify weak password reset token generation (guessable, reusable)

→Exploit host header injection in password reset emails

→Abuse predictable tokens to reset another user's password

→Chain account takeover via password reset with XSS or IDOR

// Prerequisites

Foundation · Beginner

How Authentication Works

35 min

→

Authentication · Intermediate

Broken Authentication

50 min

→