https://github.com/linuxndroid/idor-lab

A Python Web App For IDOR Vulnerability Practices and Learning Purpose
https://github.com/linuxndroid/idor-lab

bugbounty hacking-tool idor idor-attack idor-vulnerability linuxndroid webhacking

Last synced: about 1 month ago
JSON representation

A Python Web App For IDOR Vulnerability Practices and Learning Purpose

• Host: GitHub
• URL: https://github.com/linuxndroid/idor-lab
• Owner: Linuxndroid
• Created: 2025-05-17T07:10:13.000Z (10 months ago)
• Default Branch: main
• Last Pushed: 2025-05-17T10:33:24.000Z (10 months ago)
• Last Synced: 2025-06-19T13:45:48.835Z (9 months ago)
• Topics: bugbounty, hacking-tool, idor, idor-attack, idor-vulnerability, linuxndroid, webhacking
• Language: HTML
• Homepage:
• Size: 7.81 KB
• Stars: 0
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
# IDOR-Lab

IDOR Web App For Practices and Learning Purpose

# Requirement

- Python 3.11 or Above

- Laptop

- Internet Connection

# How to Start Server

- Step.1: Type in Cmd `python3 idor.py`

- Step.2 Open Browser And Type `yourip:5000`

- Step.3 1st user Admin Login Info `admin:admin`

- Step.4 2nd User Login `kutapak:kutapak`

# How to Attack Server

- Step.1: Edit The 1st user Account Info & Capture Request in Burpsuite

- Step.2 See The Id parameter and Replace Other User Id Example `ID=1` after Edit `ID=2`

- Step.3 Now Boom the 2nd User Removed in Website and You can Login there account and Takover.

# Watch Video For More Information.

[![YouTube Video](https://img.youtube.com/vi/R83-GAYB4YA/0.jpg)](https://www.youtube.com/watch?v=R83-GAYB4YA)

# Check Out More [Hacking Course](https://linuxndroid.in)




Made with ❤️ By Linuxndroid