1:30 That moment when the FBI enters your house for attempting to do a XSS 😂 Thanks for your videos man. They are really helping me on my last year of university for the cyberattacks subject. I'm in the last year of the computer engineering degree at university. Greets from Spain.
@_CryptoCat
2 жыл бұрын
haha thanks mate! glad they could help 🥰
@mahirlabib808
2 жыл бұрын
Thanks for all these videos brother.
@_CryptoCat
2 жыл бұрын
my pleasure 🥰
@architshrotriya9331
2 жыл бұрын
in medium part, the url passed should be 127.0.0.1/dvwa/vulnerabilities/xss_d/?default=English in video there's no double-inverted commas when passing value to onerror attribute, so please correct it, whoever is stuck there
@_CryptoCat
2 жыл бұрын
nice! ty for the correction 🥰
@xrt5189
3 жыл бұрын
niiice. walkthrough and explanations. thank you for your work
@tamalchowdhury
2 жыл бұрын
Hey! I'm following your walkthroughs and learning how to hack. In your first try when you couldn't get the alert to show up, it was because of double quotes: ". After the first quote, you have to do single quote inside alert(' ') otherwise it will close early. We can also use backticks and es6 fetch for sending the data back to our server without redirecting the user.
@spaceexplorer865
3 жыл бұрын
Awesome and good explanation bro.
@bryansuazo6567
3 жыл бұрын
Great video!! under rated man.
@arnavpandey1722
3 жыл бұрын
Awesome!
@kasemtawalbeh5688
Күн бұрын
Man pleas open quality i can't see anything
@_CryptoCat
22 сағат бұрын
Sorry! Hopefully my recent videos are better
@luciacarrera3523
3 жыл бұрын
why does works but not??
@_CryptoCat
3 жыл бұрын
hey good question which i should really of explained better in the video 😮 i just tested this again now, if you don't break out of the statement then the payload is inside the "value" of an tag and the characters become URL encoded so they dont execute when reflected on the page. when you get chance you can try both ways again and use F12 (devtools) inspector and ctrl + F to find your alert(0) and see the difference between the two payloads.. i wish i would of done this in the video, apologies 😳
@luciacarrera3523
3 жыл бұрын
@@_CryptoCat Thank you for answering!! Your videos are a life saver! I think most of my class is watching this playlist for our final project hahaha
@_CryptoCat
3 жыл бұрын
@@luciacarrera3523 haha awesome! glad i could help 😊
@Cashvib-f4w
10 ай бұрын
Why you don't attack the imposible level of xss-DOM?
@nds6767
Жыл бұрын
At 15:02 you had a slight change which indicates it was successful.
@daliabarrancoz9398
Жыл бұрын
document.cookie just give me message security=low, not the phpsessid, Why?
@_CryptoCat
Жыл бұрын
Hmmmm if you check your cookies with F12 does the phpsessid show?
@sebastianmorales5
Жыл бұрын
@_CryptoCat for me too, phpsessid shows at cookies in the browser
@daliabarrancoz9398
Жыл бұрын
@@_CryptoCat it solves the problem
@IntroMakerNET
9 ай бұрын
@@daliabarrancoz9398How did you fix this? I'm experiencing the same issue.
Пікірлер: 26