1. XML Signature Wrapping Attacks [XSW]
2. SAML XML Injection
3. SAML Message Integrity Abuse
4. Missing/Invalid Signature
5. SAML Message Replay
6. Cross-Site Request Forgery
7. XML Comment Handling
8. XSLT
9. Token Recipient Confusion
10. References
    1. https://workos.com/blog/fun-with-saml-sso-vulnerabilities-and-footguns
    2. https://github.com/harsh-bothra/learn365/blob/main/days/day3.md
    3. https://research.aurainfosec.io/bypassing-saml20-SSO/
    4. http://sso-attacks.org/Category:Attack_Categorisation_By_Attack_on_SAML
    5. https://epi052.gitlab.io/notes-to-self/blog/2019-03-07-how-to-test-saml-a-methodology/
    6. https://epi052.gitlab.io/notes-to-self/blog/2019-03-13-how-to-test-saml-a-methodology-part-two/
    7. https://epi052.gitlab.io/notes-to-self/blog/2019-03-16-how-to-test-saml-a-methodology-part-three/
    8. https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/SAML_Security_Cheat_Sheet.md
    9. https://research.nccgroup.com/2021/03/29/saml-xml-injection/
    10. https://www.sygnia.co/golden-saml-advisory
11. Labs & Resources
    1. https://github.com/yogisec/VulnerableSAMLApp
    2. https://github.com/dogangcr/vulnerable-sso
12. Tools & Burp Extensions
    1. SAML Raider
13. Certificate Faking Attack
14. Certificate Injection Attack
15. XML External Entities
16. Golden SAML Attack
17. MindMap Created By: Harsh Bothra Twitter: @harshbothra_ https://harshbothra.tech