1
00:00:00,360 --> 00:00:07,370
So that's an issue that we're going to see this, um, reflected in the store, that success in the

2
00:00:07,380 --> 00:00:14,580
small, uh, W stands for down over our Web application and using this admin.

3
00:00:14,580 --> 00:00:15,780
And the password is password.

4
00:00:19,490 --> 00:00:24,490
So now you can see some of these exercises here on the left click on this exercise.

5
00:00:25,310 --> 00:00:29,120
So now what we can do is it's asking for what's your name?

6
00:00:29,940 --> 00:00:32,480
Nicole Coates's.

7
00:00:32,480 --> 00:00:33,420
Hello, Nicole.

8
00:00:33,490 --> 00:00:33,790
Right.

9
00:00:35,480 --> 00:00:44,210
So now what we can do is we can train for, uh, uh, accessors we can train for any group and see whether

10
00:00:44,210 --> 00:00:46,340
it's reflected in our website or not.

11
00:00:51,930 --> 00:00:59,160
So let me open a notepad, so let me take the normal script, so to execute the script, we need to

12
00:00:59,880 --> 00:01:02,310
encode the script in a script, right.

13
00:01:02,780 --> 00:01:04,770
Let's alert off.

14
00:01:05,370 --> 00:01:07,950
So this alert will pop up in a lock box.

15
00:01:07,980 --> 00:01:08,760
It's a high.

16
00:01:14,220 --> 00:01:20,400
So let me go over this and be it in here and know if I submit this.

17
00:01:22,490 --> 00:01:31,490
And you can see Scriptura tight, so, OK, my period did not get executer, so let me know this and

18
00:01:31,490 --> 00:01:38,720
putting the security law in the next year, I will show you how to bypass this exercise just using some

19
00:01:38,720 --> 00:01:39,350
techniques.

20
00:01:42,110 --> 00:01:49,010
So now let me take this one and submit and you can see the results are boxing the height for Kirkuk,

21
00:01:49,550 --> 00:01:52,580
then you can type Nikil and it is hello.

22
00:01:53,010 --> 00:02:00,740
So this is called Xerces Reflektor because it's just refracting whenever you sending Peladon, you can

23
00:02:00,740 --> 00:02:01,720
see here.

24
00:02:02,060 --> 00:02:09,540
And if you submit this, you can see in the you order it says a name has the value of our dollar script

25
00:02:09,620 --> 00:02:16,910
code so you can copy the seawater and send it to your friend or somebody and they will get the height,

26
00:02:17,810 --> 00:02:22,860
but it will be only refractor, it will not get entry in the database.

27
00:02:22,890 --> 00:02:28,980
So now let me go to the store and there is this form.

28
00:02:29,000 --> 00:02:32,650
You need to type the name and intercept message.

29
00:02:33,230 --> 00:02:37,110
That's a good morning and let me sign in.

30
00:02:38,750 --> 00:02:40,380
So now this is saying that name.

31
00:02:40,400 --> 00:02:40,950
Good morning.

32
00:02:40,970 --> 00:02:44,110
So what we can do is we set our tempo.

33
00:02:45,780 --> 00:02:51,370
Let me pass this same payload, which is a lot of read in this book.

34
00:02:52,070 --> 00:02:53,920
So it just right now.

35
00:02:53,930 --> 00:02:58,320
OK, now let me just refresh this bit and see what happens.

36
00:02:59,600 --> 00:03:04,090
So, OK, I'm going to home, OK?

37
00:03:04,100 --> 00:03:07,760
Now I'm going to visit this exercise page.

38
00:03:08,720 --> 00:03:15,380
As you can see, whenever I click on this, I get the high because it this is a shoulder exercise and

39
00:03:15,440 --> 00:03:23,510
whatever I whatever I send the in the previous a message, which is this payload will attach to the

40
00:03:23,510 --> 00:03:24,770
entry in the database.

41
00:03:24,780 --> 00:03:30,910
So whenever I wrote this page that corresponding JavaScript will get executed automatically.

