I’m being asked to do this at work, and in my opinion if this works, it would represent a vulnerability in and of itself; being able to circumvent bot filters on traffic to a web app by manually authenticating and then replacing my traffic by allowing a DAST scanner to hijack my session by giving…

Read More