Yes 😀

Yes

Yeh. We are waityn

Yes and also process to reqch there

YES YESYESYES

Would you help show the installation of the bricks web app. I have installed it and tried to run it but I receive an error saying there is an error in line 9 in the config.php file.

Sus

@@rcsxuth8594 idc

@@JohnRobertPotter u were like : omg..>! i think im in love with you!

@@rcsxuth8594 yep

@@JohnRobertPotter nope sus still if u say idc then u sussy baka and if u try to cheat the system u gay af fr

@@900dm4n oh god, sure:)

there is an answer for your complain under your comment, lmao. " Thank you so much Loi! Your info is extremely valuable for beginners who are trying to make their websites slightly more secure. " It is not about hacking the system, but for teaching beginners to understand what technologies are used to hack, so we beginners can prevent them.

the thing to bring out is some sites developed by devs that didn’t aware it. and you were the customer of that site who inputted the cred info 😂

@@altayyerassyl3213 I understand your response now that you commented it 18 hours ago. I agree with you that this information is extremely valuable for beginners, and I actually did the full PortSwigger Labs course on SQL injection myself. However, my comment was written more than a year ago, and back then the video was called “How to scan and PWN any website”. It was NOT called “SQL injection for beginners”. Therefore, I excepted this video to be much more advanced and cover advanced topics applicable to modern times. You can see a lot of comments very similar to mine in that regard. I guess that’s why the author eventually renamed the video from click-bait crap to something useful.

@@kostiaperegudaplop just used sql injection to hit moveit and the US defense lmao, now it doesn’t look dumb does it 😊

@@strang7739 in general such vulnerabilities are discover by tools, not by people, moreover, specific vulnerabilities like injection vulnerabilities are discovered mostly using white-box analysis, which operates on the source code. It is very rare that black box analysis alone can discover such specific vulnerabilities. Therefore, most of the vulnerabilities are published by the software manufacturers themselves, together with updates fixing those vulnerabilities. However, the hacker gangs try to perform what is known as a zero-day exploit. They target users of the software, who has not updated immediately, and thus hack them using publicly known vulnerability. This is exactly what clop has done. Clop used publicly available exploit to hack into organizations who have not updated the software. 90% of security breaches are actually exploiting already known vulnerabilities and publicly available exploits of the older versions of the software and are happening because users are not updating their software to the newest version. P.s. that’s why you must never disable automatic Windows updates on your PC:)

Thats why we gotta hash passwords??

@@damegaye3051 No. You hash them because if the database is getting hacked, the hackers only got hashed pw instead of plaintext pws. You can crack them with the help of rainbowtables but it needs to be in there to do so.

Maybe I get you wrong but I think what you say isn't working. Instead of base64 them (which means they would decrypted and executed aswell) you should use something like "mysql_real_escape_string" and for security reasons and cleancode aswell you shul typehint them. So, if you are working with GET and POSTS from whereever (even in Cookies, which can be manipulated easily) you should do something like $myGetter = (int) $_GET['myGetter'];

@@timmytainment i cracked a hash some time ago, and the password was 1233abcd.. lol

Use prepared statement, hash and salt the password.

@@callimero2731 There is no need for teamwork lol. SQL injections are plain and simple, either via the list of SQL queries or centralized injection systems that sprout these attacks. This is not movies lol, when hackers work with each other and say: "I'm in!", hahaa. It is usually one perpetrator. Nowadays, due to many services offering DDOS protection, it is more likely to get hit by MTM (man in the middle attacks) that abuses the communication between two users by altering the message or stealing ID_key from either valid communicators and then communicate with 1 of them instead. Though true, DDOS attacks are **sometimes** performed in groups due to sheer overload needed to crash a desired service. Usually, perpetrators turn to bot networks or service injections that use foreign/unauthorized access to vast amounts of computers. Then, they use them to send the payload to the certain service's address. However, due to the filtering systems used nowadays by packet management systems in our devices...it is hardly possible to do anything decent without proxies.

@@Guide4Ever Thank you, it was just my opinion

@@callimero2731 who tf is using sqli for ddos?

u can extract data from website that us vulnerable to this exploit.

tryhackme and hack thebox u probally found it now

where do you live?

Exactly - this is like telling people to take advantage of an XP loophole when everyone isn't using XP. ANYONE making a website that doesn't use prepared statements, and input escaping basically shouldn't be doing it. Most people with little to no web skills will probably use an off the shelf CMS like Wordpress and that has all these entry points covered. They'd either do it themselves using that or go to an external design agency who will do it for them. There are so many off the shelf packages and "systems" (squarespace etc) now that having a modern website is so simple my 12 year old can do it. All those websites come out of the box with inbuilt protection against this sort of stuff so this video will only help you against a website that hasn't been updated in years, and is most likely not even relevant any more anyway. Appreciate the content but you should be focusing on the nature of these exploits and what people should be doing to defeat them.

In addition - a lot of "quality" web hosting providers include auto blocking of attempts to run sql injection so repeated attempts will fail (often the first time). I know of one that increases the ban time by a factor of 2 each time it detects such an attack starting at 2 mins for the first attempt. 15 attempts in and you have to wait over 540 hours before the webserver will even speak to your machine to announce it's accepting your connection, let alone run any kind of input for you...

@@andyjackson3663 do you know some of the more effective attacks being used today like xss or something else ?

It's still plenty common in websites up today, even ones that are brand new.

Still part of the ethical hacker courses, so still relevant. Be thankful people take their time to produce such content instead of trying to be a clever shyte.

Devs are gods in earth

Yeah, now all modern languages have build-in escaping or ORMs. This vulnerability dead from ~2007.

