I like how he analyzes how BugBountyReportExplained got his mad skills.
@tunatuncer5639
2 жыл бұрын
Oh wow, ALLES CTF21 was my first CTF and I was expecting this video for a while :D
@martinc.7424
2 жыл бұрын
Now that we are good on the lightning situation... we can focus our effort onto improving that hoodie lacking problem, shall we ?
@rogervanbommel1086
2 жыл бұрын
Question, what crypto attack do you find the most interesting/unexpected, mine are the AES-CBC padding Oracle and the ECDSA private key recovery because of k being constant
@sebastiangudino9377
2 жыл бұрын
Can you explain what "k being constant" means for someone not very familiar with these concepts?
@Misha-dr9rh
2 жыл бұрын
I understood about 2 of those words
@rogervanbommel1086
2 жыл бұрын
live overflow himself did a video about this, it's the rhme CTF secure filesystem V1.92
@iradnuriel9087
2 жыл бұрын
For me or is definitely the structural-cryptanalysis attacks against 5-rounds 128bit AES, just incredible how we got that good in attacking one of the most secure encryption when we just decrease the number of rounds by half.
@rogervanbommel1086
2 жыл бұрын
@@iradnuriel9087 yea, that’s definitely cool, though sadly (almost) never applicable, really after implementing AES myself in python
@agowa338
2 жыл бұрын
Ok, but how many serious offers from companies have you received that wanted to have this implemented?
@tourpran
2 жыл бұрын
awesome
@cleightthejw2202
2 жыл бұрын
@Liveoverflow Good vid like so many of your vids. Thank you for making them
@BDBD16
2 жыл бұрын
I see you channeling your inner admin.
@unurenkh5181
2 жыл бұрын
@LiveOverFlow your eyes are red. Please rest sometimes.
@jubertvera2780
2 жыл бұрын
Xd
@urlocaldartmonkey9448
2 жыл бұрын
thats cool!
@aronpill2767
2 жыл бұрын
"Automagically" dear god, I hate that buzzword so much.
@zyrohnmng
2 жыл бұрын
Is Magimatically better?
@kellysmith7357
2 жыл бұрын
@@zyrohnmng Yes!
@allurbase
2 жыл бұрын
Injectin coments would still work/**/right?
@hurayraiit
2 жыл бұрын
yup :-)
@JohnDoe-uq6ei
2 жыл бұрын
Bu..Bu..But.. Actual skills.. No anon mask every other thumbnails.. I thought these kind of pratices were ban long time ago.. How dare u
@eseseis7251
2 жыл бұрын
overcomplicating is waste of time with stuff you dont know and need learning
@trieulieuf9
2 жыл бұрын
And yet, this challenge is marked EASY in this CTF competition.
@yeetyeet7070
2 жыл бұрын
if its only a string substitution issue, thats literally first grade of CTF-school
@TheNikolaThing
2 жыл бұрын
Sehr schoen wie immer :)
@abdulx01
2 жыл бұрын
Why you don't bug hunting? With have great knowledge Im confused 😕 you are insane.
@pflasterstrips7254
2 жыл бұрын
Audits are a more reliable source of revenue. What if you spend months looking for bugs in a product and you don't find anything or only minor issues that don't get paid much.
@h4ckv157
2 жыл бұрын
;)
@bryanne274
2 жыл бұрын
:o
@FedoraRose
2 жыл бұрын
Thank you so much for your content I always learn something new :)
@kellysmith7357
2 жыл бұрын
is your name fedora? what?? like are you a pink hat? is that the joke?!
@FedoraRose
2 жыл бұрын
@@kellysmith7357 red hat Enterprise 😎😎
@FedoraRose
2 жыл бұрын
Jk
@reastle1307
2 жыл бұрын
I heard us gonna ban sale's of hacking gadget is hat true ?
@lightblue254
2 жыл бұрын
No
@sebastiangudino9377
2 жыл бұрын
Hats are very true, i wear them all the time
@kellysmith7357
2 жыл бұрын
@@sebastiangudino9377 free hat
@neoXXquick
2 жыл бұрын
not so easy challenge even that is say EASY WEB
@svenvancrombrugge9073
2 жыл бұрын
This is awesome. I've been following your channel for years now. In that time the amount of security related channels I watch rose and fell. Currently it's on a low point, as I'm learning heavily on the Dev and Ops side, less on Sec. However there are two channels left. I had no idea you would ever have contact with each other, but the other Sec channel I still follow is actually BugBountyReportsExplained. The world is small! Beste Grüße!
@byte7645
2 жыл бұрын
close to first
@chri-k
2 жыл бұрын
Aaand, another one appears in a random comment section.
@byte7645
2 жыл бұрын
@@chri-k yep, i'm just bored
@vectoralphaSec
2 жыл бұрын
Hey LiveOverflow you ever thought about making a KZitem programming tutorial series??
@seanwatts392
2 жыл бұрын
Military grade isn't always a good thing. With encryption some times civilians have access to better encryption because we're not locked down to contracts. I'm Into guns and I avoid military grade parts when modifying or adding parts military grade parts for guns are usually cheaply made and I will get 3rd party parts that are more expensive and hold up longer.
@InfiniteQuest86
2 жыл бұрын
Yeah this is why I pretty much guarantee any company that advertises military-grade encryption has an insecure product. That's the least relevant thing in security and literally the only thing they are focused on or advertising. With that mindset, there's no way you did it right.
@georgehammond867
2 жыл бұрын
Ubuntu 20.04 is hacking me. How to stop them now?? not even 32 bit password was able to kick them out of PC. any help is welcome.?
@jan-lukas
2 жыл бұрын
An OS can't hack you
@castles990
2 жыл бұрын
What are you even talking about
@georgehammond867
2 жыл бұрын
@@jan-lukas You dont understand...this is Ubuntu them self's from their headquarters. How to deny them from their own system?
@Misha-dr9rh
2 жыл бұрын
@@georgehammond867 pardon
@georgehammond867
2 жыл бұрын
@@Misha-dr9rh How would you ban windows if you had illegal copy off their Operating System? same for Ubuntu 20.04!
Пікірлер: 56