Hackers can change your passwords with this exploit..

Рет қаралды 14,819

9 ай бұрын

Checkout AppMySite and convert your website to native mobile app in minutes!: www.appmysite.com/?ref=intern...
In this video, I demonstrate Host Header Injection and how hackers exploit this vulnerability to reset passwords of users on a website.
DISCLAIMER: This video is intended only for educational purposes. The concepts showcased in this video are completely from a penetration testing perspective. I do not promote or encourage any illegal hacking activities.
Host header injection vulnerability exists when a website takes the Host value from the request header and processes it in an operation like construction the password reset URL for a user. When this happens, the request is directed to the attacker's server instead of the actual web server of the website.
In this video, I showcased this vulnerability on a retired HackTheBox machine called Forgot.
Check out this machine here: www.hackthebox.com/machines/f...
Thanks for watching!
SUBSCRIBE for more videos!
Join my Discord: / discord
Follow me on Instagram: / teja.techraj
Website: techraj156.com
Blog: blog.techraj156.com

Пікірлер: 53

@prashantsingh6606 9 ай бұрын

Bro I really like your content, your content is very very good not like other trash channel, I suggest you to create a parallel channel where you can upload small reel on your content , probably in a year you will be famous among developer

@ashwinkannan4652 9 ай бұрын

Yes that's a very good opinion

@akashbhagwat3696 9 ай бұрын

Totally Dope Content in this channel. Recommended to all my friends. Great work. Keep going brother will support you !

@TechnicalHeavenSM 9 ай бұрын

Such a nicely and neatly explained video❤❤❤

@dotak9663 9 ай бұрын

hey teja from where i should start learning hacking any roadmap, you suggest to beginners

@hackerzone3292 9 ай бұрын

bro that was awesome.. I learnt this today after so long days.. please make such videos on bug bounty please

@ItsDoros 9 ай бұрын

Everything clearly explained❤

@SteveBClark 9 ай бұрын

Why you won't make a cybersecurity course

@PROFES50R 8 ай бұрын

Hey tech raj I recently watched your video relate to discord hack. I want to ask something if a hacker grabs your token can he get hack my other ids too or get my ip?

@jesusdacoast872 9 ай бұрын

Thank you so much

@getreadytotube 8 ай бұрын

Thanks! Wow!

@TechnoEveryday 7 ай бұрын

4:40 does gmail scans the URL on our Android phones?

@santaclaws1508 9 ай бұрын

very situational but interesting learn either way

@MohsinIftikhar-1 8 ай бұрын

Many people are connected to my wifi but i can't see their mobile name only mac address and ip address i can see ...can u tell me solution how can i see their mobile name

@Doxmilitary1 8 ай бұрын

Needs help how can l hack an aviator predictor game on sports bet please

@hackersandy7712 9 ай бұрын

Commenting just to boost the algorithm

@manjula_1 9 ай бұрын

I know this before, and i tried modifying host!, now i am using env for host

@1.1kSubChallengeWithoutAnyVid 9 ай бұрын

So in summary, we just put our ip address then wait for the reset token. Our priority is reset token.

@kurulusosman19024 9 ай бұрын

How to visit the website.

@M.V.A.SHORTS 6 ай бұрын

Sir how to terminal htb forgot kashi kare

@sanjaytheboss9938 8 ай бұрын

Broo someone Miss use my photos please help me to delete that photos please reply fast

@athul2532 9 ай бұрын

How to find these vulnerability in real websites

@user-lv7bz4nz1h 9 ай бұрын

How to visit website

@cyberdudegaming 9 ай бұрын

I have one old frnd his name is raja.. n3t attacker like this.. before 10years .. is it you ?

@aminsec 9 ай бұрын

damn bro this thing is scary

@_AayushKumar 9 ай бұрын

What is this vulnerability known as ? By the way very much informative videos and great presentation got to learn so much new things.👍❤

@SPOJerry 9 ай бұрын

host header injection vulnerability i believe

@samuel_craft57 9 ай бұрын

Does that work with Microsoft accounts too? Mine got hacked and the guy chaged my E-Mail

@samuel_craft57 9 ай бұрын

Well see about that lmao@@DDD9216A

@bhaikicoding1989 9 ай бұрын

plz tell me where i can learn linux that can help in cyber security?

@user-dc7cr3lj9h 9 ай бұрын

Deangelocrack

@user-dc7cr3lj9h 9 ай бұрын

She can assist you

@45.editss 9 ай бұрын

bro y r u not replying

@thilakreddy1904 9 ай бұрын

🔥

@dineshdevanaboina9443 9 ай бұрын

Big fan

@TheAKAnonymous 9 ай бұрын

nice👍👍🤟

@coolu 9 ай бұрын

does this mean i can get back my old xbox account and finally retrieve the memories that i thought were lost forever?

@coolu 9 ай бұрын

nevermind i just realized that this is about hacking websites or smth lol

@rajaconstantine 9 ай бұрын

Yes No Ok bye

@coolu 9 ай бұрын

brh i know i cant @@rajaconstantine

@News_0302 9 ай бұрын

Any one help me i have infinx phone hot8i i deleted my sms by mistake recovery possible please tell me

@user-dc7cr3lj9h 9 ай бұрын

Deangelocrack.

@user-dc7cr3lj9h 9 ай бұрын

She can help you

@News_0302 7 ай бұрын

@@Smithgeaoge yes i need help

@News_0302 7 ай бұрын

@@Smithgeaoge ok tell me how is this possible

@stevdodd7515 9 ай бұрын

😮

@user-cj7ie1lr9g 8 ай бұрын

What you do for living bro

@razalkp 9 ай бұрын

@technicalcreator3618 9 ай бұрын

@murisamajaliwa3405 Ай бұрын

Your contents are not beginner friendly for real

@quickkcare605 9 ай бұрын

Many you really are shadow banned