@@AngelVlad100 super agree

@@AngelVlad100 haha lol ...sql injection is still no 3

@@PastEventsTV I know, but I didn't see any actual public website with such vulnerability for the last 10 years.

Don’t fool anyone, you’re going to become a hacker!

@@Hephasto no harm on that , how are we gonn improve our security if there is no one to hack it 😜😜

@@hamzajon8823 if there was no hackers there would be no need to secure anything, does it make sense?

@@Hephasto and so millions of jobs would be gone

Next to the subscribe button, there is a join button. You have to pay for it

Wat do u mean. Hope u dont mean that, Thats a virus!!!

@@francesgisondi7216 Hope I don't mean what?

It should be titled "**some old websites".

exactly what I was thinking. 95-98% of websites I have seen do not display SQL back to the user on the bottom or in the browser console. there have been some exceptions, this is why it's not 100% but to cover just that case only in a video is a weak idea. so the examples are not realistic. for learning it's ok but for a realistic example, it's not even close to how the real world works 🤷‍♂️

@@stevema2 You can still encounter some real world applications that suffer from sqli. If the devs are lazy and do not use input validation or/and prepared statements, you may end with an sqli. You don't have to get an obvious sql syntax error to exploit it, some times ou may get a 500 internal error that may be indicative of an sqli. Still, devs are more aware of these issues these days, they use also frameworks that embeds already sqli protection routines. that's why saying "Any website" is misleading good sir Loi Liang Yang

@@tojogamer1733 totally with you. you and I are saying the same thing different ways, just that I haven't seen many web apps where I see a SQL statement being written back to the browser console or in an HTML div. That was my point. There are exceptions but it's not as common which is not "Any website" 😉

@@DirePantsDim there are some new websites who still suffer from sqli

Hi, I need good databases about Spain for a project. I also want to join a good group of harckers to buy tools. THANKS

Ye chaca idhar bhi☹️☹️☹️☹️

that is what a hacker would call an "air gapped pc" they use similar security measures for highly protected data 1 authorised specialist at a time only transferring data using usb etc only way into a system like that is maybe bribe the computer specialist that has access to insert a usb download the data onto it get it back and open it when you get back to your pc :)

what programming languages did u use to make the game ? and are u self taught ? or went to school to learn? if so what online free resources did u use to learn all that. Thanks :)

@@slicker1260 Nobody have the same route towards being a good developer, I tell u what try youtube, coursera, udemy, udacity and just see what suits you, also learn and APPLY don't just learn.

​@@ahmedbahaj8786 the learn and apply part is some of the best advice you couldve offered, i took a programming class back in the day, and after i was done with the class i didnt really do anything with the knowledge i gained, so i forgot a decent amount of what i was taught. had to go to another programming course to make sure i was job ready haha.

Online manual is a good place to start

Study CSS, C+ and java

as a beginner everyone will tell you do this do that ! ... but man you have to figure it out by yourself whether you google or watch you tube videos

@Jonathan Dahan The part of your statement "without needing to know what's going on behind the scenes" is the part I am concerned with. I will also add if everything is so secure why the need for PEN testing in the first place? I get the fact that majority of the vulnerability's are cause by the end user. You would think people who head up IT security would be more aware of the simple stuff.

@Jonathan Dahan It would be safe to say then that pen-testers will always be needed to some extend in the industry for the foreseeable future? As with everything computer related I just state don't download anything from an unknown source. Keep software up to date and use anti virus. And the biggest one I constantly say back up your data!

It doesn't matter whether it's a 1 or a 2, it's a character or a number. Here what we're trying to achieve is getting a query whose where clause WILL always be true if there is a username called tom. So it's not that you HAVE TO type '1'='1' or '1=1-- or whatever. You can just type something that is definitely true like '2''69'. Of course that will be true because 2 is different than 69. I hope you have covered that. Because that's the essential part. About your question whether '1'='1' is any different than '1=1--. Well, it IS indeed different but it's not a correct question to ask. It's more meaningful if you asked why '1=1-- is true. Or why it also works. It works because if you know about querying data using sql, you will know that -- is a special mark that lets the database engine know that it should ignore everything from that mark to the end of the line. In programming, we call it "commenting" For example, select * from users where username = 'tom' -- Trying to get a user whose username is tom In the above example, the "-- Trying to get a user whose username is tom" is just a comment part, a note part that the developer writes down to make it clear what's he trying to do so other developers understand the query when they read it for example. In any case, the computer will just ignore that whole part. So, the other course that you were learning might be attempting something that looks like: select * from users where username = 'tom' or 1 = 1-- It will result in the same result as the one in this video. A small technical detail that you might be interested in is that the number 1 in this case is a number because it isn't surrounded by single quotes. Whereas the number 1 in this video is a text, because it is surrounded in single quotes. But it doesn't matter in the scope of this dicussion. On a side note, that -- part isn't even needed if you have understood what I've told you so far. Sorry for my bad English by the way.

@@daophilac1 thankyou for your reply. Yes I understand 1=1 or 3=3 but it was the two dashes I was unsure of but you have explained it. Thankyou

Depends how you define that. You cannot modify the query. But you can still inject shit into the database, that should not be there and that might be evaluated later. Javascript for example.

It appears because it firstly appears in your mind

I think he already made a video. But you could start with hackthebox or tryhackme if you want to look if its the right thing for you

You need to target the input field where it is vulnerable. It is vulnerable when the website is giving a response which is different from an expected input.

​ @Loi Liang Yang Thank you, I try better, still could not manage thou. I wanted ask there is other membership, what's content difference in between Cybersecurity course and fullcybersecurity?