Many things were learned today from Javascript & XSS to video-editing, thanks John!

This video series got me to finally start learning pentesting - I always perceived it as something arcane and intimidating, but seeing how you struggle with node got me thinking that there is no shame in sucking at stuff.

38:08 is starting of the dulpicate of previous content till 51:58. hope you can fix it! But great job!!!! John Thanks a lot for suffering for us non-javascript fanboys.

good to see that a security professional with 10 plus years can still struggle getting up the hill, so to speak. Gives guys that are learning motivation to keep going

Thank you! I'm actually starting to get this stuff! Appreciate that you show how hard this stuff is and how much patience is required.

Let’s give a moment of appreciation for the amazing walkthrough. Thanks John.

I just like how you talk with your self and make actions :D it helps a lot : ) thanks for your videos, keep them ON.

watching john work is like watching myself hack. I would've however given up, the live learning, googling and also building of payloads gives your channel an authentic human touch. as opposed to all other channels just regurgitating payloads from writeups. kudos

another video and another day of learning for me, thanks again John for all your hard work. Kudos to you for doing all this for us and still doing a day job and "life"!

I love the videos where there is 5 minutes left and he's still pulling his hair out. Just knowing he's about to find the one little mistake borking it up.

Just found your channel and really loving your content

I like your approach...it's is similar to a software engineer daily job...read, understand, try, fail repeat and so on...

Like last year when I subed to you, you had like 80k followers. Keep going bro!

Hey, seems like the video is duplicated from 38:08. Love from India ❤️.

I pace around my room when John releases content..

I understood very little of that but it was great to see you get the flag in the end.

This is amazing. We learn new things everyday!!!!!!! CSP, fetch

Using an editor like vim with bracket highlighting would prevent painful mistakes like this. Brutal! Good video tho.

Yes, I had fun! Another great video that made my day

An Ide or setting Sublime for the context you're languaging on would help. Would make the inevitable formatting errors stand out

ngl !! lowkey better than netflix rn

This has been me trying to wrap my head around 'self' the past few days in Python lol

my eyes struggled to watch John struggle through the JS

I always learn a lot from you , thanks!

I am no JS expert, but in my experience JS is good at breaking itself and proceeding lines of code. I kept thinking you should just look at the browser console, or even even just copy paste known working attack to confirm nothing is borked. Not sure if this would have worked (ive only played with node with one small app), tho the way I would have approached getting the final data: Either sending it all to the console, or injecting it all into an element in the list page, or perhaps the easiest is just alert the data with something like match('CHTB.{50}') .

Waiting for the video ❤️

I dont't really understand why the javascript alert popup only opens two times if there are so many XSS payloads on that site.

realy exiting when you post a video,i hope someday you can teach how to investigate crypto scam with hacking skill like how they code or something else,thank you

I've been screaming punctuation at the screen: "CHTB\\{.*\\}" You kept escaping the asterisk. Probably just needed to double the backslashes when using normal strings.

Really awesome video! I'm just confused as to how the flag was decoded. And if we already had the coded version of it from /alien, then why did we need to fetch it through the terminal? Sorry if this is a stupid question.

Looking at the browser console would ve helped you debug the fetch regex problem. GG

Who the heck downvoted this only a few min in to the Premier?

this is great, thanks!

thanks for making the content. \o/

PS1 var in .bashrc could help to fix that long pathname problem.

Nice content as usual...

i dont want to be that guy but in 4:18 i think he is ironing a humam suit not a actual human

How to review code to find bugs

24:15 . 1 hr break lol

Push!

sheeeeeeeesh

Cool!

that was cool :)

Keep it up,

holly molly

How many times also spending master season 9 times also collection anyone 29 test collection master in the past for collecting 2 nc .lnc ......X collection master in the

i love you too

regex is some nightmare>

i hope if one day i will have skill like y have am very jealous

💋💖💖💕

LEARN node!

hey

i'm glad regex destroys you as much as me

Ther ck cash tp link 🖇️ password 🔑 confirmly flag 🚩

Swae Lee

I would love to get your help in bug bounty hunt Can you help me please..! By the way bro LoVe From Bangladesh🇧🇩🇧🇩

Sirr big fan ❤ I want ur guidence. Plzz help And also, luv from india 🇮🇳