How Hackers Bypass Two-Factor Authentication (2FA)?!
HTML-код
- Опубликовано: 23 фев 2024
- // Membership //
Want to learn all about cyber-security and become an ethical hacker? Join this channel now to gain access into exclusive ethical hacking videos by clicking this link: / @loiliangyang
// Courses //
Full Ethical Hacking Course: www.udemy.com/course/full-web...
Full Web Ethical Hacking Course: www.udemy.com/course/full-web...
Full Mobile Hacking Course: www.udemy.com/course/full-mob...
// Books //
Kali Linux Hacking: amzn.to/3IUXaJv
Linux Basics for Hackers: amzn.to/3EzRPV6
The Ultimate Kali Linux Book: amzn.to/3m7cutD
// Social Links //
Website: www.loiliangyang.com
Facebook: / loiliangyang
Instagram: / loiliangyang
LinkedIn: / loiliangyang
// Disclaimer //
Hacking without permission is illegal. This channel is strictly educational for learning about cyber-security in the areas of ethical hacking and penetration testing so that we can protect ourselves against the real hackers. 
Наука
The way you approached this project added so much to it. It’s great to see how your unique perspective contributed to the outcome. The role you play on your job *Firm tech Recovery* is crucial. I really appreciate the constructive feedback you give to me regularly
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
Y’all should stop calling everything “the bare minimum” when it’s literally not. Respect is the bare minimum, actually going out of your way to comfort and have an open ear for someone isn’t. Doing something like this is truly very nice and a great thing of him to do. I hope shit gets better for you and I salute *Firm tech Recovery* for being mature when it’s needed!
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
I cannot imagine completing this project without you *Firm tech Recovery* . You are amazing. Thank you for being there for me. Not a single effort of yours will go in vain. You will be rewarded for your pain. Your hard work will bring you a lot of gains. Well done. Your achievements speaks itself about your capabilities. Slow and steady makes it to the top! Good job! Jon
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
I'm a Maldives born and living in UK and I cannot express enough how much I despise these scumbags. Literally whenever people ask me my nationality I just tell them I'm British because idiots like these give us a horrendous reputation, not to also mention they scam other Europeans too. It warms my heart to see stuff like this, please *Firm tech Recovery* keep up the great work destroying these scammers!!!
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
*Firm tech recovery* . I really appreciate your efforts and dedication towards the work. May God bless you to keep showing your worth and skills like this in the future
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
My account also got hacked and I followed the method as explained in this video but I'm unable to proceed after recording the selfie video. Thank you *Firm tech recovery* . I'm really happy seeing his name everywhere in the comment. It really says a lot about his good work.
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
Hey ppl, I'm a retired computer/IT person, Yet I still find *Firm tech Recovery* so informative and straight forward. Thanks for your advise and helping the people...........Great work and love watching.
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
In terms of character and expertise, *Firm tech recovery* is truly unparalleled. He embodies reliability and exhibits exceptional professionalism within the IT realm. Jon epitomizes the ideal colleague - passionate, industrious, and incredibly knowledgeable. Undoubtedly, you’re the ultimate, Jon
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website..
*You also need to look their name up to see their website*
КаThe efficiency of this *Firm tech recovery* is next level. To juggle walk throughs of various angles on the topic delivered to-camera, differnet content per topic from various folks underneath the umbrella of the track list of the larger big band concert itself is engaging and refined. To make a dense taccess like this so digestible is really something. Awesome work jon!!
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website..
*You also need to look their name up to see their website*
We need more immeasurably wise and compassionate humans like you on this planet. Thank you for sharing *Firm tech Recovery* , Jon. I bet I'm not alone when I say this video found me at the perfect moment, and there are a lot of things here that I needed to hear right now.
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
Having someone like you who’s not only a great innovator but also pulls his best to get the work done so beautifully needs nothing but appreciation. *Firm tech recovery* Thanks for the well off work you consistently bring your all and I truly appreciate that. Thank you for making corporate life so smooth. Proud to have you on our team. Great work as always.
