No video
JSON Web Token (JWT) Exploit with SQL Injection | CTF Walkthrough
Рет қаралды 5,486
Күн бұрынIn this video walk-through, we covered exploiting vulnerable implementation of JWT tokens encryption along with SQL injection as part of HTB under construction under the beginner track.
**********
Receive Cyber Security Field Notes and Special Training Videos
/ @motasemhamdan
*******
Instagram
/ dev.stuxnet
Twitter
/ manmotasem
Facebook
/ motasemhamdantty
LinkedIn
[1]: / motasem-hamdan-7673289b
[2]: / motasem-eldad-ha-bb424...
Website
www.motasem-no...
Patreon
www.patreon.co...
Backup channel
/ @themastermindclips
My Movie channel:
/ @certificates-reviews
******
@RearAdmiralNashiba 5 ай бұрын
Having tried a number of walkthroughs for this challenge, this was the only one to render the steps clear and straightforward. Subscription earned.
@MotasemHamdan 5 ай бұрын
Thanks !
@blackthorne-rose 11 ай бұрын
Yours was the only walkthrough or writeup i could find that wasn't a virtual minefield of incomplete or incorrect procedures and misleading statements. Kudos! I'll be checking out your channel to keep learning!
@Muh4nn4D 2 жыл бұрын
محتواك رهييب استفد كثير منك شكرا لك
@mkowalski997 2 жыл бұрын
Great explained, thank you for the lesson.
@JohnSmith-wz7he Жыл бұрын
Brilliant Work! thank you very much
@herllo2u2 Ай бұрын
You can print the public key in python and it will convert the into new lines for you.
@tylertbone9 2 жыл бұрын
15:34 "what the shit man" I felt that
@MotasemHamdan 2 жыл бұрын
:)
@aMODiEswede Жыл бұрын
LOL
@ismailarame3756 2 жыл бұрын
nadi canadi
@SuperMercadier Жыл бұрын
Hey Motasem Hamdan I'm get 500 error with generated token. Other users have same problem. I don't understand what I did wrong... 😕
@johnnyromein3917 2 жыл бұрын
I have tried to replicate and keep getting a 500 error as soon as i use a generated token. o\ thx for showing that it can work though.
@anthonyn189 2 жыл бұрын
I was having the same issue. My problem was forgetting to add the query terminator "--" at the end of the query before converting it to a token.
@SuperMercadier Жыл бұрын
I'm still having problems with this. Did you find out how to solve it?
@SuperMercadier Жыл бұрын
@@anthonyn189 Where do I put this "--" exactly?
@ffenixx Жыл бұрын
@@SuperMercadier the key must end with -----END PUBLIC KEY----- and check if you have another empty line after this line. Linux sometimes wants a blank line at the end of a file/command
@infosec1065 Жыл бұрын
@@ffenixx yep that worked for me
@user-fn4dt9sk7s 2 жыл бұрын
awesome video!, keep it up
Фани Хани
Рет қаралды 2,8 МЛН
GopherConAU
Рет қаралды 715