Cross Site Scripting XSS Explained | TryHackMe Junior Penetration Tester | OSCP

Подписаться 48 тыс.

Просмотров 27 тыс.

50% 1

In this video walk-through, we covered cross site scripting vulnerability through different levels of security. We used TryHackMe Junior Penetration Tester pathway.
*********
Receive Cyber Security Field, Certifications Notes and Special Training Videos
/ @motasemhamdan
**********
Room Answers
motasem-notes....
*********
Room Link
tryhackme.com/...
*********
Instagram
/ dev.stuxnet
Twitter
/ manmotasem
Facebook
/ motasemhamdantty
LinkedIn
[1]: / motasem-hamdan-7673289b
[2]: / motasem-eldad-ha-bb424...
Website
www.motasem-no...
Patreon
www.patreon.co...
Backup channel
/ @themastermindclips
My Movie channel:
/ @themastermindbooks
******

Опубликовано:

16 сен 2024

Ссылка:

Скачать:

Готовим ссылку...

Добавить в:

Мой плейлист

Посмотреть позже

Комментарии : 52

@cosmintibuleac969 2 года назад

For anyone having issues with the final session cookie answer, there seems to be a bug. Here is the correct answer: 4AB305E55955197693F01D6F8FD2D321

@ursr78122 2 года назад

Man, thank you very much for the answer, I spent more than hour to come up that task does'nt work... But I was sure that I'm doing everything right

@unpopularopinion1032 2 года назад

aaaah no wonder. The bug had to do with the netcat listener (or server as shown in the video) not receiving confirmation of interaction after ticket was viewed right? just want to verify.

@cosmintibuleac969 2 года назад

@@unpopularopinion1032 either that or I was not getting the corect cookie for the answer, don't remember 100% accurately.

@martyduniaud1360 2 года назад

OMFG, thank you, 1 day I break my head cause that

@jjjww975 2 года назад

I could not get the final script to work and bounce back the cookie -- something wrong with the THM network --- everything else worked up t that point

@unpopularopinion1032 2 года назад

Thanks for these videos bro. Ive seen two of your walkthroughs already and they are the best/easiest to understand.

@mudasirmalikawan4769 Год назад

the best thing is his clear speaking in english. even asians can understand him easily. the tutorial is complete from zero to hero

@RicondaRacing 2 года назад

that last question had me going crazy for hours, THANK YOU!

@mohamedahmed-q1m4v Год назад

The way you have explained is really easy and I understand it now. maybe will forget it tomorrow haha

@AC-he8ln 10 месяцев назад

Thanks, was not working with the nc -nlvp 9001 suggested in the exercise, but worked fine with http server.

@marosmihok8782 2 года назад

THANK YOU SO VERY MUCH MAN! I was struggling with this task for so long.

@mialarssen2627 Месяц назад

Thank you so much Mr Motasem. How do I get that My Notes Library? I`ll appreciate so much :)

@silentkille4 2 года назад

learning alot from your videos thank you so much

@syriamoon2674 2 года назад

Thank you for the explanation. Would you advise me to learn through the site and buy a paid account?

@Sleepygayboi9797 2 года назад

Yes, it is extremely useful, I have done the pre security and complete beginner so far, and am very confident in my fundamental skills now. Def worth.

@MotasemHamdan 2 года назад

Yes I would. Its very useful

@user-iv8sj7oe3z 2 года назад

can you share with as the Manual in 24:51 mins (OWASP+Web App Pentesting) Thanks

@adminaccount1951 2 года назад

Hi, I know its a lot. But can you share your obsidian vault for reference.. ? Or kindly make a website out of it if possible.

@MotasemHamdan 2 года назад

Hello, online access to notes is part of channel membership ru-vid.com/show-UCNSdU_1ehXtGclimTVckHmQjoin

@felipecg6587 2 года назад

Thank you Sir

@ayoub904 Год назад

man ,would like to share with us that scripting note, or we can find it ? thanks alot

@MotasemHamdan Год назад

Hello, cyber security notes can be accessed through channel membership tier 2 ru-vid.com/show-UCNSdU_1ehXtGclimTVckHmQjoin

@mersadbaradaran9176 2 года назад

ty my BRO!

@_think8830 Год назад

Thx bro❤️

@derastephh Год назад

Hello, how do I know the port for my web server?

@MotasemHamdan Год назад

netstat -antp | grep apache

@Alternosphere 2 года назад

Would you be willing to share your Obsidian notes?

@MotasemHamdan 2 года назад

Access to the manual can be done through the membership. ru-vid.com/show-UCNSdU_1ehXtGclimTVckHmQjoin

@Alternosphere 2 года назад

@@MotasemHamdan brilliant. your content is amazing, keep it up man, big ups

@RS-uj2yf 2 года назад

Hm....cant find a link for notes...(((

@ailson_junior7034 2 года назад

it only captures its own cookie and not the target's

@kyawswanyee3309 Год назад

can i get your cyber security obsidian note /

@MotasemHamdan Год назад

ru-vid.com/show-UCNSdU_1ehXtGclimTVckHmQjoin

@deadv0iD 2 года назад

"fucking finally man"

@MotasemHamdan 2 года назад

gangsta style :)

@huuloc8719 2 года назад

Great.

@hajarlachhab8851 2 года назад

can you share with us the obsidian notes please?

@MotasemHamdan 2 года назад

Hello, Notes are part of the channel membership. Take a look here ru-vid.com/show-UCNSdU_1ehXtGclimTVckHmQjoin

@cuneytguclu8547 2 года назад

@@MotasemHamdan you're awesome thanks

@TuniRex 8 месяцев назад

sa3b ktirr hhhhhh

@MotasemHamdan 8 месяцев назад

hahahaha sa3bbbbbbbbb

@cybersamurai99 2 года назад

somehow I am geting a different value on my cookie on the last chalenge. It only contains the session ID cookie I get is : c2Vzc2lvbj01ZTcwZmFkNTRlM2Q2YWE4Nzk4Y2I3ZDNjZGMwMGVlYg==

@metallical87 2 года назад

yeah same with me

@hardiwrites4430 2 года назад

@@metallical87 same

@kolesnikov1991 2 года назад

I had the same problem but finally got a solution. Make sure that is a HTTP connection (HTTPS is encrypted) Second thing. You have to be patient. It takes a while to get cookie

@cosmintibuleac969 2 года назад

For anyone having issues with the final session cookie answer, there seems to be a bug. Here is the correct answer: 4AB305E55955197693F01D6F8FD2D321