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
The time and efforts you had put into this work that is beyond excellence *Firm tech recovery* . I couldn’t take the selfie because it shows captcha download failed. Take my cordial thanks! and i will make sure the world knows more about you and the good did you have done for me, people like you are rare. Thank you *Firm tech recovery*
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
This channel is the sole exception where I haven't skipped the promo ads. Your finesse in effortlessly integrating promotional content within your videos is genuinely impressive. Sometimes, it takes a moment to recognize that you're endorsing anything; I commend *Firm tech recovery* for your adept execution in this aspect!
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
Cuando amas lo que haces, harías cualquier cosa para recuperarlo como tu cuenta y tu comunidad, es como una metáfora de ser tu padre y el canal y la comunidad tus hijos haciendo todo lo posible para recuperarlo, gracias *Firm tech recovery* por todo y danos un ejemplo de que luchas por lo que amas ❤
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
It just kept glitching on me when i tried this video tutorial. Thank you for this video firstly & Secondly thank you *Firm tech Recovery* I can’t get to the part of video selfie meeting you was a blessing in disguise. Keep up with the good work a lot of people will be needing your assistance in the nearest future.
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
Everyone should have a dedicated person like you *Firm tech recovery* . People dream of hiring such a talented expert like you. Keep up the hard work. Thank you so much for your dedication in this process. Thank you for your commitment to your job. Your outstanding performance helped our me alot. Thank you once again for your hard work and dedication.
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
I just wanted to say thank you for sharing this. Because you're right. The worst thing that you can feel is hopelessness. And I hope that someone who is on the verge of losing hope finds *firm tech recovery* and realizes that as long as you're still alive and breathing, there's a chance, there's HOPE that the future is brighter then the present day.
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
Utterly frustrated and upset as my business account remains inaccessible. Thank you, *Firm tech recovery for your invaluable techniques and procedures. Thank you wholeheartedly for assisting me with my account recovery. Your quick actions and meticulous attention to detail were exemplary. Having someone as capable and supportive as you guiding me through this process is truly appreciated.
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website..
*You also need to look their name up to see their website*
Thank you, *Firm tech recovery* for consistently being so approachable and open-minded. Your friendly demeanor and willingness to listen and understand serve as a constant source of motivation. Your support and guidance have been especially meaningful to me during the recent account issue I encountered. Your willingness to assist and offer valuable advice speaks volumes about your character and the supportive environment you cultivate. I’m incredibly grateful to have someone like you. Your assistance played a crucial role in resolving the issue and getting my account back.
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website..
*You also need to look their name up to see their website*
In your journey ahead, may success be your faithful companion, *Firm tech recovery* Your brilliance will illuminate every endeavor you undertake amidst prosperity! May your dreams materialize, guiding you toward a future filled with promise and radiance! Your accomplishments speak volumes about the bright prospects ahead, inspiring confidence in your ongoing journey. Bravo! Your assistance in undisclosed matters is greatly appreciated, and it’s truly an honor to have your guidance. Thank you for your invaluable contributions.
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website..
Awesome work, *Firm tech recovery* ! It's so satisfying to see you putting in the effort to stop those shady characters. Protecting the public, especially the elderly, from those despicable con artists is crucial. You truly deserve recognition and appreciation for keeping us secure. I'm thrilled for you because you're my sibling. Your accomplishments definitely make you a strong contender for the Nobel Peace Prize. Keep up the outstanding performance!!!!!
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website..
*You also need to look their name up to see their website*
Big thanks *Firm tech recovery* for helping me out. God bless you brotha... I've tried following these steps from the device and location where the account was always logged into and I got a page that says we don't recognize your device. The tutorial video was not helpful tho but Big Ups Jon
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
I'm literally overwhelmed, You are a blessing to the world. I can't thank you enough *Firm tech recovery* for helping me with my account recovery. My prayers will always be with you and your team. Keep it up guys. Love from Maldives. There are many people out there I pray everybody get help.
