We'll keep this in mind for future live sessions. Have you looked at Alex's Bug Bounty playlist here for additional content on methodologies, reporting writing, and tips?: th-cam.com/play/PLLKT__MCUeixlBvUYIH1yQaxShVB2F03N.html&si=Oo8O5OPbC_ZC7pY-
Feedback: You have added a lot of base with the mic setting please change to make the vocal a little bit clear like Eth Adams, I saw in most the videos the same issue, it sounds better with earphones/headphones but most of the time people listen on speakers internal/external
It's a good practice to test for Server-Side Template Injection (SSTI) vulnerabilities in web applications that use templating engines like Mustache. Look for signs like dynamic rendering of user input or the presence of template tags/expressions. Conducting security testing, including input fuzzing and boundary testing, can help identify potential SSTI vulnerabilities. Remember, it's always better to be proactive and ensure the security of your web applications.
Great video !!
We're looking forward to more streams with tib3rius :)
First time hearing about SSTI
We want live bug Hunting video . Like choosing program, perform recon and automation then manaual hunting.
We'll keep this in mind for future live sessions. Have you looked at Alex's Bug Bounty playlist here for additional content on methodologies, reporting writing, and tips?: th-cam.com/play/PLLKT__MCUeixlBvUYIH1yQaxShVB2F03N.html&si=Oo8O5OPbC_ZC7pY-
Feedback: You have added a lot of base with the mic setting please change to make the vocal a little bit clear like Eth Adams, I saw in most the videos the same issue, it sounds better with earphones/headphones but most of the time people listen on speakers internal/external
When are you guys putting out a web app cert?
I know how SSTI works but how do we know when we should the effort testing it? How can we tell that a webapp is using a template like Mustache etc?
It's a good practice to test for Server-Side Template Injection (SSTI) vulnerabilities in web applications that use templating engines like Mustache. Look for signs like dynamic rendering of user input or the presence of template tags/expressions. Conducting security testing, including input fuzzing and boundary testing, can help identify potential SSTI vulnerabilities. Remember, it's always better to be proactive and ensure the security of your web applications.
Ivan se we have
I am not understand your language 😔😔😔
Turn on subtitles, on the right bottom of the video, check settings button and enable it in your language