Server-Side Template Injections Explained
ฝัง
- เผยแพร่เมื่อ 26 พ.ย. 2020
- #SSTI #WebSecurity
This video explores the world of Server-Side Template Injections (SSTI), primarily we'll look at Python with Flask framework as an example, but the core ideas explained in the video is applicable to wide set of Languages and Frameworks.
Original Research: portswigger.net/research/serv...
🐤 Twitter: / pwnfunction
🎵 Track: Warriyo - Mortals (feat. Laura Brehm)
NCS link: • Warriyo - Mortals (fea...
![แม่กลองสองใจ - ซีแกรม โตเกียว มิวสิค [ OFFICIAL MUSIC VIDEO ]](http://i.ytimg.com/vi/GSQfVjcr_f4/mqdefault.jpg)
![อาจารย์ยอด : พระเตะผี [ผี]](http://i.ytimg.com/vi/zusDOIFasaE/mqdefault.jpg)
Love the Mr. Robot reference
I missed you so much, you are such a inspiration for me continuing researching and learning hacking stuff
Long time no see :]
Dude I love your videos!
I am a Software Engineer and you videos gave me an easy first look into some security topics
glad to see you back after a while..be continue as soon as you can
Crazy! Great content and loved the background music XD
you are now my new fav channel for when I go back to the basics you make it so much more fun!
Great content! Been waiting for another video for a while now, but it's finally here! :D
This is so far, one of my favorite internet videos. Amazing to this channel popped up on my TH-cam feed. Thanks for sharing, brilliant video!
Solid video, never thought of making function calls from within templates. You explained it well, and the drawing make it super easy to follow along! Keep it going man
So glad to see you are back!!! Missed your videos!
I've watched a handful of videos on this channel so far and the majority of them were new methods of hacking I was completely unaware of! great job!
the quality of these videos are just excellent, lots of love dude, keep posting more like these :)
literally this is the best channel in TH-cam
This was eyeopening. Well done. Subbed.
This is so well done. Great videos on your channel.
Top notch presentation! 👌
Keep up the great work man!
great work!! short and sweet, keep it going please!
Seen something very useful after months... Thanks man
Love your videos man!
Thank you. I have been struggling to get my head around this 1 for days
Please Make Alot Of Videos! I love learning things like this! 🤩
Thanks a LOT for that python knowledge! I'm stuck on a python CTF challenge for a long time, and now i made a huge step. Still not done but now I have acces to sys, not to os.
Dude this is cool. Really well explained
you give off a kind of LiveOverflow vibe and i love it
I like you attitude,your accent and voice and also the content you deliver keep making such things for us thank you
Such an awesome explaination. Thanks man
glad to see you back
Great explaination with great art works
I work with flask professionally I never did this error but this is good to keep in mind thank you
Simple and Solid Explanation ❤
Very interesting video. Also perfect length!
That was an amazing video! Thank you.
wonderful video mate ... explained very well
Very Educational video
keep it up
The king is back
Nice of you to play my all time favorite song ever in the background
this video is awesome thanks!
Your videos are amazing and hilarious! Keep it up! :)
Loved it!!! Great video!
Lov ur all topics 😍😎😎
Missed you
The return of the king!
Nice video dude keep up
Thanks for sharing this, it's very insightful! Looks like it's time for me to review my code lol
Great teaching, expecting more... From u
like the way you explained and this theme for displaying code
The legend is back
Bril jus bril bro! ❤️
Love you so much, thanks do great video's :D
Can this be bypassed by exec(compile(“import os; os.system(‘id’)”))
Thanx alot for the awsome videos brother.
Great explanation...you are amazing...
0:37 I like the Mr. Robot names you used in there
That was amazing
And im not even a Python coder
Lesson: sanitize user input.
Golden contents!
Very useful thank you for this
Your video is so awesome
man please dont stop ur videos please
thanks bro for that video!
I made it! Thanks.
DAAAAD WHERE HAVE YOU BEEN I MISSED YOU
Those tweets on the example website are too funny
Well made video!
Thanks ❤️
0:33 nice reference
hes backkkkk!!!!!11!!!!!11!1!
I like your videos.
keep it up :)
Such a great video in very low audio humiliate the home theater`s full vol sound.
You're back!😄
Awesome Content 🔥
Damn. This is so cool!
Welcome Back !
The math teacher I’ve always wanted
Love the Mr. Robot references.
Missed you !
LMAO Surprise!!! Way To Good 👍 Keep The Videos Coming 😉
Nice 👍
thank you
Thank you🥺
Your intro music is cool
I think this would be good to watch after the entire Log4J part :P
Greeeeeat 🎉
I love you man
Miss you loads :( Catch up soon
Amazing 😉
0:36 i like the Mr Robot allusions
New video yaaayyy
you did it
owkay okway i'll say it
you are super of supers broo 😮😮😮
7*7=SSTI 😅
Another great video
love it
I love those Mr Robot references 🤣
LOL I FLINCHED WHEN HE SAID "SUPRISE MOTHER FU". pls keep teaching
boy o boi , i got so many bugs in live applications after learning basics from here
In germany 7*7 is 'feiner sand' (fine sand) cause 7 sounds like the verb to sieve
my favorite hacking youtuber. ez
Immediately press like button before watching...
5:26 This is why I subsribed :D