In the exercise below, the attacker is not authenticated to the web application and needs to find a broken authentication attack on it.

A version of Online Airline Booking System is vulnerable to broken authentication attack. 

Objective: Your task is to find and exploit this vulnerability.

The solution for this lab can be found in the following manual: https://assets.ine.com/labs/ad-manuals/walkthrough-438.pdf