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
There is no doubt that you will rise fast at the apex of your career *Firm tech Recovery* . Because you are a very intelligent, smart, hard worker and your work ethic par excellence. Keep going People like you take the IM out of IMpossible by becoming PRO at tackling PROblems. You Rock!
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
What side are you on as Metaspyclub divides the wealthy from the poor?
i just got my twitter back thanks to metaspyclub
if you need assistance just look up metaspyclub
i got back my Gmail thanks to metaspyclub
Wait, what is happening?
Came here after LinkedIn and Steam with 2FA got hacked. This is insightful, thank you
Hi there. If you actually need help in getting your account back because you find it difficult to get it back on your own. I know a certified cyber security computerist who can help you 😊
The method this video pointed to isn’t really working.. *firm tech recovery* is the solution to all situations surrounding lost social media networks..
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back.
I’m glad I was fortunate enough to get to know about their name and looked it up online.
*You also need to look their name up to see their website.*
It’s a pleasure to work with someone who knows how social media ethics works and inspiring work spirit *Firm tech Recovery* . I’m glad that a position opened up for you that is a great next step in your career. You will never find out your real worth until you give life your best shot. Work hard and give it all you’ve got. You will find more success than you had ever thought.
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
The efficiency of this Adrian Ruthnik is next level. To juggle walk throughs of various angles on the topic delivered to-camera, differnet content per topic from various folks underneath the umbrella of the track list of the larger big band concert itself is engaging and refined. To make a dense taccess like this so digestible is really something. Awesome work jack!!
Hey ppl, I'm a retired computer/IT person, Yet I still find Adrian Ruthnik so informative and straight forward. Thanks for your advise and helping the people...........Great work and love watching.
so at the end it was actually a sql injection
Exactly
Which is kind of an amateur move.
@@patwhocares7009”amateur” but effective, like keyloggers
@@patwhocares7009 exaclty cuz his channel is sh*t it just teaches some nonsense stuff for beginners additionally it won’t benefit anyone
Yeah, if we can execute this level of injection then, the company is a lost cause 😂, its always thing with WAF
It would be very unusual these days to find a front end application directly executing SQL against the back end database without going through some kind of API that abstracts and limits. This might have worked 15 years ago . .
Essentially this has little to do with 2FA authentication and everything to do with hacking into a database.
100% agree, it is misleading.
Exactly what ever any of these hacker channels showing is all bullshit it might of worked 15 years ago like you said but not today and if this stuff was true do you really think RUclips would let him post it I don’t think so 😂 not how this people can think that other people are so stupid is beyond me
I’m new into this field working on my certs and things and I appreciate y’all’s feedbacks on videos like these !
Some do have deprecated technology.😊
@@admiral44Enforce two step and put uBlock origin on every clients machine
Congratulations, Adrian Ruthnik I am relieved that you are out there fighting these thugs, We musttake every precaution to protect the elderly and the general public from these despicable con artists. Congratulations to You!! You deserve the Nobel Peace Prize for ensuring our security.
Honestly, *Firm tech recovery* I'm amazed by your consistent ability to deliver exceptional work every single time. Your willingness to lend a helping hand during my time of need is deeply appreciated. Thank you for your support and kindness.. I take pride in your capability to overcome any challenge and consistently achieve outstanding results regardless of the circumstances.
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website..
*You also need to look their name up to see their website*
My dear, *Firm tech recovery* I’m so impressed by your progress. I have faith in you, and I hope you’ll be able to do more and better quality job for others in the future. Keep it up! Jon All your hard work and dedication have paid off. You are an inspiration to other Expertise like you. Thanks for your great job. I’m proud of your achievement
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
How can you store sensitive data without encrypted? As a backend developer, this doesn't make any sense.
