Bug Bounty Hunters are WRONG about this‘ OR 1=1
Ғылым және технология
Hey everyone! This video is all about SQL Injection. Enjoy!
🚀 Learn about the easiest bug class here - • Bug Hunting is easy if...
📩 Download the SQLi Cheat Sheet here - bit.ly/sqli_cheat_sheet
👍🏻 Like, subscribe, and turn on notifications for more bug bounty insights
📬 Comment below with your best SQLi payloads
💻 Happy Hacking!
Follow me on
✖️ - / bughunterlabs
Thanks for watching,
BugHunterLabs
Chapters:
00:00 - Intro
00:40 - CVE-2024-2879
01:20 - SQLi Example
02:35 - Basic SQLi
03:09 - Error-bases SQLi
03:21 - Union-based SQLi
03:39 - Blind SQLi
03:48 - Boolean-based SQLi
04:11 - Time-based SQLi
04:29 - Out-of-band SQLi
05:15 - SQLi identification
05:56 - Wordlists
06:43 - Advanced Injection Points
07:47 - Second-order SQLi
08:22 - sqlmap
10:27 - Outro
Пікірлер: 31
Coming back to cybersec after a 3 month break, ur videos are indeed worth watching. You definitely earned a subscribtion!
@bughunterlabs
13 күн бұрын
Thanks a lot :)
Great video with Catchy thumbnail. Keep it up man 👍
I started to addict your videos
Yet another incredibly helpful and fantastic video! Your content consistently exceeds expectations. Keep up the excellent work!
@bughunterlabs
14 күн бұрын
Thank you :)
Very good quality videos. I see that you put a lot of time and effort into this. Keep going!
@bughunterlabs
14 күн бұрын
Thank you! That means a lot! :)
@l00pzwastaken
14 күн бұрын
I watch both of you thanks both
Please cover Ghauri for time based blind SQL injection using only http request with http headers and without headers using custom headers like x-forward-for or similar private headers. Technique also bypass WAF. Hope to see it soon. Thanks 🎉❤
Great content
Nice video bro
Please create a seperate playlist for vulns !
keep up bro
Please make a video on SSRF to gain metadata
Next topic CSRF AND OPEN REDIRECT PLEASE ❤
@bughunterlabs
14 күн бұрын
Noted!
Thanks I am learning SQL injection now already completed xss . Thanks for showing how it's performed. What you think about adding Broken Access Control to your video pipeline till .Also thanks for checklist
@bughunterlabs
14 күн бұрын
BAC is on the list :)
COOL!😀😃😎👍
Your video content is too good ❤
@bughunterlabs
14 күн бұрын
Thank you 🙌
Bro this content is golden. However i feel like you need to work on the thumbnails
@bughunterlabs
14 күн бұрын
Thank you. How would you improve the thumbnails?
hey man, if i dont have burpsuite pro do you think its worth more to focus to sql, ssrf, xss ,or what ? i've found idor and xss bug but xss is out of scope
@bughunterlabs
14 күн бұрын
Don't buy Burp Suite Pro until your bounties cover it. There are free tools for everything you need to do out there. Have a look at ZAP and Caido as well. You can even find sql, ssrf, xss with curl and developer tools :)
Awesome videos you got here im loving the format you got keep up the awesome work. As someone studying cybersec for red team and pentestibg purposes its a great resource.
Yeah , sometimes sql injection occurs in cookie and user-agent..
I'll not say this again kid: where are the half an hour/hour long videos? I need this on my table asap otherwise you're fired
@bughunterlabs
3 күн бұрын
Haha. These videos take a long time to make. I will have a look at how I can get to 1 hour.
meh sql injection is shitty php code only