Session Hijacking Attack | Session ID and Cookie Stealing | SideJacking
HTML-код
- Опубликовано: 4 июн 2024
- #session_hacking #sidejacking #xss
Understanding Session Hijacking, also called side-jacking, is important for web developers, aspiring security engineers, and Internet users in general. Session Hijacking is a technique hackers use to steal session IDs to gain access to private systems and personal accounts to enjoy and take advantage of advanced privileges. Session Hijacking allows attackers to penetrate vulnerable systems by stealing the IDs of users to perform privileged actions taking advantage of the trust between the victim's browser and the system. Social engineering techniques are used to get the victim to click a link or submit a form that will open the door for the attacker to perform malicious actions.
In this video, I explain Session Hijacking by starting with a typical scenario of a seemingly different but very similar case. The story will help you get a general idea. Then we dive deeper into what exactly a session is, what is session hijacking, how it works, types of session hijacking attacks, and ways to defend against these types of attacks.
-------- Video Outline --------
00:00 Understanding the danger
01:45 Understanding Sessions and How They Work
03:45 Session Hijacking
05:43 Types of CSRF Attacks and How They Work
10:55 How to defend against CSRF Attacks
Check out more of The TechCave Videos:
* • What is a VPN & How do... - What is a VPN and How does it work? VPNs Explained!
* • CSRF Explained | Under... - CSRF Explained | What is XSRF?
* • What is XSS? | Underst... - XSS | Cross-Site Scripting
* • What is CORS? | Cross-... - CORS | Cross-Origin Resource Sharing
* • The Http and the Web |... - HTTP and The Web
* • APIs | REST | REST API... - REST APIs
* • What is DevOps | Under... - DevOps
* • Web Services - Demysti... - Web Services
* • Software Architecture ... - Software Architecture
Artwork and Illustration: Flaticon.com
Stay Tuned! - Наука
Good to see you back🔥🔥🔥
these videos are great bro and just really well made was surprised it wasn't a company or any website or anything as well as no videos in forever
Informative and entertaining as always ❤
Great explanation! Thank you so much!!
excellent content! Keep bringing up these attacks and their solves
!
Hi, you have such a amazing way to simplify things thanks from algeria
Super informative 🔥🔥
explained in simple terms very good indeed
Great video thank you!!
great job ! helped a lot
Awesome explanation
Great video
Thanks a lot bro ♥
Thanks a bunch
These defensive techniques can only be implemented on the server side…they’re of no use to a user.
Best tip for users are: (a) avoid public wifi i.e. use mobile data; (b) if using public wifi then use a VPN; (c) logout of all sessions - don’t just close the browser tab;
…any other tips?
Can we get those PPT Slides 🙃
this video deserves more likes
Thank you 😊
Thankyou much ))
Love it
Nowadays almost every websites uses https,then what’s the point of this video of its so outdated?(just asking)
Use http only at the cookie level and SSL
I evolving from neanderthal now, ty
Am here to learn more because my beloved RUclipsr have his channel stolen due to this kind of attack. Your videos are very informative and I would definitely want to learn more about cyber security from you !