First, this is a lab and it is meant to be vulnerable. Secondly, most of the time you cannot encrypt the database itself, as this typically causes data corruption. You can store encrypted strings though and pass the encrypted strings with secure protocols (which is the safest bet). Even if it was a ciphered string, you can use tools like rainbow tables or john or even google-fu to decipher weak passwords like "password". The whole point of this is to show an example of a vulnerability. It is possible that an inexperienced developer, or recent update, broke encryption or stored the plain-text values. There are even more complicated versions of attacks but this is a good understanding of the basics of what a cyber security specialist looks for. Often times the puzzle is much more complicated and you really need to know your stuff in order to fully test something.
As a Backend it should.
Everyone should have a dedicated person like you Adrian Ruthnik .
Is there any way to export account from the Authy mobile app?
I was also in similar situation but the same expert helped me out… He is *Tischler tech*
This guy helped me get mine back. I never believed this could be possible but thanks a lot to him.. *Tischler tech* dedication and might in doing this looks unreal but it works🎉..
*Tischler tech* is a cyber security expert. Only him can look into this situation and get it back.
Certified *Tischler tech* cyber security expert is the best 😊
He has over 19k followers???.
We need more immeasurably wise and compassionate humans like you on this planet. Thank you for sharing Adrian Ruthnik , Jon. I bet I'm not alone when I say this video found me at the perfect moment, and there are a lot of things here that I needed to hear right now.
Thank you for your great job *Firm tech recovery* . We really appreciate your efforts and dedication towards the work. May God bless you to show your worth and skills in the future like this, over and over. I really appreciate your great skills and thanks alot for all what your have done and helped me out a lot. The Sky is the limit mate Shine On
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
nice video for children, man! really appreciated!
but first, IRL on production u usually won't get so verbose 5xx errors (if devops/developers are not too crazy ofc to open bugs for end user :-))) so your SQLi will be "blind SQLi", LOL! ;-)
second, more and more systems nowdays use "prepared statements" for SQL, reliably isolate query itself from query parameters, which gives backend's code immunity to SQLi, sad (for hackers) but true.
Account of mine also got hacked and I followed the method as explained in this video but I'm unable to proceed after recording the selfie video. Thank you Adrian Ruthnik. It brings me immense joy to witness his name appearing frequently in comments, a clear indication of the commendable work he’s been doing.
This is a great example of how a vulnerable website can be compromised even when security controls are implemented. Interpreting query based information is a prominent skill, especially in a database that store large sets of data. 👏
security controls where not implemented. Sqlinjection is a very known issue.
I hate Security Control ob websites blocking Security Control for more malware Protection
I'm a Maldives born and living in UK and I cannot express enough how much I despise these scumbags. Literally whenever people ask me my nationality I just tell them I'm British because idiots like these give us a horrendous reputation, not to also mention they scam other Europeans too. It warms my heart to see stuff like this, please Adrian Ruthnik keep up the great work destroying these scammers!!!
It just kept glitching on me when I tried this video tutorial so firstly I would say thank you for the video and secondly, thank you Adrian Ruthnik meeting you was a blessing in disguise keep up with the good work I'm sure a lot of people will be needing your assistance iin the nearest future after seeing this
Are u just consistently pressing send in burp suite or a value then send?
Hi brother, I'm begging you for God's help, my account has been hacked for a long time and I can't activate who I want to activate, I only have the activation code for the same thing, I don't know what the problem could be, it happened to me all of a sudden, if you can help write so that I can give you my bill, you will arrange it
Hi there. If you actually need help in getting your account back because you find it difficult to get it back on your own. I know a certified cyber security computerist who can help you 😊
The steps these videos tutorial described didn’t work at all.. im testifying *coherent recovery* is the solution to every situations surrounding all lost social media networks..
