Hey Heath Adams, I am looking forward to buy your courses because I want to become a very good Ethical Hacker. In your Video "How to become an Ethical Hacker: Edition 2023" you said, that you need to know the basics. What should I need to learn before starting your course? Or can I start your course with 0% of knowledge. I never have worked in any IT filed. How can I learn the basics from you? Kind regards
Hello, nice video. This only works if the password not encrypted? Since if you ask for the user and the query grabs the encrypted password it should try to encrypt it "again" in order to check if it is valid right?
I haven't seen this type of injection (SQL Injections are more common), but the recurring theme when it comes to injection attacks is input validation.
I'm practicing nosql injection to solve some HTB CTF but I don't undestand why you converted it into JSON. Can you explain me this? On the Internet I see that converting can help abusing Nosql injection. But why? thanks :D
Hi. I need Realistic and Practical advice. U seem pro. Love your videos. I'm 32, I modifying OS Win & Android, tweaks etc. E.g after trying for 4 days, I created a tweak to Disappear (PowerOffMenu) from my phone's LockScreen, without rooting it. (Telling you this so you know, I'm not hacker but I know how to use computer lol) I know AutoHotKey n few dos & Linux commands. Basically, I'm ZERO at real hacking. So, What should I do first? (A) Get used to Kali? (B) Learn Python? (C) Java? Where should I start so I can see some results also.
Start with the basics. Also depends if you want to do web apps, I would suggest to focus on the following first: html,javascript, cookies, json, databases (sql and nosql),networking (basic networking, different types of requests like post/get etc). Linux commandline (grep,awk,curl etc) Get used to a proxy like burp or zap to intercept requests. Python and Bash scripting next. Then watch a good methodology, i would recommend Jason Haddix his video's to get a proper workflow 😉 After that get ready to deepdive in whatever area you are most interrested in and get really good at that, after that you can diversify.
Fantastic instructor, clear and to the point!
I love this video so much! Simple and clear instructions! So easy to follow for someone like me just starting to dabble into the SQL world!
and not artificially inflated to 30 minutes 😉
I did use the same method and payload in stocker htb today lol great job
I could listen to an audible by Alex any day.
Me too for real.
Now I know how to inject. Thank you Alex!
thank you sir , i Wonderd if is it possible to make the video longer and cover two or more subjects , we are always ready for more really
Excellent! Incredible!
Nice videos. I like this "short video" format.
Increase you mic volume, my speakers are almost at max.
Hey Heath Adams, I am looking forward to buy your courses because I want to become a very good Ethical Hacker. In your Video "How to become an Ethical Hacker: Edition 2023" you said, that you need to know the basics. What should I need to learn before starting your course? Or can I start your course with 0% of knowledge. I never have worked in any IT filed. How can I learn the basics from you? Kind regards
Thank you 🎉
Please make a video on IDOR vulnerability
Hello, nice video.
This only works if the password not encrypted?
Since if you ask for the user and the query grabs the encrypted password it should try to encrypt it "again" in order to check if it is valid right?
Thank you
Good video
How do you protect the application against this attack ?
I haven't seen this type of injection (SQL Injections are more common), but the recurring theme when it comes to injection attacks is input validation.
I'm practicing nosql injection to solve some HTB CTF but I don't undestand why you converted it into JSON. Can you explain me this?
On the Internet I see that converting can help abusing Nosql injection. But why? thanks :D
I think its because mongodb uses json and stores everything as key value pairs, just like json
Best!
Teach me i am Hungary
Hi. I need Realistic and Practical advice. U seem pro. Love your videos. I'm 32, I modifying OS Win & Android, tweaks etc. E.g after trying for 4 days, I created a tweak to Disappear (PowerOffMenu) from my phone's LockScreen, without rooting it. (Telling you this so you know, I'm not hacker but I know how to use computer lol) I know AutoHotKey n few dos & Linux commands. Basically, I'm ZERO at real hacking. So, What should I do first? (A) Get used to Kali? (B) Learn Python? (C) Java? Where should I start so I can see some results also.
Start with the basics.
Also depends if you want to do web apps, I would suggest to focus on the following first:
html,javascript, cookies, json, databases (sql and nosql),networking (basic networking, different types of requests like post/get etc).
Linux commandline (grep,awk,curl etc)
Get used to a proxy like burp or zap to intercept requests.
Python and Bash scripting next.
Then watch a good methodology, i would recommend Jason Haddix his video's to get a proper workflow 😉
After that get ready to deepdive in whatever area you are most interrested in and get really good at that, after that you can diversify.
Hello
please talk louder
first