Its all about 2fa bypass, or Account Takeover

Hello My Dear Buggies!!!

Happy to write my Second article in medium. kindly excuse me if any Grammarly mistakes in this article,still iam learner

I Hope your good,lets begin our show

Lets assume that its redacted.com. The program have full scope , when ever I choose the program . First thing to do for recon for finding any sensitive data in github, so I opened github searching for “readacted.com” apikeys unfortunately i didn’t find anything ,

So I Started playing reset functionality and but sadly nothing work, so just login my account. lets assume this has your.readacted.com after that I enabled 2fa function given my number , the otp has received entered otp, 2fa has enabled.lets play (actually when you registered an account its asking to create add your integration , i created my integration ) lets bypass 2fa , iam trying bypass 2fa by responace manipulation , and brute-forcing but didn’t work (the bgm starts) iam logout my account , iam thinking how to bypass.. after one hour break then iam started again, lets begin , i asked reste password function ( iam used this time my second browser ex: mozila ) changed the password , and still it asking 2fa ,here what i did i entred www.redacted.com there is login button, clicked login button. when i click that login button (its redirected to your integration page ) iam shock , still iam not login but when you click on your integration its redirected to your.readacted.com , still your not login but here there is option is there , click on your profile disable 2fa,change the email or phone number ,its lead to an Account takeover

Submitted to program, still waiting for replay

IMPACT:

If an attacker may compromise your mail id and password,user may think iam safe with 2fa authentication(because user enable 2fa using phone number),but attacker can easily bypass 2fa (weak implenation 2fa authentication)

Thanks for reading

catch you in next writeup.bye bye

HAPPY HUNTING BUGGIES