{"height":"190","url":"https://cysec148.hatenablog.com/entry/2021/12/24/231330","provider_url":"https://hatena.blog","width":"100%","title":"Two Factor Authentication Bypass\u3092\u8a33\u3057\u3066\u307f\u305f","provider_name":"Hatena Blog","description":"Hello there, ('\u03c9')\u30ce \u4e8c\u8981\u7d20\u8a8d\u8a3c\u30d0\u30a4\u30d1\u30b9\u3092\u3002 \u8106\u5f31\u6027\uff1a 2FA\u30d0\u30a4\u30d1\u30b9 \u8a18\u4e8b\uff1a https://aungpyaekoko.medium.com/two-factor-authentication-bypass-50-5b397e68cfed \u4eca\u56de\u306f\u3001\uff12\u8981\u7d20\u8a8d\u8a3c\u306ejson\u30a8\u30f3\u30c9\u30dd\u30a4\u30f3\u30c8\u3067\u30aa\u30f3\uff0f\u30aa\u30d5\u306b\u6c17\u3065\u304d\u3044\u305f\u306e\u3067\u3002 \u3053\u308c\u306f\u8106\u5f31\u3067\u3042\u308b\u53ef\u80fd\u6027\u304c\u3042\u308b\u3068\u5224\u65ad\u3057\u3001\u30d0\u30a4\u30d1\u30b9\u3057\u3088\u3046\u3068\u3059\u308b\u3053\u3068\u306b\u3002 \uff12\u8981\u7d20\u8a8d\u8a3c\u306f\u3001\uff15\u6841\u306eOTP\u304c\u5fc5\u8981\u3067\u3002 OTP\u306e\u5024\u306eVerificationCode\u306b\u9069\u5f53\u306a\u5024\u3092\u30bb\u30c3\u30c8\u3057\u3066\u3002 \uff12\u8981\u7d20\u8a8d\u8a3c\u3092\u30aa\u30f3\u306b\u3057\u305f\u72b6\u614b\u3067\u306e\u30ea\u30af\u30a8\u30b9\u30c8\u3092\u9001\u4fe1\u3059\u308b\u3068\u3002 PUT /api/sts/v2/s\u2026","author_url":"https://blog.hatena.ne.jp/ThisIsOne/","categories":["Bug Bounty"],"image_url":"https://cdn-ak.f.st-hatena.com/images/fotolife/T/ThisIsOne/20211224/20211224211645.png","html":"<iframe src=\"https://hatenablog-parts.com/embed?url=https%3A%2F%2Fcysec148.hatenablog.com%2Fentry%2F2021%2F12%2F24%2F231330\" title=\"Two Factor Authentication Bypass\u3092\u8a33\u3057\u3066\u307f\u305f - Shikata Ga Nai\" class=\"embed-card embed-blogcard\" scrolling=\"no\" frameborder=\"0\" style=\"display: block; width: 100%; height: 190px; max-width: 500px; margin: 10px 0px;\"></iframe>","blog_url":"https://cysec148.hatenablog.com/","type":"rich","blog_title":"Shikata Ga Nai","version":"1.0","published":"2021-12-24 23:13:30","author_name":"ThisIsOne"}