Race Conditions - PART 2 | Exploiting Time Sensitive Vulnerabilities | Portswigger Labs

Поделиться
HTML-код
  • Опубликовано: 14 окт 2024
  • Race Conditions are more than just Limit Overrun Vulnerabilities. They are many more variations to them and many scenarios in which they are applicable. Amongst many, using race conditions to generate a time-sensitive password reset token is one possibility (if the reset password endpoint uses just time as the seed phrase and is vulnerable to race condition vulnerability). Check out the video.
    Comment your opinions...
    Portswigger URL: portswigger.ne...

Комментарии • 6

  • @m.abhiteja7337
    @m.abhiteja7337 3 месяца назад +1

    Awesome video! You really nailed the explanation of race conditions. I love how you made such a complex topic easy to understand with your clear examples. Your deep knowledge really comes through. Can't wait to see more videos like this from you! 💯 🔥

    • @gddaredevil
      @gddaredevil  3 месяца назад

      @@m.abhiteja7337 Thank you! It means a lot to me. Glad it helped...

  • @nikhilvasantham7599
    @nikhilvasantham7599 3 месяца назад +1

    detailing on point 🔥

    • @gddaredevil
      @gddaredevil  3 месяца назад

      @@nikhilvasantham7599 Thank you. Stay tuned for more.

  • @hemanthbabumupparaju3622
    @hemanthbabumupparaju3622 3 месяца назад +1

    Why does the random generator need an input?

    • @gddaredevil
      @gddaredevil  3 месяца назад

      @@hemanthbabumupparaju3622 Because, randomness isn't something feasible for a computer. A computer can perform many complex tasks and calculations by following a set of logical steps but, it can't generate anything random out of nothing. For e.g., when I ask you to say a random number, you give out a number but a lot of thought process happens in the subconscious mind; a computer isn't capable of that. So, it takes some inputs as seed phrases (input to random generator) and compounds upon it, to generate something completely different.

