Many things were learned today from Javascript & XSS to video-editing, thanks John!

This video series got me to finally start learning pentesting - I always perceived it as something arcane and intimidating, but seeing how you struggle with node got me thinking that there is no shame in sucking at stuff.

good to see that a security professional with 10 plus years can still struggle getting up the hill, so to speak. Gives guys that are learning motivation to keep going

Thank you! I'm actually starting to get this stuff! Appreciate that you show how hard this stuff is and how much patience is required.

I just like how you talk with your self and make actions :D it helps a lot : ) thanks for your videos, keep them ON.

Let’s give a moment of appreciation for the amazing walkthrough. Thanks John.

38:08 is starting of the dulpicate of previous content till 51:58. hope you can fix it! But great job!!!! John Thanks a lot for suffering for us non-javascript fanboys.

watching john work is like watching myself hack. I would've however given up, the live learning, googling and also building of payloads gives your channel an authentic human touch. as opposed to all other channels just regurgitating payloads from writeups. kudos

another video and another day of learning for me, thanks again John for all your hard work. Kudos to you for doing all this for us and still doing a day job and "life"!

I like your approach...it's is similar to a software engineer daily job...read, understand, try, fail repeat and so on...

Just found your channel and really loving your content

Hey, seems like the video is duplicated from 38:08. Love from India ❤️.

I love the videos where there is 5 minutes left and he's still pulling his hair out. Just knowing he's about to find the one little mistake borking it up.

Like last year when I subed to you, you had like 80k followers. Keep going bro!

This is amazing. We learn new things everyday!!!!!!! CSP, fetch

An Ide or setting Sublime for the context you're languaging on would help. Would make the inevitable formatting errors stand out

I understood very little of that but it was great to see you get the flag in the end.

Using an editor like vim with bracket highlighting would prevent painful mistakes like this. Brutal! Good video tho.

I pace around my room when John releases content..

ngl !! lowkey better than netflix rn

Yes, I had fun! Another great video that made my day

my eyes struggled to watch John struggle through the JS

I always learn a lot from you , thanks!

I am no JS expert, but in my experience JS is good at breaking itself and proceeding lines of code. I kept thinking you should just look at the browser console, or even even just copy paste known working attack to confirm nothing is borked. Not sure if this would have worked (ive only played with node with one small app), tho the way I would have approached getting the final data: Either sending it all to the console, or injecting it all into an element in the list page, or perhaps the easiest is just alert the data with something like match('CHTB.{50}') .

This has been me trying to wrap my head around 'self' the past few days in Python lol

I've been screaming punctuation at the screen: "CHTB\\{.*\\}" You kept escaping the asterisk. Probably just needed to double the backslashes when using normal strings.

Waiting for the video ❤️

this is great, thanks!

Really awesome video! I'm just confused as to how the flag was decoded. And if we already had the coded version of it from /alien, then why did we need to fetch it through the terminal? Sorry if this is a stupid question.

Looking at the browser console would ve helped you debug the fetch regex problem. GG

realy exiting when you post a video,i hope someday you can teach how to investigate crypto scam with hacking skill like how they code or something else,thank you

Push!

holly molly

Nice content as usual...

I dont't really understand why the javascript alert popup only opens two times if there are so many XSS payloads on that site.

Cool!

PS1 var in .bashrc could help to fix that long pathname problem.

sheeeeeeeesh

thanks for making the content. \o/

Who the heck downvoted this only a few min in to the Premier?

that was cool :)

i love you too

regex is some nightmare>

Keep it up,

24:15 . 1 hr break lol

i hope if one day i will have skill like y have am very jealous

How to review code to find bugs

i dont want to be that guy but in 4:18 i think he is ironing a humam suit not a actual human

How many times also spending master season 9 times also collection anyone 29 test collection master in the past for collecting 2 nc .lnc ......X collection master in the

LEARN node!

hey

💋💖💖💕

Swae Lee

i'm glad regex destroys you as much as me

I would love to get your help in bug bounty hunt Can you help me please..! By the way bro LoVe From Bangladesh🇧🇩🇧🇩

Ther ck cash tp link 🖇️ password 🔑 confirmly flag 🚩

Sirr big fan ❤ I want ur guidence. Plzz help And also, luv from india 🇮🇳