Security Misconfiguration: Hacking the OWASP Top 10

Get real-world training at Pentest.TV: → Fundamentals Course ($25/mo): https://pentest.tv/courses/pentest-fundamentals-course/ → Professionals Course + Mentoring ($99/mo): https://pentest.tv/courses/pentest-professional-course/ In this video, we dive deep into security misconfigurations using WebGoat as the exploitable application. Learn how attackers can modify XML requests to gain access to sensitive data on the system. This vulnerability is identified on the OWASP Top 10 as: A05:2021 - Security Misconfiguration The weaknesses identified during this test shows that "90% of applications were tested for some form of misconfiguration. The former category for XML External Entities (XXE) is now part of this category." Make sure to check out https://Pentest.TV for additional resources, including free ethical hacking courses. Happy Hacking!