> For the complete documentation index, see [llms.txt](https://sarpers-organization.gitbook.io/ctftricks/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://sarpers-organization.gitbook.io/ctftricks/_chapter-intro-17/authentication-bypass.md).

# Authentication Bypass

- [Bruteforce](https://sarpers-organization.gitbook.io/ctftricks/_chapter-intro-17/authentication-bypass/bruteforce.md)
- [Brute-force OTP with Script](https://sarpers-organization.gitbook.io/ctftricks/_chapter-intro-17/authentication-bypass/bruteforce/trick-0283.md)
- [Default Administrator Credentials Login](https://sarpers-organization.gitbook.io/ctftricks/_chapter-intro-17/authentication-bypass/bruteforce/trick-0332.md)
- [Http Headers](https://sarpers-organization.gitbook.io/ctftricks/_chapter-intro-17/authentication-bypass/http-headers.md)
- [Authentication Bypass Via Custom HTTP Header](https://sarpers-organization.gitbook.io/ctftricks/_chapter-intro-17/authentication-bypass/http-headers/trick-0254.md)
- [Bypass Tomcat Manager Auth Header](https://sarpers-organization.gitbook.io/ctftricks/_chapter-intro-17/authentication-bypass/http-headers/trick-0237.md)
- [Jwt](https://sarpers-organization.gitbook.io/ctftricks/_chapter-intro-17/authentication-bypass/jwt.md)
- [JWT Forgery with Private Key](https://sarpers-organization.gitbook.io/ctftricks/_chapter-intro-17/authentication-bypass/jwt/trick-0285.md)
- [JWT HS256 Secret Cracking](https://sarpers-organization.gitbook.io/ctftricks/_chapter-intro-17/authentication-bypass/jwt/trick-0450.md)
