Attacking Access Control Models in Modern Web Apps

So far you may have come across various web applications where you were able to invite members with limited access to the information within the organization. Developers are able to make such applications or services by implementing access control models within their applications.
In this talk we will discuss various access control measures used in modern apps, their potential shortcomings and testing methodologies.