Open Redirect Vulnerability Explained 

These are awesome, dude! Happy you see you starting up a show!

I hope for the day where I come back to this video and flawlessly understand everything you said

This video gives me a ton of information in a clear logical way in 8 min ! I didnt understand or remeber it all but I can do research on the topic easily ! Thank you ! This is helpful

the next liveoverflow ? focus on web exploitation topic should be good i think, keep it up buddy!

What a great detailed video.. really loved it! next time i will just forward this video link, whenever anyone asks me about open redirects. You got me subbed and i will wait for more contents from you :)

This is explained so simple. And i feel like i still saw a video on Chinese.

Awesome man! After a long time, I found an awesome video. Please continue to upload such content.

Amazing video dude !! Keep it up. And thanks for the awesome challenge :)

I always wait for that cool ending ♥

Just found you and I love all these videos. You got some pretty nice digital handwriting and drawing. That flask logo. 👍

Can I call your Mom, Mom? cause You sounded like, you are my big brother, n you explained everything to me so sweetly

Subbed Bro keep up the great work and very good quality

Very clear and good amazing video.I want to learn more such things from you.

With your download chrome example, don’t most browsers tell you where the file is downloaded from? Firefox would say “ChromeSetup” for what you downloaded and in a smaller line below it “Downloaded from attacker’s website”, could this possibly be faked in a dangerous way (something like how mega does downloads? completely on the page and only sends your browser the finished file, which i guess is intended for stuff you make in-browser, the browser should handle remote downloads, right?) or does the attack only work on browsers that don’t tell you which server it downloaded the file from?

Very good explanation! Thank you.

Sir please more videos on different vulnerabilitys Great video

Very clear explanation with simple graphics. Thanks!

One of the best video i seen Open Redirection . Thanks for doing this kinds of videos it will be very usefull for beginers

YOOOO Social Engineering is an essential skill because we all know when 'something' does not brake from the outside it does from the inside and of course the human factor will always be vulnerable.

I love the music at beginning

I like how chill he is

PwnFunction: What could possibly go wrong? Me: Everything.

Very informative, and deep for understanding video! I have blow in my thinking about this..) Thanks! Good luck!

So, I guess it's important to resolve the URL before checking against it.

I love the drawings lmaoo, good video :0

Your awesome...and your video to good..bro

Wow, this channel is underrated !

Please your videos going, they are amazing

I was looking for an Olivia Rodrigo audio file, and I found a website that redirected me to some website where the screen said something about my iPad having 19 viruses....

How can someone use an open redirect to take over an account? - password tokens are not listed anywhere. how can the hacker find the token? - even if the token is found, there is a HIGH chance it is expired. - even if the token is found, the token is deleted right after the password reset. Also if the hacker has the token, why not directly resetting the password himself?

Amzing bro keep going u got my sub😍😍

Your contents are valuable for self-learners

Amazing channel. Don't stop making videos like this

Love your videos! Thanks!!

Very good explanation, you are awesome. Thaaaaanks

Oh boy. I'm totally guilty of this one.

Cooooooooool channel. but plz place those browser window green, yellow and red buttons on the left :)

Great vedio! But where can I find the english caption?

fantastic videos wow

The best quality programing content ever Ever

Can you change the auto-generated subtitles for this video from Korean to English?

Awesome videos.

Great content here is your sub

Just got my equipments to start hunting thanks alot

Well Explained, Tq. And BGM , loved it.

Awesome..

Good video! the flickering when some (wrong) drawing is removed is really annoying though.

Why this channel is so amazing 😌

Awesome video! Also, it's better to send tokens via POST method rather than GET. That could solve the issue, but still very well demonstrated. 👍

A really good one! Thank you!

keeeeeep going maaaaan .. u are perfect

Great vedio... explained everything so simply 😍 Keep on going... you earned my respect 😀

I was just watching through your video again, but needed subtitles... "Korean (auto generated)"?! That confused me for a second! :)

1:00 Luckily PHP removes all the newlines in the header() argument or else it could be much more interesting :D

Love your vids👍

This is really informative

Awesome

MAN!!! Your explanation just drilled the concept hole in my brain! I finally understand How is this a vulnerability and the Thomas Example was cherry on cake! It gave a good understanding~

i like the way how you said INTERNET EXPLORER whahahaha

nice work!!!

what do you use to create these videos ?

If I make a open redirect and if it redirects out of the site I show a Warning that you are leaving the site. (I coded so everytime ANY redirect is ran it shows the warning first, then redirects to the target after accepting It shows the URL it is redirecting to and with a Fat Warning text

I didn't find video like this. Keep it up

Well explained! ❤️

I discover ur channel now, cool man!

Absolutely brilliant

Thank you for making great content!

Just found like 10 open redirects on a site and it's other domains. will try to escalate those 😉

Ok, this was awesome! Nice Tut

And thus, a legend was born

nice explanation, got subs from us :)

Hey! if the websites instead of redirecting to another domain, loads content from the domain you select, does count as a vulnerability? how can i exploit it?

awesome content bro

You've got my sub man! Keep up the good work!

Awesome content

quality content ....... awesome

please answer to me, what is the name of this app?

You are awesome...

What program did you use for the drawings?

I try to simulate the code in the end of the video and trigger XSS, but i can not trigger XSS. Could anyone help me ?

Can you please tell me the name of your terminal fonts?

So beautiful

Ur rocking dude Love u 😘

Great content

How an attacker change url parameters on a website into desired url

Bro put videos regularly

btw I like your drawing XD

It's awesome

Please put the english subtitles

make more vids about web hacking... nice job

you explain this so clearly and so well. good work!

Good content and explanation!:)

Someone knows which theme the editor use in vscode?

How we can get token as it is seCret token ?

Foma Kinyaev

Is your intro a wireshark packet? XP

God , i didn't understand anything. but i will😎

idk anything of those topics. i like your video style tho.

AMAZING FUCKING VIDEO !!!!

1337 reference