Admin information must be more recommended then regular Information we must protect it from brute force. I see what you mean thinking like a malicious hacker but use it in a GOOD way
Hello Loi Liang, I appreciate you doing another fantastic video lesson. It has been a joy to follow your video courses for so long. It was enjoyable to see your video about WordPress website training. I'm interested in learning more about the add-on ElementsReady. Recently, I was made aware of a blog that I read. Right now, buying is something I'm considering. If you could produce a video about it, that would be great! I'll wait for your response while you take care.
Your IP address is not something that can just be discovered nor is it something that is static (unchangable) unless you ask your ISP (provider) and pay a small monthly fee. Normally your ISP carrier grade NAT (in IPv4) your address into a pool of addresses that is basically shared among customers and from there you get a temporiraly address (highly dumbed down). For me to get your IP address you would need to 1) give it to me, 2) visit a malicious website, 3) or some other device that will record your IP and share it, it is not something i can just figure unless we somehow are connected like through a game, or some other media. If you really want your IP address to be undiscoverable, you would need a VPN service (i would not trust any such service unless i set it up myself) to mask your address. So you would connect from your home, to your VPN and your VPN would do all your online surfing for you and feed you back the information, never revealing your real IP but your VPN service would know.
Hmm... Just like the security group that you configured when you create any EC2 instances. It tracks your public address and whitelist it. Funny that it is not from route53.
loved it.. In terms of computer, mobile, and internet security, restrictions are the best. It is the most practical way to prevent our personal identification and networks be harmed by viruses and malware. So we have to stay secure with the updated version of antivirus software online from renowned brands like K7 antivirus software.
looks impressive, and not saying you don't know your stuff, but an example where somebody is not foolish enough to use admin/admin would have been more impressive... Not every WP user is that dumb in 2023, many are, but those who know anything about the CMS would never do such a foolish thing...
You could do like Apply for their pin code, 1 failure = ok, 2 failures = ok, 3 failures = 2 min ban, 4 failures = 4 min ban and so on. They basically ban you two to the power of your attempts (2^LoginAttempts) after X failed attempts. And you could apply this to a specific page such as wp-login, the "problem" is that if the attacker has many IPs at their disposal they can change IP everytime they get the first ban and try 3 times per IP, but it would SEVERELY cripple them to a point of they would probably give up because it is not worth it. Effort vs reward.
this probably won't work against modern wp even without login lockout and with xmlrpc and all that enabled. I just checked and wp defaults to a random 18 character password for the admin account upon wordpress installation. Yeah good luck with that unless the owner specifically choose a weaker password. cool demonstration but not you'll find all the time.
Okay sir when I start VNC server in termax e could not start but is stuck and it will be closed what is the issue of this solution what is the solution of this issue please share me
@@meenatv4481 I won't send my number.. you can use hulk dos tool it is very good.. use the golang script and not python script python one is very old and not that effective
Witam, mam nadzieje ze google to przetlumaczy. Zauwazylem ze w twoim glosie za bardzo slychac litere ' S ' Piszczy w uszy, uzyj wtyczki deeser, ciezko sie slucha na dobrych sluchawkach... Pozdrowienia z Polski!
![[#2024MAMA] G-DRAGON - 무제(Untitled, 2014)+POWER+HOME SWEET HOME+뱅뱅뱅+FANTASTIC BABY | Mnet 241123 방송](http://i.ytimg.com/vi/Ox29z5Nf1Uk/mqdefault.jpg)
Happy New Year to you! And good luck for the year 2023 :)
Loi Liang is excellent! Absolutely excellent.
You are very chalak (Clever) bro 😂😎😎😎
a quick technique to find WordPress username, "?author=1"
$ halfway there in a single step
Just use social engineering
Very good video!
hi.....I always appriciate you men🤩..please how can i decrypt BTTU ransomware encrypted files without pay...🙏
Sir, Please make the next video on AWS pentesting phase and AWS pentesting roadmap.
Love from INDIA ❤️
Admin information must be more recommended then regular Information we must protect it from brute force. I see what you mean thinking like a malicious hacker but use it in a GOOD way
Hello Loi Liang, I appreciate you doing another fantastic video lesson. It has been a joy to follow your video courses for so long. It was enjoyable to see your video about WordPress website training. I'm interested in learning more about the add-on ElementsReady. Recently, I was made aware of a blog that I read. Right now, buying is something I'm considering. If you could produce a video about it, that would be great! I'll wait for your response while you take care.
Amazing as usual and how can you protect your ip address then from being discovered ?
Your IP address is not something that can just be discovered nor is it something that is static (unchangable) unless you ask your ISP (provider) and pay a small monthly fee.