Recovery of lost accounts in general seems like a mole to *coherent recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *coherent recovery* & are committed to getting lost accounts back.
I’m glad I was fortunate enough to get to know about their name and looked it up online.
*All you have to do is you also need to look their name up to see their website*
It’s funny to see how some people over think and over complicate what hackers are actually doing
very well from your good and nice techings Mr. loi can you tell we is there a way to download from payment websites without any paying thanks
Having someone like you who’s not only a great innovator but also pulls his best to get the work done so beautifully needs nothing but appreciation. Adrian Ruthnik Thanks for the well off work you consistently bring your all and I truly appreciate that. Thank you for making corporate life so smooth. Proud to have you on our team. Great work as always.
Having you as my support has been one of the best things I’ve ever decided on, *Firm Tech Recovery* . Your assistance has made my tasks smoother and more manageable. I deeply appreciate the favor you’ve extended to me. Thank you, my friend. Your presence has made this entire process much more comfortable, and I am truly grateful for it. Working alongside you is a pleasure, and your dedication to your role serves as an inspiration to me. I will always remember the help and support you’ve provided me with.
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
My account also got hacked and I followed the method as explained in this video but I'm unable to proceed after recording the selfie video. Thank you Adrian Ruthnik . I'm really happy seeing his name everywhere in the comment. It really says a lot about his good work.
Does this affect the use of hard tokens from a USB device and/or Yubikey etc? Are these stored in the same DB as well? I always thought hard tokens were the safer way to go instead of a google authenticator. Always enjoy and appreciate the videos!
It depends on what do you mean by "hard tokens". Specifically speaking of Yubikeys, it supports multiple type of authentication methods, so storing TOTP accounts on Yubikey is not that much different from Google Authenticator or any application authenticator, you would just have a physical presence of your 6-digit codes with Yubikey. But since Yubikey's storage is write-only, you can't see your secrets in plain form after it is imported to Yubikey, so you just see the 6-digit codes that the secret is corresponding to, which naturally makes Yubikey safer.
However, Yubikeys also provides a hardware-based OTP (HOTP), so in that scenario, the server just "validates" the token generated by the Yubikey (instead of checking the same 6-digit value that the same secret stored in DB corresponding to, as in TOTP) which it makes the one of the most secure authentication methods as of today. Unfortunately, not all websites which supports 2FA allows registering a security key (or passwordless sign-in), they sometimes support TOTP as the only 2FA option as in the example website shown in this video.
Also, even hardware authenticators are used, when the server's database is exposed once, it might be a risk still because since the database basically contains your user data, even if hacker couldn't sign in your account they can still access your leaked info without signing in, so I believe it doesn't even matter much anyway which 2FA method you choose in that scenario like this. Not saying that hardware authenticators doesn't change anything, they are obviously always more secure than other options!
And since most-popular websites are protected enough to prevent easy attacks like SQL injection, getting full access to the database is very less likely in today (it probably would work in ancient websites like in 10+ years ago), so don't be confused by this video. Even with a time-based tokens (TOTP), you are usually still safer than having no 2FA, it is just not that super-safe when compared to hardware-based tokens.
Hope this is helpful!
They work exactly the same way in case you use TOTP. You just store the shared key on the hardware instead of the phone.
Video Suggestions:
1. Video About wireshark And wifite
2. Video on how to hack any pdf's password with "rockyou" wordlist
3. Make a video about anonymity with kali "whoami"
4. A video on how to dual boot Kali Linux
5. A video a on BYOB Botnet
6. Full tutorial about Burpsuite
if you have access to DB why you don't just turn off 2fa on the user account?
In my opinion, it will be suspicious for user, cause he previously has a protection and now It`s just disappear
Because the goal is to be as inconspicuous and effective as possible. Removing a gate entirely would raise red flags and call attention to the intrusion.
Because he can only read the database, not modify it.. I think
This is probably outdated as most platforms now are using like separate app.
