Видео

Very detailed video. Need more on this type of data sanitization techniques.

good one

started doing HTB as soon as i finished the google cert and ive never been so motivated. searched up on DNS C2 analysis to see what it entailed. Thank you for sharing, its clear you have experience in this field and the level of intuition is what im striving for!

how did you know to use that payload as the username?

thank you very much - very good explained

I followed along with you on VS code and I did not get the same results as you. I triple checked my code and no "Hello" return, nothing was the same. Help!

Coming back to comment on this video again. I am currently working on a HTB reversing challenge. x86 ELF written in Rust. The challenge and the script is similar to this one. But for some reason I am unable to crack it and find the HTB{flag}. I had the assumption it may have had a stack overflow vulnerability but now Im certain that wasn't it. I set breakpoints similar to this video. After i enter c to hit the second one, it makes me type in a phrase I have to figure out. it then jumps to a breakpoint after it. I have breakpoints set to a function it goes to called check_flag. The main relevant parts of the script and that function I see are where theres cmp assembly instructions. No matter what I do, even when i manually set the cmp breakpoints registers to the correct value, I cannot seem to find anywhere where the phrase is, doing x/s, x/16, x/32, x/16i etc. I can even navigate the script til the very end by breakpoint completely and move pass and stepi all the places in the script without getting a SIG error. Its been driving me nuts, I am not sure what I am doing wrong. I also dont see the ------------------------stack--------------------- content like this video has at my breakpoints, I can only see additonal content if I enter info frame or disassemble. Also use ghidra alongside it.

This is an absolute gem. Using the same exact language and tools on a rust elf.

Excellent - and exactly what I was looking for!!!

You are the best ❤❤❤

This is absolutely fantastic. I agree that this would also be perfect for medium and up difficulty for learning!

sorry i don't know a lot about and I understand the part of the code, so almost all the video, but I don't understand the final part, what have we obtained?

mint af. great to hear this explained in detail

Intro gave me a seizure, thanks

Very interesting. Thank you for taking the time to explain it.

Awesome! As usual:)

What Linux distribution do you use?

this was very helpful I admire you for being able to explain such intrinsic concepts of the Python language so well. I hope one day to reach your level.

Very new to this python debugging technique. Solved the machine earlier but found your video on how to create and debug python code. Amazing stuff. Bravo

It would be nice if you can put that bash file on a github repo!

hii, can you share how do you research, like suppose you you've got a new term or tech stack, so how would you from knowing nothing to get something to make use of to get the work done, the main question is how do you look for that what you want sorry for bad english

Hey 0xdf, I saw that you solved almost all boxes in HTB. Do you solve them all by yourself?

Excited for your new box releasing this Saturday and thanks, because your writeups helped me a lot. Have a great day.

Awesome explanation! I always wondered how this shell upgrade works. You explained it really well.

Maybe you rarely discuss this, I would like to know regarding the environment you use for hacking (OS, VM etc) if you can tell me to use it as a reference

What if the target server is Windows? What file do we need to search to obtain sensitive information?

Code for ssh instance to authenticate username and password: class SSHServer(paramiko.ServerInterface): def __init__(self, username, password): self.event = threading.Event() self.username = username self.password = password self.authenticated = False def check_channel_request(self, kind, channel): if kind == 'session': return paramiko.OPEN_SUCCEEDED return paramiko.REJECT def check_auth_password(self, username, password): if username == self.username and password == self.password: self.authenticated = True return paramiko.AUTH_SUCCESSFUL return paramiko.AUTH_FAILED # def check_auth_publickey(self, username, key): # return paramiko.AUTH_FAILED def check_channel_shell_request(self, channel): self.event.set() return True def check_channel_pty_request( self, channel, term, width, height, pixelwidth, pixelheight, modes ): return True Hope it helps

Thx :)

Hey, Can you create solve videos for Hard sherlocks. I read your writeups and it's really helpful but a video would be better.

What is your Linux distribution?

What is your Linux distribution?

do you play mtg arena ?

greatttttttttttttt

Thank you for this! Attempting a rust decomp challenge rn and it's driving me nuts lol

cool😍😍

Hey, 0xdf. Let's get OSEE before John Hammond does

Please, if possible, cover these advanced topics like How to bypass Drupal CMS or other secured CMS? How to bypass HARD WAF protection that stops HTML, SQL, and XSS injection payloads? Payload single-double-triple encoding using Cyber-Chef? How to find the real origin IP of secured websites behind Cloudflare, Akamai, ModSecurity, AWS CDN, etc.,? How to bypass Hard WAF using SQLMAP or Burpsuite? How to find hidden vulnerable parameters and endpoints inside the .js and .jason files? How to find hidden admin pages, cPanel pages, and WHM pages ? Please cover these important topics. Thanks

nice guide, thank you

Danke

Next time DELETE SQLI sir

hello , thank you for your videos, i follow you also on linkedin, would you please share a list of youtube channel such as yours , simple quiet and lot of beneficial ,thank you man

> Splunk > CloudTrail yep i knew you would be talking about nubilium1/2 haha

Push!

Hello sir 👋👋

GOOD!🎉

Hey man I’m new like a complete beginner trying to do projects and I chose a honey pot is this like exactly how to build a honey pot bc for an example I decided to follow the video and I’m gonna go off your code and try understanding it but this is how to create a honeypot right now?

I really love your content. Thanks!

By far the best analysis I've seen about APT29. Thank you so much, sir!

Great breakdown!

Thanks for sharing as always, love the content, your amazing my friend.