Encryption does not equal to security
Just because something is encrypted, doesn't mean it's safe from hackers.
During a recent pentest, I found out the client was encrypting the web app's token using AES encryption.
When I was a junior, I would often consider those as dead ends and test something else.
But since attending the training about encryption, I see them as hidden gems awaits for digging.
And here's my guide to identify them and well, dig them.
Share if it helps. Comment if you have similar experience to share.
If not, I hope you can find them in your next engagement.
Link to my script here: https://gist.githubusercontent.com/sechurity/566ea8909b2a21d5d82d7541e17a395b/raw/8139cdbf615ea6dc2c7b59ed050d39a4379d56d7/padbuster-headers.pl