Normally your ISP carrier grade NAT (in IPv4) your address into a pool of addresses that is basically shared among customers and from there you get a temporiraly address (highly dumbed down).
For me to get your IP address you would need to 1) give it to me, 2) visit a malicious website, 3) or some other device that will record your IP and share it, it is not something i can just figure unless we somehow are connected like through a game, or some other media.
If you really want your IP address to be undiscoverable, you would need a VPN service (i would not trust any such service unless i set it up myself) to mask your address.
So you would connect from your home, to your VPN and your VPN would do all your online surfing for you and feed you back the information, never revealing your real IP but your VPN service would know.
@@Fractal227 or you can simply buy a tool like Hoverify and can know the IP address, the themes, the plugins, the wp version and many more things....
Perfect as usual.
Good Morning 07:09 Frankfurt / Germany
WOW THAT'S AMAZING
Hmm... Just like the security group that you configured when you create any EC2 instances. It tracks your public address and whitelist it. Funny that it is not from route53.
But is there any way to disabled the CloudFront
wow Great video :))
loved it.. In terms of computer, mobile, and internet security, restrictions are the best. It is the most practical way to prevent our personal identification and networks be harmed by viruses and malware. So we have to stay secure with the updated version of antivirus software online from renowned brands like K7 antivirus software.
hahahahaha.... and you are the only one who protects yourself ? made me crack up this video...
No shit sherlock, you can't expect assistance from somebody if you won't help others.
BTW it has to do with aws security and he gives you the basics for it
AMAZING
looks impressive, and not saying you don't know your stuff, but an example where somebody is not foolish enough to use admin/admin would have been more impressive... Not every WP user is that dumb in 2023, many are, but those who know anything about the CMS would never do such a foolish thing...
first and happy new year 🎉
Good work sir, but sir so we can't access a website because it is protected by CloudFront?
Long short, you need to whitelist it, using another rule, just as he did in this video
@@mikesmithie3259 okay thank you you, what about cloudflair?
Cool trick
Great 😃
No I’m here cuz notification gang
Great
What if we limit the login failure!
You could do like Apply for their pin code, 1 failure = ok, 2 failures = ok, 3 failures = 2 min ban, 4 failures = 4 min ban and so on.
They basically ban you two to the power of your attempts (2^LoginAttempts) after X failed attempts.
And you could apply this to a specific page such as wp-login, the "problem" is that if the attacker has many IPs at their disposal they can change IP everytime they get the first ban and try 3 times per IP, but it would SEVERELY cripple them to a point of they would probably give up because it is not worth it. Effort vs reward.
Sirr i need help
I love this guy lol
OSM
this probably won't work against modern wp even without login lockout and with xmlrpc and all that enabled. I just checked and wp defaults to a random 18 character password for the admin account upon wordpress installation. Yeah good luck with that unless the owner specifically choose a weaker password. cool demonstration but not you'll find all the time.
Users are always the weak link and most users dont use a password manager, so they will never save the 18 randomized character passwords.
Okay sir when I start VNC server in termax e could not start but is stuck and it will be closed what is the issue of this solution what is the solution of this issue please share me
Iwant to ask if u can help me to open winrar file withpassword
Sounds noob but ineed help
Best tool for DDOS?
hulk (golang one) not python one. I have my own dos tool better than hulk. but can't put repo here as youtube deletes the comment with url
@@codewithraiju1424 send your number
@@meenatv4481 I won't send my number.. you can use hulk dos tool it is very good.. use the golang script and not python script python one is very old and not that effective
@@codewithraiju1424 ok Bro
script kiddie lol
Wordpress Login limit helps?
Yeah, at least when your password isnt sth like 1234. Loi's WAF rule is even better tho
What We Need Hacker Loi Knows 😎
you could use nmap to brute force any login is this correct my brain tells me yes
why, waste time on login, we can attack plugins instead on wp page :)), since main holes are always there.
1000%
Sir replyy pleaseee
How do you access the terminal ?
Witam, mam nadzieje ze google to przetlumaczy. Zauwazylem ze w twoim glosie za bardzo slychac litere ' S ' Piszczy w uszy, uzyj wtyczki deeser, ciezko sie slucha na dobrych sluchawkach... Pozdrowienia z Polski!
YOU ARE NOT REPLYING US
雷哥牛逼
First view
Funny 🤣 hacker
what is that wordpress version from 10 years ago ? 🤣🤣🤣🤣🤣🤣🤣🤣
Yeah, he used an unsafe wp version for his demonstration
Ok Ok got you, Now tell me how to hack your website I know its possible don't be shy just tell me.