Open in app

Sign up

Sign in

Write

Sign up

Sign in

Member-only story

$200 Easy Bounty: Improper Rate Limiting Exploit

It4chis3c
InfoSec Write-ups
Published in
3 min readFeb 6, 2025

Rate Limiting gives you Easy Bounty

Friend Link | Free Link

Hi geeks, it4chis3c (Twitter) came-up with the write-up on Improper Rate Limiting Vulnerability found on one of the target’s internal login page.

Credit: Copilot

During my OSINT reconnaissance on *.target.com, I discovered an IP (198.x.x.x) hosting the target Login Page. Interestingly, the SSL certificate belonged to xy.target.com, indicating a possible misconfiguration.

Discovery & Exploitation

I decided to test the authentication page (https://198.x.x.x/target-protect/login.esp) for improper rate limiting using various brute-force techniques. After multiple tests, I found that the implementation of rate limiting was weak, allowing an attacker to brute-force login credentials effectively.

Steps to Reproduce:

  1. Navigate to the authentication page: https://198.x.x.x/target-protect/login.esp

2. Intercept the login request using Burp Suite & send it to Intruder.

--

--

InfoSec Write-ups
InfoSec Write-ups

Published in InfoSec Write-ups

54K Followers
Last published 2 days ago

A collection of write-ups from the best hackers in the world on topics ranging from bug bounties and CTFs to vulnhub machines, hardware challenges and real life encounters. Subscribe to our weekly newsletter for the coolest infosec updates: https://weekly.infosecwriteups.com/

It4chis3c
It4chis3c
Follow

Written by It4chis3c

432 Followers
20 Following

Security Researcher | Bug Bounties | Tips & Tricks

Follow

Responses (2)

Help

Status

About

Careers

Press

Blog

Privacy

Terms

Text to speech

Teams