Sign in with Apple - authentication bypass
Tags
attack-pattern: Data Domains - T1583.001 Domains - T1584.001 Hardware - T1592.001 Javascript - T1059.007 Server - T1583.004 Server - T1584.004 Scripting - T1064 Scripting
Show in Graph
Common Information
Type Value
UUID 48aa0d1e-02e4-4a5e-b6f0-54a107a6c7ff
Fingerprint a2c991bd0b2677d5
Analysis status DONE
Considered CTI value 0
Text language
Published July 1, 2020, midnight
Added to db Oct. 23, 2023, 12:24 a.m.
Last updated Nov. 17, 2024, 10:40 p.m.
Headline Sign in with Apple - authentication bypass
Title Sign in with Apple - authentication bypass
Detected Hints/Tags/Attributes 25/1/21
Source URLs
Redirection Url
Details Source https://sector7.computest.nl/post/2020-08-sign-in-with-apple/
URL Provider
Details Provider Source level domain
Details computest.nl sector7.computest.nl
RSS Feed
Details Id Enabled Feed title Url Added to db
Details 222 Sector 7 https://sector7.computest.nl/index.xml 2024-08-30 22:08
Attributes
Details Type #Events CTI Value
Details Domain 51 
icloud.com
Details Domain 10 
www.icloud.com
Details Domain 4 
idmsa.apple.com
Details Domain 2 
gsa.apple.com
Details Domain 77 
apple.com
Details Domain 2 
icloud.com.cn
Details Domain 170 
support.apple.com
Details Domain 369 
microsoft.com
Details Domain 5 
captive.apple.com
Details Domain 1 
www.icloud.com.attacker.com
Details Domain 78 
attacker.com
Details File 3 
hotspot-detect.html
Details sha256 1 
d39ba9916b7251055b22c7f910e2ea796ee65e98b2ddecea8f5dde8d9d1a815d
Details Url 1 
https://icloud.com
Details Url 1 
https://idmsa.apple.com/appleauth/auth/authorize/signin?client_id=d39ba9916b7251055b22c7f910e2ea796ee65e98b2ddecea8f5dde8d9d1a815d
Details Url 2 
https://www.icloud.com
Details Url 2 
https://support.apple.com/en-us/ht201536
Details Url 1 
https://nakedsecurity.sophos.com/2020/03/06/researcher-finds-670-microsoft-subdomains-vulnerable-to-takeover
Details Url 3 
http://captive.apple.com/hotspot-detect.html
Details Url 1 
https://www.icloud.com.attacker.com
Details Url 1 
https://attacker.com/https://www.icloud.com