Server-Side Request Forgery (SSRF) Explained And Demonstrated
ฝัง
- เผยแพร่เมื่อ 4 ต.ค. 2024
- // Membership //
Want to learn all about cyber-security and become an ethical hacker? Join this channel now to gain access into exclusive ethical hacking videos by clicking this link: / @loiliangyang
// Courses //
Full Ethical Hacking Course: www.udemy.com/...
Full Web Ethical Hacking Course: www.udemy.com/...
Full Mobile Hacking Course: www.udemy.com/...
// Books //
Kali Linux Hacking: amzn.to/3IUXaJv
Linux Basics for Hackers: amzn.to/3EzRPV6
The Ultimate Kali Linux Book: amzn.to/3m7cutD
// Social Links //
Website: www.loiliangya...
Facebook: / loiliangyang
Instagram: / loiliangyang
LinkedIn: / loiliangyang
// Disclaimer //
Hacking without permission is illegal. This channel is strictly educational for learning about cyber-security in the areas of ethical hacking and penetration testing so that we can protect ourselves against the real hackers.
You rocked the SSRF
YOUR LESSON ROCKS!!! shout out from Indonesia 🙏🏼
minta no WA lu dunk bro...biar bisa sharing
@@bigdatax6512 sorry baru balas bro, baru read lg gue
Till now I thought this can be done only in terminal & burpsuite. learned something new thx
I created notes of this video and it fits exactly on 1 A4 piece of paper and clear thanks for the explanation Yang
Great info as usual, thank you from 🇩🇿
Wtsab bro
Thanks Teacher Loi liang for the great tutorial🍷
Thank you Loi Liang Yang for this wonderful tutorial!
This man is seriously the goat
The first words you spoke was for CSRF not for SSRF
But he literally said it's for csrf. So what are you yapping on about bro
Sir you are really a Pro Hacker...
Pls also teach
Rce, LFI, Blind Sql and Xss also Admin based Vulnerabilities!
I've taught some on these especially XSS as that's where my specialities are.
@@0SPwn good videos i will. Definitely check them in Morning
Now its 2am Good Night
@@0SPwn Also pls upload RCE if you know it would help a lot
@@oo7posam581 RCE occurs in many ways from file uploads, CSV Injection, vulnerable services that are vulnerable to RCE found previously, via insecure Web sockets in rare cases.
@@0SPwn I know theoretically.. Deserialization, File Upload
All respect for you 🙏
All respect for you
ThankYou Sir.
Nice video bro 👍👍
Good video, but its a vulnerable web and easy to exploit. show it on a real world website, which have the high security.
you are the best thanks.
Sir can you say what we can do for this PAHD attack, kindly please help us Sir.
Spotted Orange Tsai!
Where did you get the web goat for testing that. Shout out me I'm from Philippines
Thank you keep going
Greetz from indonesia sir
.
xrelax Security team
great you are the best
Sir,what tool did you use?
thanks for sharing
i know there is no 100% security but what i can do for maximum web protection (i still use php and mysql in my website)
So nice
Sir, is "CSRF" and "SSRF" are the same thing?
it workes like API isnt it?
so I meant we would induce the application to fetch watever we want by chsnging the parameter that relevent to fetching info from server.
is that right?
What is the tool that he used again?
change you camera angel sir
nice
Yo bro is there any way you can help me I was hacked and who ever hacked me rooted my device I have never connected my phone to a computer how is that possible oh another thing one time I looked up my ip and I was redirected to centOS website
You too much bro. 👍😎
some of them work on google and fb
people should be ashamed for not subscribing
Cool
1st
My head hurts
Wich method of User crackers passworld
first
💪🔥💪
Bro I would pay you if you helped me figure out who is fucking with my phone excuse my language..
TRANSLATE SPANISH BRO PLEASE ? :(
You play minecraft 😳?
you sound like the fried rice guy
Sz
666
999
Webgoat is a website is that ur own?
No, you download and run it on a different Ip or computer
I am putting "file:///etc/passwd" in a parameter value & I am getting 405 Method Not Allowed response from an NGINX server. Does it mean, it's vulnerable?
webgoat????
Can you help me when merging the payload with any application and when compiling them it appears error: no such file or directory @ rb_sysopen - /tmp/d20210608-3154-19n4sci/aligned.apk Give me a solution please
Dear friend, put this kind of hack right on it through Metasplite video
use auxiliary/gather/android_htmlfileprovider
2- set LHOST
3- set LPORT
ifconfig
Thank you keep going
Thank you keep going