42
00:03:31,490 --> 00:03:39,590
So even when you are an anonymous user, I mean another user, when you click on this axis, you get,

43
00:03:40,940 --> 00:03:43,400
uh, you'll get this, uh, downscale printing.

44
00:03:44,240 --> 00:03:47,660
So this is the difference between Reflektor and stored.

45
00:03:48,170 --> 00:03:52,160
Now, let me go to the set up and reset this database.

46
00:03:53,360 --> 00:04:00,230
So now what I want to show you is I want to show you another technique that is to rewrite the Web page

47
00:04:00,440 --> 00:04:05,480
so you can see some of these hackers posting like website defensing.

48
00:04:05,630 --> 00:04:07,550
We have the Pakistan websites.

49
00:04:07,550 --> 00:04:09,440
We have got another country's Web sites.

50
00:04:09,680 --> 00:04:15,910
And if you go to those Renk, they will they will say the integrated Choma and you will see how could

51
00:04:15,920 --> 00:04:19,550
wait this week, uh, XRX or something like that.

52
00:04:19,820 --> 00:04:26,990
Uh, you think the website is accurate, but did not they just are redirected every other tree to this,

53
00:04:26,990 --> 00:04:28,060
uh, hacker.

54
00:04:28,220 --> 00:04:31,620
Uh, some custom I will show you.

55
00:04:32,060 --> 00:04:40,760
So window dot location dot hypertrophied.

56
00:04:41,030 --> 00:04:50,660
We put this in the uh, if there is a vulnerability in the Web site, you know, if you put the script

57
00:04:50,990 --> 00:04:58,240
and get to do good, then your browser will this page will never get to this hyperlink reference to

58
00:04:58,260 --> 00:04:58,940
Google.

59
00:05:00,990 --> 00:05:01,600
Dot com.

60
00:05:02,970 --> 00:05:06,610
And let me quote this, I'm sorry that because this group.

61
00:05:10,160 --> 00:05:11,630
And let me copy this.

62
00:05:14,890 --> 00:05:23,830
So I'm for showing you how it will be best, and if I submit this, as you can see now, I have already

63
00:05:24,250 --> 00:05:32,050
I got automatically redirected to Google dot com because it's because of this we that a location but

64
00:05:32,770 --> 00:05:38,840
so good place this window with this, uh, hypergraphia, which is guru.com.

65
00:05:39,430 --> 00:05:40,620
So let me create this.

66
00:05:40,630 --> 00:05:45,460
I hope we have understood whatever you put this creperie to get executer.

67
00:05:46,810 --> 00:05:53,780
I know you can also put the document or cookie to get the cookie, but I will show you the cookies during

68
00:05:53,790 --> 00:05:56,410
in the studio after NextRadio.

69
00:05:56,950 --> 00:05:59,710
So now let's go and see the expositional.

70
00:06:00,670 --> 00:06:06,550
Let me take Google and know I'm going to copy this up here.

71
00:06:06,550 --> 00:06:08,680
It just we know the location of.

72
00:06:09,220 --> 00:06:10,750
So we read the script.

73
00:06:12,400 --> 00:06:12,730
Sorry.

74
00:06:12,820 --> 00:06:14,290
OK, I think it's just.

75
00:06:16,480 --> 00:06:21,360
So I would expand this again to make.

76
00:06:23,280 --> 00:06:24,520
So today.

77
00:06:29,920 --> 00:06:38,200
So OK, no, yes, it's just there, but it's structurally sound in this guestbook.

78
00:06:49,370 --> 00:06:51,130
I don't know why it's getting truncated, OK?

79
00:06:51,180 --> 00:06:53,010
Let me, uh, Manuel.

80
00:07:21,260 --> 00:07:25,640
All right, OK, I'm just getting tired of this, I don't know why that input is getting stronger.

81
00:07:25,660 --> 00:07:26,960
This is the text to accept.

82
00:07:27,320 --> 00:07:28,460
OK, let me open this.

