Рет қаралды 1,596
In this video we are going to try and hack an insecure online shop. This shop is called juice shop and is demonstrating well known security flaws. It is an open source project by OWASP.
With your own juice shop, you can safely try to overcome and understand security risks specific categories. The shop provides a wide variety of different challenges.
Check out the OWASP Top Ten: owasp.org/www-project-top-ten/
Disclaimer: The video is not about hacking online shops, it is about learning why some security flaws exist, and where you can get resources and knowledge to prevent these errors from appearing in your own applications. Sorry for that :-)
Follow me along on my walkthrough! After that you are ready to go and try it out for yourself.
owasp.org/www-project-juice-s...
github.com/juice-shop/juice-shop
🔔 Stay Connected:
Subscribe to my channel for more insightful tech tutorials and hands-on guides.
🔗 My links:
Github: github.com/marcogreiveldinger
Website: marco-greiveldinger.de
Tech with Marco: techwithmarco.com
*Get 200$ worth of credits in the Digital Ocean Cloud: link.techwithmarco.com/digita... (*)
Support me at Patreon: / techwithmarco
00:00 - 01:12 Introduction
01:13 - 03:29 Get up and running
01:53 - 05:22 Score-board
05:23 - 07:17 Walking the happy path
07:18 - 09:44 XSS - cross site scripting
9:45 - 11:22 Next challenge - valuable information
11:23 - 14:13 SQL injection - admin access
14:14 - 15:01 Next challenge - directory browsing
15:02 - 16:05 Error logging with software version
16:06 - 17:54 Backend validation
17:55 - 18:26 Outro
#hacker #owasp #websecurity #cybersecurity #security #learning
Music from #Uppbeat (free for Creators!):
uppbeat.io/t/aavirall/cosmic-...
License code: HOPL3KFBHBLFLKYS