For example in FB/Messenger if I have login credentials to lets say my brother FB account, but I am trying to log in from my PC/Phone, he will have to confirm on his device.
So eve if he has to put some PIN/QR it will only be possible from his device.
My bank is using similar approach. If I try to log in from any other device< i will get pop up on my phone where I have to confirm and allow new device to connect.
Amazing job! *Firm tech Recovery* I wasn’t able to see my account name at first because the name was changed. Also I really valued this information but thanks Jon even tho it showed a lots of error at my ends you still tried in helping fixing it. Happy I got it back y’all.
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
Can we see safe folders image after remote access by Kali Linux pls pls reply sir
Thank you, Adrian Ruthnik for consistently being so approachable and open-minded. Your friendly demeanor and willingness to listen and understand serve as a constant source of motivation. Your support and guidance have been especially meaningful to me during the recent account issue I encountered. Your willingness to assist and offer valuable advice speaks volumes about your character and the supportive environment you cultivate. I’m incredibly grateful to have someone like you. Your assistance played a crucial role in resolving the issue and getting my account back.
Hi, Mr. Hackerloi! I am one of your RUclips writings and I come to help your video and are very good. Congratulations to the stather. Have one of your video with the title: How Hackers Hack With An Image Trojan? I tested on my computer with your class cripto did not give enough to cost me a crypt base and how to set up
It's amazing what you do Adrian Ruthnik We need a lot of people with your skills and set who have good intentions and spread love
Look who raised him. I'm not surprised he's stuck like Chuck 😂😂
Always ready for your video
What if the valve is stored in the server's cache?
I used to be so obsessed with learning.... ❤️Now i an professional and now i understand everything u say 🥺
Hail the champion of professional decorum, whose unwavering attention to detail and commitment to excellence set the bar higher and higher. You helped me a lot *Firm tech Recovery* ... I got back my account that was hacked, if it wasn't for your help I wouldn't have succeeded... Thank you very much
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
I'm just interested in the py to extract the key from the QR code
I’ll forever be grateful to you for who you are, what you did. Thank you *Firm tech Recovery* Thanking you for your support, love, and care to your duties. You are indeed a blessing me. Thank alot buddy i will always remember your good did towards me
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
Well, a replay attack can be used to login without password or 2FA as well.
To setup 2FA, first you need to have the password? if you already have the hackerwhateverpassword, the account is already compromised?
The first part of video was an example of how 2FA generally works. Qr code image gives us a secret token that we can use to bypass 2FA, then in the video shows that with SQL injection we get this token from the database
I don't understand why the double )) in the union payload @5:54 ?
Dude how many camera you have?
Can someone help me please I had a hacker hack my Microsoft account and I can’t get it back
I was also in similar situation but the same expert helped me out… He is *Tischler tech*
This guy helped me get mine back. I never believed this could be possible but thanks a lot to him.. *Tischler tech* dedication and might in doing this looks unreal but it works🎉..
*Tischler tech* is a cyber security expert. Only him can look into this situation and get it back.
Certified *Tischler tech* cyber security expert is the best 😊
He has over 19k followers???.
Can make another video about android RAT because most of the old so they don't work
Excelent police work and freedom you gave. That boy looks genuinely sorry and regrets what he did
Is it possible to solicit help from you to get access to a specific account of mine? I am lost and have exhausted all of my options..
I was also in similar situation but the same expert helped me out… He is *Tischler tech*
This guy helped me get mine back. I never believed this could be possible but thanks a lot to him.. *Tischler tech* dedication and might in doing this looks unreal but it works🎉..
*Tischler tech* is a cyber security expert. Only him can look into this situation and get it back.
Certified *Tischler tech* cyber security expert is the best 😊
He has over 9k followers???.
So to bypass 2fa you'd need a sql injection? That's not a 2fa bypass sir, that's just a misleading title. It's already game over when you can extract arbitrary data from the database.
