JSON Web Token (JWT) Exploit with SQL Injection | CTF Walkthrough

  Рет қаралды 5,793

Motasem Hamdan | Cyber Security & Tech

Motasem Hamdan | Cyber Security & Tech

Күн бұрын

Пікірлер
@blackthorne-rose
@blackthorne-rose Жыл бұрын
Yours was the only walkthrough or writeup i could find that wasn't a virtual minefield of incomplete or incorrect procedures and misleading statements. Kudos! I'll be checking out your channel to keep learning!
@RearAdmiralNashiba
@RearAdmiralNashiba 9 ай бұрын
Having tried a number of walkthroughs for this challenge, this was the only one to render the steps clear and straightforward. Subscription earned.
@MotasemHamdan
@MotasemHamdan 9 ай бұрын
Thanks !
@herllo2u2
@herllo2u2 5 ай бұрын
You can print the public key in python and it will convert the into new lines for you.
@JohnSmith-wz7he
@JohnSmith-wz7he Жыл бұрын
Brilliant Work! thank you very much
@mkowalski997
@mkowalski997 2 жыл бұрын
Great explained, thank you for the lesson.
@Muh4nn4D
@Muh4nn4D 2 жыл бұрын
محتواك رهييب استفد كثير منك شكرا لك
@SuperMercadier
@SuperMercadier 2 жыл бұрын
Hey Motasem Hamdan I'm get 500 error with generated token. Other users have same problem. I don't understand what I did wrong... 😕
@tylertbone9
@tylertbone9 2 жыл бұрын
15:34 "what the shit man" I felt that
@MotasemHamdan
@MotasemHamdan 2 жыл бұрын
:)
@aMODiEswede
@aMODiEswede 2 жыл бұрын
LOL
@ismailarame3756
@ismailarame3756 2 жыл бұрын
nadi canadi
@johnnyromein3917
@johnnyromein3917 2 жыл бұрын
I have tried to replicate and keep getting a 500 error as soon as i use a generated token. o\ thx for showing that it can work though.
@anthonyn189
@anthonyn189 2 жыл бұрын
I was having the same issue. My problem was forgetting to add the query terminator "--" at the end of the query before converting it to a token.
@SuperMercadier
@SuperMercadier 2 жыл бұрын
I'm still having problems with this. Did you find out how to solve it?
@SuperMercadier
@SuperMercadier 2 жыл бұрын
@@anthonyn189 Where do I put this "--" exactly?
@ffenixx
@ffenixx 2 жыл бұрын
@@SuperMercadier the key must end with -----END PUBLIC KEY----- and check if you have another empty line after this line. Linux sometimes wants a blank line at the end of a file/command
@infosec1065
@infosec1065 Жыл бұрын
@@ffenixx yep that worked for me
@אורגוזלן-י3ב
@אורגוזלן-י3ב 2 жыл бұрын
awesome video!, keep it up
Windows Privilege Escalation With Juicy Potato | CTF Walkthrough
31:46
Windows Privilege Escalation With Juicy Potato | CTF Walkthrough
Motasem Hamdan | Cyber Security & Tech
Рет қаралды 5 М.
JSON Web Keys (JWK & JWT) - "Emergency" - HackTheBox Business CTF
29:09
JSON Web Keys (JWK & JWT) - "Emergency" - HackTheBox Business CTF
John Hammond
Рет қаралды 69 М.
Little Coco was manipulated, and the kind-hearted Harley Quinn saved everyone #Joker #HarleyQuinn
00:57
Little Coco was manipulated, and the kind-hearted Harley Quinn saved everyone #Joker #HarleyQuinn
超人夫妇
Рет қаралды 60 МЛН
She made herself an ear of corn from his marmalade candies🌽🌽🌽
00:38
She made herself an ear of corn from his marmalade candies🌽🌽🌽
Valja & Maxim Family
Рет қаралды 18 МЛН
Сестра обхитрила!
00:17
Сестра обхитрила!
Victoria Portfolio
Рет қаралды 958 М.
СКАНДАЛЬНЫЙ бой Али, когда в ринге ему противостояли сразу ДВОЕ #shorts
01:12
СКАНДАЛЬНЫЙ бой Али, когда в ринге ему противостояли сразу ДВОЕ #shorts
BalcevMMA_BOXING
Рет қаралды 1,2 МЛН
Attacking JWT - Header Injections
18:28
Attacking JWT - Header Injections
The Cyber Mentor
Рет қаралды 14 М.
This image Can Hack You (The .webp Exploit)
5:38
This image Can Hack You (The .webp Exploit)
Seytonic
Рет қаралды 219 М.
Taking over a website with JWT Tokens!
14:27
Taking over a website with JWT Tokens!
Tech Raj
Рет қаралды 62 М.
Hack JWT using JSON Web Tokens Attacker BurpSuite extensions
17:23
Hack JWT using JSON Web Tokens Attacker BurpSuite extensions
thehackerish
Рет қаралды 46 М.
.NET 8 Authentication with Identity in a Web API with Bearer Tokens & Cookies 🔒
20:25
.NET 8 Authentication with Identity in a Web API with Bearer Tokens & Cookies 🔒
Patrick God
Рет қаралды 152 М.
FastAPI Authentication with JWT (JSON Web Tokens)
56:18
FastAPI Authentication with JWT (JSON Web Tokens)
Bek Brace
Рет қаралды 101 М.
APIs and JWT Hacking! -- [HackTheBox LIVE]
1:32:47
APIs and JWT Hacking! -- [HackTheBox LIVE]
Tyler Ramsbey || Hack Smarter
Рет қаралды 4,2 М.
catch EVERY reverse shell while hacking! (VILLAIN)
19:03
catch EVERY reverse shell while hacking! (VILLAIN)
John Hammond
Рет қаралды 225 М.
Hacker Tools - JWT_Tool
6:37
Hacker Tools - JWT_Tool
Intigriti
Рет қаралды 10 М.
Cracking JSON Web Tokens
14:34
Cracking JSON Web Tokens
The Cyber Mentor
Рет қаралды 60 М.
Little Coco was manipulated, and the kind-hearted Harley Quinn saved everyone #Joker #HarleyQuinn
00:57
Little Coco was manipulated, and the kind-hearted Harley Quinn saved everyone #Joker #HarleyQuinn
超人夫妇
Рет қаралды 60 МЛН