83
00:07:33,310 --> 00:07:39,710
So all these connections, you can also intercept these requests in the past and you can edit there

84
00:07:39,790 --> 00:07:41,770
also look at all the action.

85
00:07:41,770 --> 00:07:47,470
You can take this one or this one is to one and you can pursued also.

86
00:07:47,500 --> 00:07:51,250
But just for simplicity purposes, I also do in the broader reserve.

87
00:07:51,670 --> 00:07:55,330
But no, this textbook is not showing me in put.

88
00:07:55,750 --> 00:07:56,910
It's just truncating.

89
00:07:56,910 --> 00:07:57,170
Right.

90
00:07:57,490 --> 00:08:04,570
So there may be the Dallas script or any this limit or the next Starbury.

91
00:08:06,770 --> 00:08:13,090
So this is a better time to show you the Batsuit how to intercept.

92
00:08:13,160 --> 00:08:18,640
I have already shown you, but just in a practical way, not so much in terms of design.

93
00:08:18,860 --> 00:08:25,520
So whenever there is a script like this in a concert which is not allowing you to type some characters,

94
00:08:25,520 --> 00:08:27,760
you can just intercepted person.

95
00:08:29,330 --> 00:08:37,580
So let me say, Nikil, let me let me say hi signing this.

96
00:08:37,580 --> 00:08:39,080
And you can see the request here.

97
00:08:39,500 --> 00:08:44,290
And instead of this message, hi, I'm going to copy this here.

98
00:08:45,620 --> 00:08:47,770
Now you can see my full screen.

99
00:08:47,780 --> 00:08:49,480
Peter has been successful.

100
00:08:49,490 --> 00:08:52,540
I can say, oh, forward.

101
00:09:14,010 --> 00:09:20,430
OK, yeah, I read my script, let me take another fruchter, I go.

102
00:09:39,120 --> 00:09:43,200
Gates, this group has not been sending all this

103
00:09:46,130 --> 00:09:47,210
over this year.

104
00:09:47,250 --> 00:09:49,990
Maybe that's why we're not getting reduction.

105
00:09:51,250 --> 00:09:57,450
Let's try another time stamp and at the end of this.

106
00:10:04,560 --> 00:10:06,530
All right, let me put it in here.

107
00:10:08,720 --> 00:10:10,610
So now order for this.

108
00:10:13,320 --> 00:10:21,450
So, Carol, just the request has been brokered before, which is created a new line, so, no, I just,

109
00:10:21,640 --> 00:10:26,070
uh, dated the, uh, Backspacer.

110
00:10:26,190 --> 00:10:30,560
So now we have successfully rerouted to guru.com if I go again.

111
00:10:31,470 --> 00:10:36,000
So now I need to, uh, do the pilot again.

112
00:10:36,030 --> 00:10:40,690
If I go for this exit, I get a little guru.com.

113
00:10:40,740 --> 00:10:44,720
So that's how you will see that you will do the page.

114
00:10:44,730 --> 00:10:45,810
Dessaix defacing.

115
00:10:46,260 --> 00:10:47,460
So what are you going to use?

116
00:10:47,700 --> 00:10:54,290
You need to first upload, uh, file to this server and what are you gonna do?

117
00:10:54,550 --> 00:10:56,550
You know, that is not true.

118
00:10:56,910 --> 00:11:01,540
And the path to this chamber, you have a circular com slash.

119
00:11:01,860 --> 00:11:04,040
Uh, the index started to accomplish.

120
00:11:04,350 --> 00:11:10,830
So whenever you just going into it for the world, it will be redirected to this.

121
00:11:10,930 --> 00:11:17,170
Uh, I tell you how to play so you can see the store and you can see guru.com.

122
00:11:17,190 --> 00:11:19,010
So that's how you get the reaction.

123
00:11:20,880 --> 00:11:25,150
So I hope you have understood what this will do about this.

124
00:11:25,710 --> 00:11:26,370
Understood.

125
00:11:26,370 --> 00:11:26,940
Exercice.