2FA Simple Bypass

• The objective of this lab is to bypass two-factor authentication when logging into a user’s account.
• The lab gives access to a blog as shown below.

• You have the credentials for the users wiener and carlos. Along with his credentials, you also have access to wiener’s email which means that you can check the verification code that is sent to him.
• Click on My Account and enter wiener’s credentials, wiener:peter. Open the email client so that you can see the verification code that has been requested.

• Once you input wiener’s verification code, you are directed to his home page. Note the url. You will be using this information to bypass 2FA for carlos’ account.

• Now, log out of this account and log in using carlos’ credentials. You are prompted to input the verification code but you do not have access to carlos’ account so are not privy to this information.

• You need to adjust carlos’ url to go directly to his home page by replacing /login2 with /my-account?id=carlos. This redirects you to carlos’ home page without having to input the verification code. In this way, you have bypassed 2FA.