Authentication Vulnerabilities - Lab #5 Username enumeration via response timing | Short Version

  Рет қаралды 5,116

Rana Khalil

Rana Khalil

Күн бұрын

In this video, we cover Lab #5 in the Authentication module of the Web Security Academy. This lab is vulnerable to username enumeration using its response times. To solve the lab, we enumerate a valid username, brute-force this user's password, then access their account page.
Your credentials: wiener:peter
Candidate usernames: portswigger.ne...
Candidate passwords: portswigger.ne...
▬ ✨ Support Me ✨ ▬▬▬▬▬▬▬▬▬▬
Buy my course: academy.ranakh...
▬ 🔗 Links 🔗 ▬▬▬▬▬▬▬▬▬▬
Notes.txt document: github.com/rkh...
Web Security Academy Lab Exercise: portswigger.ne...
Rana's Twitter account: / rana__khalil

Пікірлер: 9
@RanaKhalil101
@RanaKhalil101 Жыл бұрын
Want to gain access to the full Web Security Academy Series course that contains 140+ videos and 50+ hours of HD content covering 13 vulnerability categories? Register using this coupon to get 30% off of my course : 30PERCENTOFF ranakhalil.teachable.com/p/web-security-academy-video-series?coupon_code=30PERCENTOFF&product_id=4894910
@cyberkhan7
@cyberkhan7 Жыл бұрын
Hi , I am getting error "Something went wrong" while Purchasing above course , Could you please assist here? I tried multiple times with 2 different cards.
@rogercastellanosfernandez1349
@rogercastellanosfernandez1349 10 ай бұрын
great videos!
@yaboiJCMdagoat
@yaboiJCMdagoat Жыл бұрын
Love your videos
@lyubovkorovina3138
@lyubovkorovina3138 8 ай бұрын
Hi Rana! Does this type of enumeration leave traces like logs in the system? Thanks!
@mehkpentester5824
@mehkpentester5824 Жыл бұрын
Thank about it
@sakibahamed3705
@sakibahamed3705 Жыл бұрын
🥰🥰🥰
@MmTt-b7d
@MmTt-b7d Жыл бұрын
Helll eng rana
@behonest5866
@behonest5866 Жыл бұрын
my dear madam ... please make sound more its some time very hard to understand
Authentication Vulnerabilities - Lab #6 Broken brute-force protection, IP block | Short Version
14:09
Authentication Vulnerabilities - Lab #6 Broken brute-force protection, IP block | Short Version
Rana Khalil
Рет қаралды 6 М.
Authentication Vulnerabilities - Lab #5 Username enumeration via response timing | Long Version
15:26
Authentication Vulnerabilities - Lab #5 Username enumeration via response timing | Long Version
Rana Khalil
Рет қаралды 3,2 М.
Помоги Nuggets Gegagedigedagedago удрать от бабульки Granny !
00:21
Помоги Nuggets Gegagedigedagedago удрать от бабульки Granny !
Фани Хани
Рет қаралды 1,4 МЛН
🍉😋 #shorts
00:24
🍉😋 #shorts
Денис Кукояка
Рет қаралды 3,8 МЛН
Players vs Corner Flags 🤯
00:28
Players vs Corner Flags 🤯
LE FOOT EN VIDÉO
Рет қаралды 89 МЛН
iPhone or Chocolate??
00:16
iPhone or Chocolate??
Hungry FAM
Рет қаралды 50 МЛН
Authentication Vulnerabilities - Lab #10 Offline password cracking | Short Version
11:46
Authentication Vulnerabilities - Lab #10 Offline password cracking | Short Version
Rana Khalil
Рет қаралды 3,2 М.
Authentication Vulnerabilities - Lab #11 Password reset poisoning via middleware | Short Version
8:14
Authentication Vulnerabilities - Lab #11 Password reset poisoning via middleware | Short Version
Rana Khalil
Рет қаралды 3,7 М.
[HINDI] Username enumeration via response timing | PortSwigger
10:09
[HINDI] Username enumeration via response timing | PortSwigger
HackSkils
Рет қаралды 111
Authentication Vulnerabilities - Lab #4 Username enumeration via different responses | Short Version
8:46
Authentication Vulnerabilities - Lab #4 Username enumeration via different responses | Short Version
Rana Khalil
Рет қаралды 6 М.
Authentication Vulnerabilities - Lab #8 2FA broken logic | Short Version
9:24
Authentication Vulnerabilities - Lab #8 2FA broken logic | Short Version
Rana Khalil
Рет қаралды 3,6 М.
Authentication Vulnerabilities - Lab #6 Broken brute-force protection, IP block | Long Version
15:48
Authentication Vulnerabilities - Lab #6 Broken brute-force protection, IP block | Long Version
Rana Khalil
Рет қаралды 3,7 М.
Broken Authentication - Username Enumeration Via Response Timing
9:49
Broken Authentication - Username Enumeration Via Response Timing
z3nsh3ll
Рет қаралды 319
Authentication Vulnerabilities - Lab #9 Brute-forcing a stay-logged-in cookie | Long Version
18:41
Authentication Vulnerabilities - Lab #9 Brute-forcing a stay-logged-in cookie | Long Version
Rana Khalil
Рет қаралды 3,4 М.
Username enumeration via response timing (Video solution, Audio)
10:01
Username enumeration via response timing (Video solution, Audio)
Michael Sommer
Рет қаралды 57 М.
Authentication Vulnerabilities - Lab #7 Username enumeration via account lock | Short Version
9:29
Authentication Vulnerabilities - Lab #7 Username enumeration via account lock | Short Version
Rana Khalil
Рет қаралды 4,1 М.
В чём трудность ремонта ТОПОВЫХ - СОВРЕМЕННЫХ айфонов? Оживляем iPhone 11 / потух ночью на зарядке
29:08
В чём трудность ремонта ТОПОВЫХ - СОВРЕМЕННЫХ айфонов? Оживляем iPhone 11 / потух ночью на зарядке
notebook-31
Рет қаралды 103 М.
Bu telefonda oyun oynamak ister misiniz?
0:15
Bu telefonda oyun oynamak ister misiniz?
Hakkı Alkan
Рет қаралды 2,5 МЛН
iPhone or Samsung?
0:28
iPhone or Samsung?
Kan Andrey
Рет қаралды 1,7 МЛН
Huawei Best Android Mobile Phone Review || 4G Fast Charging Battery 2024
0:53
Huawei Best Android Mobile Phone Review || 4G Fast Charging Battery 2024
Citynews flim
Рет қаралды 409 М.
Телефон - самая грязная ваша вещь
0:24
Телефон - самая грязная ваша вещь
Up Your Brains
Рет қаралды 1,9 МЛН
Самый дорогой iPHONE 16 PRO MAX #shorts
0:58
Самый дорогой iPHONE 16 PRO MAX #shorts
Арсений Петров
Рет қаралды 2,6 МЛН
Я больше НЕ горесборщик ПК! Сколько заработал на КОМПАХ на Авито?
22:05
Я больше НЕ горесборщик ПК! Сколько заработал на КОМПАХ на Авито?
АЙДЕН
Рет қаралды 287 М.