This is a walkthrough of PortSwigger Academy’s “user role can be modified in user profile” lab. You’ll need Burp Suite installed for this walkthrough (see instructions here).
You’ll also need
This blog post is for the first Apprentice-level “user role” lab within Portswigger’s Access Control lab category.
Before we get started, you’ll need a Portswigger Academy account. Log in and then
This is another quick writeup of an Apprentice-level access control lab from Portswigger Academy, this time with an “unpredictable” URL.
Before we get started, you’ll need a Portswigger Academy account. Log in