Cross-Site Scripting (XSS) Explained And Demonstrated!
HTML-код
- Опубликовано: 21 авг 2024
- // Membership //
Want to learn all about cyber-security and become an ethical hacker? Join this channel now to gain access into exclusive ethical hacking videos by clicking this link: / @loiliangyang
// Courses //
Full Ethical Hacking Course: www.udemy.com/...
Full Web Ethical Hacking Course: www.udemy.com/...
Full Mobile Hacking Course: www.udemy.com/...
// Books //
Kali Linux Hacking: amzn.to/3IUXaJv
Linux Basics for Hackers: amzn.to/3EzRPV6
The Ultimate Kali Linux Book: amzn.to/3m7cutD
// Social Links //
Website: www.loiliangya...
Facebook: / loiliangyang
Instagram: / loiliangyang
LinkedIn: / loiliangyang
// Disclaimer //
Hacking without permission is illegal. This channel is strictly educational for learning about cyber-security in the areas of ethical hacking and penetration testing so that we can protect ourselves against the real hackers.
With knowing know it works, the importance of sanitizing user input is obvious. Great tutorial!
How get free internet Access in windows do vidéo?
This was such a great example of how XSS gets implemented. Great example, Love you all your content. Keep up the great work :)
I would like to know what is "Broken Access Control" from OWASP TOP list. What is that vulnerability? Can you explain that vulnerability in a video please?
Broken access control is where the developers of the website believe that users will not act maliciously towards a website for example a developer may believe that a user will use the website just the way it is intended to however a hacker would manipulate access control methods to gain unauthorised access a common type of exploit for broken access control is when a hacker adapts parameters of a url to gain access to an admin account.
I like that you refer to yourself as "Script Kiddie Loi." As a former script kiddie of the late 90s, that resonates with me.
Sir can you make a video on how to do web exploration from beginning to advance please sir ??
I love it when you say: "That's it. It's GAME OVER!" lol
thank you
The endpoint has to be vulnerable to open redirect to perform a cross site scripting
A reflected xss*
And there's a flag you can put on Cookie's (who's name I don't remember now) than disallows document.cookies access to certain cookies
Perfect I was watching Xss and I was ready to tap xss tutorial then loi is there nice !
would you please share the code you are using to try your demos out myself?
Could be a cool thing
this is the best video you've uploaded until now by far. there isn't too much tutorials about XSS on youtube
Crazy that I just posted about this on another video you did, and then today I see this video made by you. Epic. Thanks for making this.
finally xss tutorial(really want to learn xss scripts)
Another great video, perfect explanations. This is what we need!
Relaxing, simple and good videos as always. no complaints
That hat suits you perfectly sir. Great content:)
Ohhhh waited for this one
Most of the Frameworks are XSS safe. Is there any next level xss?
Hey Liang !!! great follower of your videos. Love from India.. Can you please do a tutorial on DOM XSS.
I love your channel. Succinct and straight to the point with good examples
Love you hacker loi ❣️❣️❣️❣️❣️❣️❣️ loving your sessions 🦋
all what you do is amazing
as hacking I think you should a video on how installing software on a USB or hard disk just like in films
Absolutely amazing :D
Love this ........ :)
me when I alert(1)
Good demo on how to perform xss practically!
Great video!
always awesome vdos. thanks for that. sir. 😊
that what am looking for am glad my teacher is HE :)
Let's Go With One More Toutorial
where can I try this steps for practicing ?
sir can u help us caprture scammer here at my place.weve already filed a police complaint yesterday.. but they cant do nothing.coz here at province theirs no such thing as cybersecurity agancy..
Gm from unkown
Nice video sir | I'm Big fan from india ❤️
Well explained
Well done👍
Hello Sir, can you please Make an vedio on advanced android and windows hacking
Would it this apply to a website landing page link as well? I have clicked in a landing page link and it was a scam. Could my computer be hacked ? How do I fix it?
you are my best
great video dude
Stellar explanation
Nice, BUT its not clear in your video which of those burp attacks worked ?? I know you showed how to put it into the browser manually, but that would be just as slow as trying them all manually. Does burp indicate which worked?
Enlighten me, but already have login credentials
You should do a full ethical hacking course
Awesome 👍👍
Please make a video explaining the write exploiting vulnerabilities and port
Sorry, I'm a little confused 👀💧 I can see the injection part but can't see how exactly how someone's credentials can be stolen.
I'm guessing that someone's session ID is being stolen. I might be able to understand better if this was demonstrated with a second device.
Good video though. I know making videos takes a lot of effort 👀👍
the phpsessionid he got was the admin account's session id so he replaced his own one with the admin's one after he logged out and then that put him into the admin account, but i dont think it can just pull straight up CREDENTIALS like a password
@@imaboyinblack once you have the session id, no need for password
Thank you sir😀
WHICH ONE WOULD YOU PREFFER ? WHICH ONE IS THE BEST IN ALL TERMS ??
KALI LINUX or PARROT OS ?
Both are very solid distros. Started with kali but enjoying the parrot more recently.
@@nono-fq1tl Which one has more functionality and capabilities ?
Hey I am 1st to like 😁
Ur video to much help full 😌🥺🥺
You are a genius
Loi your all time best hacker
can i get wifi passwords on mobile
definitely interested in DOM-XSS, that stuff always makes my nose bleed :P
from where i can get the file xss.txt ? ?
thank you !
@loi i need your help asap
Perfect ! Thanks !
Sir can you make a video on how to do web exploition from beginning to advance please sir ??
up
Sir pls upload a video on how to setup a proxy chains
very naice, i laike.. 🙂
Hello mr loi, need tut how to set up hackazon
Teacher I have A Idea For Your Next Class Is About SQLite3 Database Thank You it would help me 100%
You demonstrated it on this hackaton page...so suposedly these parameters that you type on the url would work on any other site?
Yo man I’m just starting out with hacking. I’ve got kali Linux booted up from my hard drive but I’m having a hard time finding out where to begin because this shit is a lot to learn. Can you or anyone else point me in the right direction of some good educational sources? Where did you learn everything you know
:25 no fingertip covering of the gloves. 💀💀😅😅 Wipe that stuff later? XD
Yeahhhh i'm there !!!
Love u loi for such ur content
Can we upload php shell using this vulnerability?
"to test your site" yeah sure my site *wink*
The payloads that you used are directly from Burp or did you coded them yourself ?
What software does he use to enhance his microphone?
Is that method similar to CSRF or what?
Thank you so much for this video Hacker Loi, I'm a huge fan 💙
5:49 that is problematic indeed
Please make a video on call spoofing
Is in hacking,need high ammount of money....?
Can someone please tell me how can we prevent this from happening?
shuch a wow ,I LOVE YOUUUUUUUU LOI ,you are the best
What about getting into car systems
I did not get anything after 5:24 can anyone please explain it?
hello hackerloi can u plz make a tutorial on how to embed payload in an image file in kali linux
You are my idol
bro how to recieve to netcat and where i write my ip adrees in alert please help me
😂
Mantap
Thanks a lot
how can I will be a member of this youtube channel so I can watch videos
Super 👌
I literally watched a white hat hacker do his thing
Thank you..
Where can I get the file for the website
Please what OS do I need to get started
does it work against secured web sites?
Yeaaa boi
My question - is hacking of online games possible ??????
Hello 👋
hello i=sir big fan can you show how to remove the new virus .vfgj
i also want to learn EH i cant pay please help
a new hat
How to get membership
Why you can't say slowly, it's little bit difficult for beginner