[A1] Hijacking a Session - WebGoat

Поделиться
HTML-код
  • Опубликовано: 13 дек 2024

Комментарии • 22

  • @peasantlettuce8278
    @peasantlettuce8278 Год назад +3

    This is actually Incredible. I never would have thought of writing a Script, but I love it. You deserve many more Subs!

    • @MaxInteg
      @MaxInteg  Год назад +1

      Thank you for the encouragement! I’m glad I could help

  • @いのり楪-f6y
    @いのり楪-f6y Месяц назад +1

    Thanks for sharing!!!!!

  • @Sukunuta
    @Sukunuta Год назад +1

    You are absolute brilliant! thank you for sharing this.

    • @MaxInteg
      @MaxInteg  Год назад

      Thank you for the kind words!

  • @CricketEdittzz580
    @CricketEdittzz580 Год назад +1

    i was so suprised when i saw u had only 80 subscribers, i thought you were gonna have like around 120k or sommething

    • @MaxInteg
      @MaxInteg  Год назад

      What a big compliment to casually hand out.. thank you!

  • @SirFancyPantsMcee
    @SirFancyPantsMcee Год назад

    This in incredible thank you so much

    • @MaxInteg
      @MaxInteg  11 месяцев назад

      I’m glad I could help!

  • @wolfrevokcats7890
    @wolfrevokcats7890 Год назад

    Also, I noticed that your session id in Burp at 0:44 (nZ..) totally different from what you have in the code at 2:03 (Fo..) & your current cookie at 2:15 (nZ..)
    Could you please share when did you get that session at 2:03 (Fo..)?

    • @MaxInteg
      @MaxInteg  Год назад +1

      The session id changes every time you log out and back in, so this is why it’s different as these videos are made over the course of a couple of days. Sorry for the inconsistency, for all intents and purposes they might as well be the same

  • @sam_47_ad86
    @sam_47_ad86 10 месяцев назад +3

    Thanks for explaining this assignment, I use kali linux VM, I am able to intercept the POST request from Burp and send it to repeter and able to get my JSESSIONID from the browser, and run your script by entering my username, pass and JSESIONID in the script but when I run the script it runs infinite and then stops with "session find 0 and starting session for 0 at 0" and not able to find any sessions, is there is something I miss

  • @unofficialmusiclyrics868
    @unofficialmusiclyrics868 Год назад

    Thanks, but kindly increase the font size, its barely visible.

  • @siddheshjadhav
    @siddheshjadhav 5 месяцев назад

    Bro, Zoom the font size.+++

  • @lin1342-f1b
    @lin1342-f1b 3 месяца назад

    Not Vim :D

  • @isabellajaramillo6578
    @isabellajaramillo6578 Месяц назад +1

    Te amo ❤❤‍🩹, do you know how hard I was trying to solve this problem, keep uploading more videos 😘

    • @MaxInteg
      @MaxInteg  Месяц назад

      Buena I’m glad I was able to help

    • @isabellajaramillo6578
      @isabellajaramillo6578 Месяц назад

      By the way... if the script is not working, you could check the / at the end of the endpoint before the parameters. For example here: instead of login/?username=$username do login?username=$username in both URLs