Thanks for this video, very informative. By the way, would it be possible to have a copy of the checklist that was uploaded on the Pentest Mapper? TIA!
@goktugserez3116
Жыл бұрын
Thank you liveoverflow, I really enjoy your videos!
@sourabhpurohit8575
Жыл бұрын
🤣🤣
@manaling7721
Жыл бұрын
lmao
@pegasussecurity8509
5 ай бұрын
take some rest buddy
@xinhuang0
Жыл бұрын
what a handsome dude!
@Boolap1337
Жыл бұрын
Welcome to TCM! Great start, thanks for the tips. A introduction to the presenter would be appreciated next time.
@nicl4ssic
Жыл бұрын
Can I get a .csv file?
@dimuthdeja7859
Жыл бұрын
1,Parameter Tempering 2,SQL Injection 3,Reflected Cross Site Scripting 4,IDOR 5,Priviledge Esclation 6,Code Tempering 7,DOM Cross Site Scripting 8,Stored Cross Site Scripting 9,Rate Liming 10,CORS 11,Verbose Error 12,Options Method Enabled 13,Forced Browsing 14,Missing HSTS Header 15,Missing X-Frame Header 16,OTP Bypass with Response Modification 17,Directory Listing Enabled 18,Hard-Coded Sensitive Information 19,SSL not Enabled 20,SSL not Enforced 21,Weak Passowrd Policy 22,Cookie without Secure Flag 23,Cookie without HTTP Only Flag 24,Sensitive Information in URL 25,User Enumeration 26,Long Password DOS 27,Insufficient Account Verification 28,Open Redirect 29,2FA Bypass 30,CSRF 31,Insufficient Session Expiry after Logout 32,Insufficient Session Expiry after Change of Forget password 33,Command Injection 34,Local Storage not Cleaned 35,Host Header Injection 36,OPT Valid for more than one time 37,Password Reset Link is not expired 38,Password Rest Link Poision 39,Password Reset Token is predictable 40,File Path Traversal 41,LFI 42,RFI 43,SSSRF 44,XPath Injection 45,No SQL Injection 46,HTTP Request Smuggling 47,XMLPRC Enabled 48,DEBUG Method Enabled 49,View State Not Encrypted 50,Captcha Bypass 51,Price Manipulation 52,Internal IP Disclosed 53,Login Bypass Save this with extension csv and upload it.
@Ano_F_
Жыл бұрын
Thank you for including Pentest Mapper ❤️
@VUSALSALMANLI
Жыл бұрын
Cool , thanks! A bit smile next time ;)
@hackerexploit8957
Жыл бұрын
Quick question, im new to pentesting, i was told to ask tcm, should i learn ccna for networking or net+? People say ccna is overkill and net+ is enough, and vice versa… id like your input.
@DaPanda19
Жыл бұрын
CCNA is very Cisco focused, better to learn the knowledge and skip the cert, unless you can afford it or need it
@TheQA247
Жыл бұрын
Actively learning BS now, working through the authentication exploits modules. THIS IS GOLD!!
@justkiddieng6317
Жыл бұрын
Welcome sir, more of this kind of tutorials.
@OthmanAlikhan
Жыл бұрын
Thanks for the video =)
@pithackmann5551
11 ай бұрын
Gute Erklärung. Du solltest vielleicht noch ergänzen, dass der Pentest mapper die Community edition quasi um die fehlende Speichermöglichkeit ergänzt. Zwar wird nicht das ganze Projekt gesichert, aber zu mindestens die relevanten Einträge, die man in den API mapper schiebt.
@ViniciusSilva-ug4gk
Жыл бұрын
I didn't have any success using Replicator plugin, the menu to send the requests to replicator is not showing up (under right click on the request>Extensions>), the replicator tab loads normally and the plugin doesn't show any error messages when loaded. Is it working normally in a updated burp version ? I've also generated the jar file through the source code, but still didn't have success.
Пікірлер: 25