No video
Hack JWTs with Burp Suite | Web Security Academy
Рет қаралды 689
Күн бұрынIn this video, I talk about JSON Web Tokens (JWTs) and I solve the first JWT Attack lab in the Portswigger Web Security Academy. Let me know if you want me to do another video on JWT Attacks and solve one of the more complicated lab.
Check out the lab here: portswigger.net/web-security/...
Check out my blog here:
corsecure.blog
@amyt5031 11 ай бұрын
So helpful! Thanks for the information
@cedricflutter311 11 ай бұрын
Please more vids you are great
@CorSecure 11 ай бұрын
working on it! :)
@valona4432 5 ай бұрын
Your good bro make more videos like this please dont chamge the format becose the videos are clearly and can be understood easily
@whatsup5442 Жыл бұрын
Yo bro, do you any idea how I can decrypt SPI token? I really need help with this.
@technoindia786 Жыл бұрын
ssl unpinning frida is work run time process How to set ssl unpinning permanently in apk ? frida ssl unpin can be made permanent in apk So that he doesn't have to do Frida's again to again and without root also gets ssl bypassed.
@CorSecure Жыл бұрын
The best way I know how to do this would be to patch the apk with Objection. You will still need to run Objection every time to bypass SSL pinning, but you won't have to hook the binary with Frida because the Frida gadget will already be built into the binary. I have a video on my channel showing how to do this: kzbin.info/www/bejne/p5Ktc4qZqsp2f6M I don't know of a way to permanently bypass SSL pinning without heavily editing the source code of the apk to remove the pinning mechanism entirely, which would require some pretty extensive reverse engineering.
David Bombal
Рет қаралды 154 М.
Pink Boo
Рет қаралды 267