Takeaway: don’t upload your evil incriminating journal to your company’s public web server

Not bad! Just next time put a disclaimer at the start of the video saying that it is a actual CTF challenge Might help people who aren't knowledgeful into CTF's or platforms like root-me to get to know them!

What's really disturbing is that there actually might actually be a real reasearch company that does questionable testing like this on people somewhere out there, it's good they have these simulation websites to test your hacking and programming skills.

Always love the little lore tidbits ctf makers include in their challenges

You sure you haven't hacked accidentally the source code of Fallout 5? That sounds like some Vault-Tec horror story... 😂

The real question is how does he know its evil?

I wish they did this as security lesson on my uni. just one day of doing this just to get a feel for it and learn how to protect against these attacks

I think "might go to jail" is more accurate. It's not a guarantee; people do get away with it sometimes.

I love how you fool people's while playing ctf & adding *STORY* to it like cherry on cake

People seem to click before they read, so moving "CTF" closer to the front (or shortening the title in general, or putting it in the thumbnail) may help with the clickbait accusations. It may also be getting cut off in some places ( i don't know though )

This directory traversal, to log poisoning, to RCE revshell is very well presented. Also, there are clearly some really interesting command aliases used in this video. If we ask nicely, could we see a few that you have? I noticed "nmapq" and "revshell" in the video.

wow rly didint think it would be so easy to hack a website that has close to none security implementations. scary

very nice little easy ctf. I think I'ma go back into doing them, you've inspired me

I don't understand a second of this but respect that you share it.

Bro made this video like im watching a horror movie and i absolutely love it!! \

This series is awesome keep up

The FBI is definitely watching us

I love these videos, please keep making these!

Man, this hacking looks so difficult. I want to learn like you 😭😭

I had a friend working in I.T. at a college in Wales and we were talking on the phone. I asked if he thought his system was secure and of course, he's talking shit. So while we were talking I was hacking their website in real time and then email'd him the contents of one of the server's logs. :evil laugh:

Damn, this sounds like something straight out of Resident Evil.

great video. I would fully prepare for youtube to take it down though. So please let us know about any community resources you host :) subscribed!

Very instructive, as always. Thanx hackerish! ❤

love your videos! hope you get more traction soon because your channel is very underrated :)

Very nice. Please make a video with java/nodejs website

amazing act m8 ... really good and very educational

I keep on learning stuff, thanks

Btw Your CTF was Great I learned A lotcz I used same payload on HTB clicker machine but I faile now I know what to do

Oh my. This is definitely scary. I can't believe there are company hidden in the world would do this. As a professional website clicker, I can tell you, this is definitely and totally not a dummy site. Very scary indeed.

That journal at the end looked like an SCP

You had me there for 11 min and 15 seconds 😉😉

Excellent work!! Thanks for sharing.

i'm so damn confused. enchantment table is something i never learned.

The etc/sudoers file properly set up would have prevented the escalation to root right?

Finally! Log poisoning 😁

i robbed a bank and stole 2M$ for educational purposes 🤣

Sounds like chaos insurgency hacker hacking into one of scp foundations websites. Welcome to the splinter group, cyber security dude. 😂😂😂

Clickbait Successful. 😂

I know someone who hacked into a rape ring. He got more prison time than the rapists.

very entertaining!

so there was no ssl key, so what was the use of the private key ? , then why post stuff on a webserver, i don't understand the security of this site

What program are you using at the digging part?

Hii sir please please give a fuxsocy details video

Thank you , but if the website outside you Lan network , you do the same ?

Good job

what app you use to digging in? some kinda postman but it's not postman. what was that?

This is just a ctf.. why are you making it sound as if this is a real site in the title?

what proxy inspector dashboard is that?

How do hack website that is doing illegal activity also the users doing illegal activity

What is the rpogram hat you use in this video?

🔵 The Hackerish is the best 👏

Not understand fully but I enjoy every time. With seen of earning. But I not understand every time. What is money. Why people always money only. Why they do not work for reality. Why they don't need simple ways. Why people going in trouble trouble and troublings..... 🎉 Enjoy your money. But Please take care yourself and poors. You you all. ALLAH BLESS US AAMEEN ❤

Disclaimer: Never put click bait such as video without permission from your viewers otherwise you might go actually you will be banned and forgotten

can you hack a scammer website who take money from people's by fraud .. reply if you can i will share you link.

Brother i am in huge trouble i need your help plz help me

Which operation system are you using bro please reply

sick project

what happen if someone go to the url of the website

what's the name of the tool to fetch data (with GET etc...) ?

what are the names of those windows he's using to execute code?

what is nmapq?

1st yr 😌

I am root

Delightful. 🎩 ☕🗿

Sir good day to you l was watching your videos but l should like to ask about a certain app which l don't know if it's real or fake app

when you put educational purposes at the end of the law the just ignore what your doing.

Dyaumn man !

so you can basicaly install a virus and run it using this to destroy the server?

twist: he hacked a evil site, create but remove security, then do a educational vid on it. (Joke btw)

5:40 wait… what did he do here?

i dnot get it

can u do it on a virtual box?

Spooky story

why are you recording in 2 fps

0:13 then why are you doing it 💀

Is this genuine data of them... or you just crafted iy yourself, i mean the experiment sounds russian

How do you know what you know ..

is the life expectancy gonna be Pay To Win? i prefer Free To Play

Beautiful lab 😂 I love it

Pro tip: this vid smacks in 1.25x speed

Hey 👋 I want to talk with you in private conversation

this stuff is years old.....

You have your own ip 😔

who tf encode experiment logs in a flag.png file?! ridiculous, unrealistic

I believe you already hacked it, then repeated the steps again while recording. I mean, in this type of thing its how to make good content. well done

naay kahibaw mu hack dri cebu? willing to pay

PLEASE TELL ME THIS IS SATIRE

LOLL IM STUPJD IDK ANYTHING ABOUT CODE AND I WAS LIKE ILL WATCH GHIS IT LOOKS COOL I THOUGHT IT WAS REAL AND THEN THE REVEAL STARTED AND I WAS LIKE 💔💔💔

5:23 is that your IP?

hello fbi watchlist!

hi

omething has gone wron

Fake

And don't be evil again okay😊

can you hack discord servers and give everyone free Nitro ? (for educational purposes of course)

Ngl a link name like that already screams scam lol

Discalimer

hahahaha

Lmao just hack any website and say its for “educational purposes“ problem solved

bruh