Por favor, adicione faixa de áudio nos seus vídeos. Vai ajudar muito a gente entender melhor.
any promo code for your courses ? :)
Hacking is not in it self not illegal, only when you do it in the wrong way. like destory stuff.
Question:-
Is it possible to brute force the 6 digit authentication code with graphic cards or with anything else in Cybersecurity ?
usually the passcodes refresh and change every minute
yes you can but they expire after like 1 minute
Very cool. Thanks.😁😁😁
Learnings from this video:
1. How to bypass 2fa
2. hacker loi is very handsome
thx for sharing information
Amazing one 🥰
The efficiency of this *Firm tech recovery* is next level. To juggle walk throughs of various angles on the topic delivered to-camera, differnet content per topic from various folks underneath the umbrella of the track list of the larger big band concert itself is engaging and refined. To make a dense taccess like this so digestible is really something. Awesome work jon!!
Sir pls next video on how to find and bypass admin panel of any website.
YOU CAN ONLY DO THAT FOR A WEBSITE WITH HTTP NOT HTTPS
hello can you help me skip the website
Can we do it for Gmail.
I'm just a simple person from Switzerland, but I want to know how awesome it is what you did and what you do *Firm tech Recovery* . I found it difficult to do the steps by myself, thanks to you for being a life saver. I'm really happy seeing his name everywhere in the comments. It says a lot about his good work
Recovery of lost accounts in general seems like a mole to *firm tech recovery* . This video wasn’t helpful and didn’t work a bit. Their name is spelt as *firm tech recovery* & are committed to getting lost accounts back...
I'm glad to get the privilege to learn to know their name and looked it up to see their official website.
*You also need to look their name up to see their website*
thank you sensai
Please make a video with how a hacker bypass my 2FA provided by my Yubikey. :) Thanks!
They do not need your Yubikey if they can get the TOTP key stored on it from the server.
@@valkaielod I don't talk about a TOTP code provided by Yubikey. I talk about 2FA provided by hardware key Yubikey itself (aka they need my key to plug in to their USB port and touch the key). How can they bypass this?
@@aburilusbroadcast That is FIDO2. They can't bypass it unless there is a vulnerability in the chip and they have access to it. Or they exploit the web application.
@@aburilusbroadcast It seems like YT ate my comment. Bypassing the FIDO2 auth used in that scenario is not trivial at all. You either need a vulnerability in the chip YK uses or compromising the server side.
Thank you so much Master
Thank you Mr. Hacker Loi.
This works on ubisoft?
This happened to me 2 years ago and it made me mad 😡 my laptop was stolen and they got into every account I own
I was also in similar situation but the same expert helped me out… He is *Tischler tech*
This guy helped me get mine back. I never believed this could be possible but thanks a lot to him.. *Tischler tech* dedication and might in doing this looks unreal but it works🎉..
*Tischler tech* is a cyber security expert. Only him can look into this situation and get it back.
Certified *Tischler tech* cyber security expert is the best 😊
He has over 20k followers???.
Big thanks Adrian Ruthnik for helping me out. God bless you brotha... I've tried following these steps from the device and location where the account was always logged into and I got a page that says we don't recognize your device. The tutorial video was not helpful tho but Big Ups Jon
Helo sir I also want to learn programming and can u plz teach me plz sir I beg u.
Your work speaks volumes of the kind of man you are. efficient, organized and result oriented well done , Adrian Ruthnik you're soo good at what you do
who would design a backend like that ? sounds like high school project to me :-)
Some of y'all haven't even watched the video but already liking it
Bc we know it's going to be quality content.
Freedom, funny how that works.
@Hello_-_-_-_ and indeed, it was great
@@abdou.the.heretic true talk
yes, you can like it, and after watching you can decide to keep it or revoke it. some ads and autoplay feature will navigate you elsewhere on video end, so it is a best practice to like earlier.