How WordPress Websites Get Hacked (zSecurity Comment CTF Walkthrough)
HTML-код
- Опубликовано: 29 июн 2024
- This video shows the most common method that hackers rely on to hack wordpress websites. All of this is done on our lab, the zSecurity Comment CTF which can be accessed at the bottom of this page
zsecurity.org/competition
🧠 My hacking courses 👇
zsecurity.org/courses/
---------------------------------------------------------------
zSecurity Company - zsecurity.com/
Community - zsecurity.org/
Facebook - / zsecurity-145325078145...
Twitter - / _zsecurity_
Instagram - / zsecurity_org
Linkedin - / zsecurity-org
---------------------------------------------------------------
⚠️ This video is made for educational purposes only, we only test devices and systems that we own or have permission to test, you should not test the security of devices that you do not own or do not have permission to test. ⚠️
---------------------------------------------------------------
Time Stamps:
00:00 - intro
01:14 - Lab Access Instructions
03:31 - Hacking a WordPress Website
06:53 - Exfiltration
13:13 - Hacking Windows Server
16:50 - Privilege Escalation on Windows Server
Why zaid didn't explain us...
Zaid you explanation are damn good....
After a long time 🥺, love From India 🇮🇳
My favorite teacher love from India
Now this is some quality content!
Big Fan bro... Keep Posting Videos 🔥🔥👍👍
You are the best bro I am watching your content since 2019 and your content is the best
Awesome, learnt some new tricks. Keep up the good work!
Finally Zaid remembered that he has a youtube channel 😅😂
at work i had to listen to some presentations and all of them mentioned wordPress i never heard of it and now i see it in your video 😅 thats very rare
Btw really nice tutorial
Loved the way it was executed.
Always i appreciate your contribution , i wish one day to join in Your course
Respect from india 🙏🙏🙏🙏.Waiting for next video..........
Finally got around to opening this email, thanks!
My first hacking teacher zaid
👏👏👏👏👏👏 Bravo 🎉 the best content I’ve watched
Thank you. It is very helpful for me.
Finally you know you have a youtube channel
Thank you Dmitri for making Zaid upload a video 😂❤️
🤣
It seems Zaid is so busy these days...Hope he is working for us like new courses 😀❤️
I liked the video and I watched it with a great interest. I even understood many things of what happens because I bought and finished the website hacking course on Udemy recently but there are still things that I didn't understand properly like why did Dimitris used nano to edit a file and there are still things but it is because I am still new in this. But the video was very good adn informative. Also Dimitris explained it in a proper manner.
ACTUALLY USEFUL! THANKS! :)
After long time.....👍👍👍👍👍
very very good Content Friends, thanks 4 share
Keep it up
Practical content ❤️
Big fan of zaid ❤️❤️❤️❤️❤️
13:08 - Not true! passwords of users are not written in clear text within the database / sql file. I compared it with just a new, normal Wordpress site and the password is hashed, NOT CLEAR TEXT!
yes, right. am a WordPress developer and you are right.
@@webdev6926 Guys! After the "rockyou" ..ehm, "incident" I REEAALLY hope there are NO MORE passwords stored as plain text, never EVER AGAIN! :D :D
You are always great
Big fan sir 🔥
But WordPress has some ways to secure the website, which seems to be not activated here..?? Are those security packages enough to secure website??
Great Content!!
Great Video. Where are you from?
Very nice man
Luv frm India ❤️
Great Zaid
Brother, I'm doing your course and it' been fun. But I'm facing a problem. Wlan0 is not showing up in kali linux. Can you please make a video about it. it will help me a lot. Will be waiting
Sir In ethical hacking course still how many sections we need wireless adaptor
Do you have courses that shows how the cloned websites crom setoolkit work for the external network and captured both username and password for acadamic knowledge? Thanks
Good 2 c ur videos again
141th guy to like 👍 👍
Zaid need more likes
Zaid upload video in a month
Sir i just download your custom kali linux latest virson its in vmware so i installed but its not starting its keep saying "Oh no somthing has gone wrong " the old virson of custom kali that you give it was for virtual box its working fine but new one is not working please make video on how to install and if possible please make for virtual box also
Nice video
Oh God I didn't know that it was such easy to exploit windows and WordPress sites I am actually shocked..
My techer love ❤️ from India
Sir, can you do about how to Encrypt payload?
love it
Sir No distribute antivirus scanner doesn’t work for me, can u suggest me a better one??
Can you make a video on hacking freelancing
when i get the notification already 1001 people watched
this is not fair 🤣🤣
Sir I can't download the latest version of your Kali Linux, I don't know that if your website is crashing or there may be any other problems 😭
finally mate
This is what a typical hacking course looks like on youtube.
do you give course in hindi also sir
Kratos good choice 👍
The requested URL was not found on this server what can i do
Hi friends i have a question that makes me confused, did he use private ip address to connect with the website ? I think private ip is only accessible inside the network, any info explanation friends
He used open vpn which is given by tryhackme itself. And he is connected to tryhackme network ✌🏼
Love from india
i have one question brother ....i asked many youtubers here but no body answer....
the question is "i master php5.6 and 7 but when i google about php most sites says that php is not good and python and java are the best...and second question php get now php8 and it is different ....this makes me confused and i dont know what should i do ?
depends on your needs and goals! there is no programming language that is "panacea". one is better for job A, the other is better for job B and C is best for job C! example: c++ is better if you deal with real-life, quick and responsive hardware on your backend, like hardware slot machines. php is good enough though, to carry software slotmachines backend; and python is as versatile as it is a mess, but boy if you want to script-quickly-those tickets for the Metallica concert (ca. +120000 ppl)... So, do your research, sketch some drafts, make some tests and you'll be all set! :)
is it worth to learn to hack and program
Please tell me, is there any way to bypass hsts in mitm attacks?
mitmf & bettercap
first
*_like and comment._*
Kudus to u bro👍
Sir this is your student Parinith studying in grade 8 sir I want to contact you please
Hi,zaid I want to another wifi passwords hacking needs please help me
hey i had a question can someone spy with a alexa echo dot, i mean like eavesdrop, if yes, then how?
Can Itheme protect you from these attack?
When I type ip website is not opening can anyone help me how open website with ip
When I was on Omegle, Someone says my Name. I was so pissed. Please tell How they did??
🤣🤣🤣
I buyed your courses in udemy but. Not showing course still it showing u should buy course wast of time. Money lost but no use
Sir how to turn off monitor mode in kali linix.
ifconfig wlan0 down
iwconfig wlan0 mode managed
service NetworkManager restart
service wpa_supplicant restart
ifconfig wlan0 up
:)
Zaid how to hack insta without wordlist by mitmf.
Second
plz do a give away
So, how we can protect such attack? Explain next?🙄
Cool
Which os is this ?
Can i access to this CTF directly from THM ?
No it's our own ctf so you have to use the link in the discription
What a noobs turns on apache directory listing ON?
Just use wapalyzer
wow python is a monster
L O V E F R O M E T H I O P I A
Everything is waste because no one is telling that how to get private ip of website ,don't get fool 😞
Very late
HOW TO BECOME ME HACKER 😂😂 HELP ME PLEASE
$100 is very poor reward. even tho this comment worth over $100+.
Back again ~ copy of hackersploit
You are not copying someone if you use the same 2 second greeting XD