Следующие
Автовоспроизведение
Race Conditions - PART 3 | Exploiting Partial Construction Race Conditions | Expert Portswigger Labs16:17Race Conditions - PART 3 | Exploiting Partial Construction Race Conditions | Expert Portswigger Labs
Race Conditions - PART 3 | Exploiting Partial Construction Race Conditions | Expert Portswigger Labsgd daredevil
Просмотров 57
Microservices are Technical Debt31:59Microservices are Technical Debt
Microservices are Technical DebtNeetCodeIO
Просмотров 509 тыс.
Turning DREAMS into SUCCESSFUL Businesses: The STRATEGIES of Jack Ma #jackma35:19Turning DREAMS into SUCCESSFUL Businesses: The STRATEGIES of Jack Ma #jackma
Turning DREAMS into SUCCESSFUL Businesses: The STRATEGIES of Jack Ma #jackmaPowerful Mind
Просмотров 25
Trivia Game But I Lie Half The Time36:38Trivia Game But I Lie Half The Time
Trivia Game But I Lie Half The TimeMagic The Noah
Просмотров 520 тыс.
GloRilla - WHATCHU KNO ABOUT ME ft. Sexyy Red (Official Music Video)02:47GloRilla - WHATCHU KNO ABOUT ME ft. Sexyy Red (Official Music Video)
GloRilla - WHATCHU KNO ABOUT ME ft. Sexyy Red (Official Music Video)GloRillaVEVO
Просмотров 3 млн
Ohio State at Oregon | Highlights | Big Ten Football | 10/12/202403:10Ohio State at Oregon | Highlights | Big Ten Football | 10/12/2024
Ohio State at Oregon | Highlights | Big Ten Football | 10/12/2024Big Ten Network
Просмотров 89 тыс.
Washington Commanders vs. Baltimore Ravens Game Highlights | NFL 2024 Season Week 612:43Washington Commanders vs. Baltimore Ravens Game Highlights | NFL 2024 Season Week 6
Washington Commanders vs. Baltimore Ravens Game Highlights | NFL 2024 Season Week 6NFL
Просмотров 1,3 млн
This is How I Scrape 99% of Sites18:27This is How I Scrape 99% of Sites
This is How I Scrape 99% of SitesJohn Watson Rooney
Просмотров 121 тыс.
Everything Starts with a Note-taking System21:23Everything Starts with a Note-taking System
Everything Starts with a Note-taking SystemMischa van den Burg
Просмотров 256 тыс.
Python for Hackers: Exploiting a Restricted SQL Injection Vulnerability15:07Python for Hackers: Exploiting a Restricted SQL Injection Vulnerability
Python for Hackers: Exploiting a Restricted SQL Injection VulnerabilityMr.Checker
Просмотров 955
Best Ways to use NotebookLM (over Perplexity) for Content Research15:14Best Ways to use NotebookLM (over Perplexity) for Content Research
Best Ways to use NotebookLM (over Perplexity) for Content ResearchGrace Leung
Просмотров 41 тыс.
My Favorite Auth Library is Getting Deprecated12:27My Favorite Auth Library is Getting Deprecated
My Favorite Auth Library is Getting DeprecatedBen Davis
Просмотров 16 тыс.
THE VULNERABILITY OFTEN IGNORED: RACE CONDITIONS | 202317:29THE VULNERABILITY OFTEN IGNORED: RACE CONDITIONS | 2023
THE VULNERABILITY OFTEN IGNORED: RACE CONDITIONS | 2023BePractical
Просмотров 5 тыс.
Become a bash scripting pro - full course36:00Become a bash scripting pro - full course
Become a bash scripting pro - full courseCODE IS EVERYTHING
Просмотров 61 тыс.
If Your Tech Job is Comfortable, You're in Danger20:57If Your Tech Job is Comfortable, You're in Danger
If Your Tech Job is Comfortable, You're in DangerThriving Technologist
Просмотров 11 тыс.
I'm 59. If You’re Over 40, Watch This9:04I'm 59. If You’re Over 40, Watch This
I'm 59. If You’re Over 40, Watch ThisAzul
Просмотров 27 тыс.
Sparring day 💀👏👏 #teamsanchez #tips #boxeo #boxing #humor00:19Sparring day 💀👏👏 #teamsanchez #tips #boxeo #boxing #humor
Sparring day 💀👏👏 #teamsanchez #tips #boxeo #boxing #humorteam Sanchez
Просмотров 1,1 млн
Ненавижу клещей... #zakatoon #анимация #клещи00:17Ненавижу клещей... #zakatoon #анимация #клещи
Ненавижу клещей... #zakatoon #анимация #клещиZAKATOON
Просмотров 417 тыс.
А я с первого раза прошла (2024)01:00А я с первого раза прошла (2024)
А я с первого раза прошла (2024)Екатерина Ковалева
Просмотров 137 тыс.
САМЫЕ СЛОЖНЫЕ ИСПЫТАНИЯ В ТВОЕЙ ЖИЗНИ!🙀Попробуй пройди🤯@Koltooov00:48САМЫЕ СЛОЖНЫЕ ИСПЫТАНИЯ В ТВОЕЙ ЖИЗНИ!🙀Попробуй пройди🤯@Koltooov
САМЫЕ СЛОЖНЫЕ ИСПЫТАНИЯ В ТВОЕЙ ЖИЗНИ!🙀Попробуй пройди🤯@KoltooovМишАня
Просмотров 867 тыс.
КОГДА МАМА ВИДИЬ У ТЕБЯ ЧТО-ТО НОВОЕ00:20КОГДА МАМА ВИДИЬ У ТЕБЯ ЧТО-ТО НОВОЕ
КОГДА МАМА ВИДИЬ У ТЕБЯ ЧТО-ТО НОВОЕKatya Klon
Просмотров 80 тыс.
Мобилизация Набирает Обороты🔥Корея Направляет Свои Войска?⚔️Курская Битва🎖 Военные Сводки 14.10.202414:20Мобилизация Набирает Обороты🔥Корея Направляет Свои Войска?⚔️Курская Битва🎖 Военные Сводки 14.10.2024
Мобилизация Набирает Обороты🔥Корея Направляет Свои Войска?⚔️Курская Битва🎖 Военные Сводки 14.10.2024Военные Сводки
Просмотров 531 тыс.
FAKE SITUATION ❗️Все действующие лица - актеры, ситуация имеет развлекательный характер 🔥00:11FAKE SITUATION ❗️Все действующие лица - актеры, ситуация имеет развлекательный характер 🔥
FAKE SITUATION ❗️Все действующие лица - актеры, ситуация имеет развлекательный характер 🔥NEVERLOVE
Просмотров 58 тыс.
Это не согласовано с Кремлём: Кадыров провёл военный парад и улетел за границу20:27Это не согласовано с Кремлём: Кадыров провёл военный парад и улетел за границу
Это не согласовано с Кремлём: Кадыров провёл военный парад и улетел за границуРоман Цимбалюк
Просмотров 460 тыс.