Hackers can change your passwords with this exploit..
HTML-код
- Опубликовано: 14 авг 2023
- Checkout AppMySite and convert your website to native mobile app in minutes!: www.appmysite.com/?ref=intern...
In this video, I demonstrate Host Header Injection and how hackers exploit this vulnerability to reset passwords of users on a website.
DISCLAIMER: This video is intended only for educational purposes. The concepts showcased in this video are completely from a penetration testing perspective. I do not promote or encourage any illegal hacking activities.
Host header injection vulnerability exists when a website takes the Host value from the request header and processes it in an operation like construction the password reset URL for a user. When this happens, the request is directed to the attacker's server instead of the actual web server of the website.
In this video, I showcased this vulnerability on a retired HackTheBox machine called Forgot.
Check out this machine here: www.hackthebox.com/machines/f...
Thanks for watching!
SUBSCRIBE for more videos!
Join my Discord: / discord
Follow me on Instagram: / teja.techraj
Website: techraj156.com
Blog: blog.techraj156.com Наука
Bro I really like your content, your content is very very good not like other trash channel, I suggest you to create a parallel channel where you can upload small reel on your content , probably in a year you will be famous among developer
Yes that's a very good opinion
Totally Dope Content in this channel. Recommended to all my friends. Great work. Keep going brother will support you !
Such a nicely and neatly explained video❤❤❤
Thanks! Wow!
bro that was awesome.. I learnt this today after so long days.. please make such videos on bug bounty please
Everything clearly explained❤
hey teja from where i should start learning hacking any roadmap, you suggest to beginners
Hey tech raj I recently watched your video relate to discord hack. I want to ask something if a hacker grabs your token can he get hack my other ids too or get my ip?
very situational but interesting learn either way
Why you won't make a cybersecurity course
So in summary, we just put our ip address then wait for the reset token. Our priority is reset token.
Thank you so much
Commenting just to boost the algorithm
4:40 does gmail scans the URL on our Android phones?
I know this before, and i tried modifying host!, now i am using env for host
Needs help how can l hack an aviator predictor game on sports bet please
Many people are connected to my wifi but i can't see their mobile name only mac address and ip address i can see ...can u tell me solution how can i see their mobile name
What is this vulnerability known as ?
By the way very much informative videos and great presentation got to learn so much new things.👍❤
host header injection vulnerability i believe
I have one old frnd his name is raja.. n3t attacker like this.. before 10years .. is it you ?
damn bro this thing is scary
How to visit the website.
Broo someone Miss use my photos please help me to delete that photos please reply fast
Big fan
How to find these vulnerability in real websites
Does that work with Microsoft accounts too?
Mine got hacked and the guy chaged my E-Mail
Well see about that lmao@@DDD9216A
plz tell me where i can learn linux that can help in cyber security?
Deangelocrack
She can assist you
nice👍👍🤟
🔥
Sir how to terminal htb forgot kashi kare
How to visit website
does this mean i can get back my old xbox account and finally retrieve the memories that i thought were lost forever?
nevermind i just realized that this is about hacking websites or smth lol
Yes
No
Ok bye
brh i know i cant @@rajaconstantine
😮
bro y r u not replying
Op
Any one help me i have infinx phone hot8i i deleted my sms by mistake recovery possible please tell me
Deangelocrack.
She can help you
@Smithgeaoge yes i need help
@Smithgeaoge ok tell me how is this possible
Hi
What you do for living bro
Your contents are not beginner friendly for real
Many you really are shadow banned