Hackers can change your passwords with this exploit..
Vložit
- čas přidán 14. 08. 2023
- Checkout AppMySite and convert your website to native mobile app in minutes!: www.appmysite.com/?ref=intern...
In this video, I demonstrate Host Header Injection and how hackers exploit this vulnerability to reset passwords of users on a website.
DISCLAIMER: This video is intended only for educational purposes. The concepts showcased in this video are completely from a penetration testing perspective. I do not promote or encourage any illegal hacking activities.
Host header injection vulnerability exists when a website takes the Host value from the request header and processes it in an operation like construction the password reset URL for a user. When this happens, the request is directed to the attacker's server instead of the actual web server of the website.
In this video, I showcased this vulnerability on a retired HackTheBox machine called Forgot.
Check out this machine here: www.hackthebox.com/machines/f...
Thanks for watching!
SUBSCRIBE for more videos!
Join my Discord: / discord
Follow me on Instagram: / teja.techraj
Website: techraj156.com
Blog: blog.techraj156.com - Věda a technologie
Bro I really like your content, your content is very very good not like other trash channel, I suggest you to create a parallel channel where you can upload small reel on your content , probably in a year you will be famous among developer
Yes that's a very good opinion
Totally Dope Content in this channel. Recommended to all my friends. Great work. Keep going brother will support you !
hey teja from where i should start learning hacking any roadmap, you suggest to beginners
4:40 does gmail scans the URL on our Android phones?
Hey tech raj I recently watched your video relate to discord hack. I want to ask something if a hacker grabs your token can he get hack my other ids too or get my ip?
Such a nicely and neatly explained video❤❤❤
Many people are connected to my wifi but i can't see their mobile name only mac address and ip address i can see ...can u tell me solution how can i see their mobile name
Why you won't make a cybersecurity course
Needs help how can l hack an aviator predictor game on sports bet please
Broo someone Miss use my photos please help me to delete that photos please reply fast
How to visit the website.
bro that was awesome.. I learnt this today after so long days.. please make such videos on bug bounty please
Thanks! Wow!
Sir how to terminal htb forgot kashi kare
How to visit website
How to find these vulnerability in real websites
Everything clearly explained❤
Does that work with Microsoft accounts too?
Mine got hacked and the guy chaged my E-Mail
Well see about that lmao@@DDD9216A
very situational but interesting learn either way
I have one old frnd his name is raja.. n3t attacker like this.. before 10years .. is it you ?
So in summary, we just put our ip address then wait for the reset token. Our priority is reset token.
I know this before, and i tried modifying host!, now i am using env for host
Thank you so much
plz tell me where i can learn linux that can help in cyber security?
Deangelocrack
She can assist you
bro y r u not replying
Commenting just to boost the algorithm
damn bro this thing is scary
Any one help me i have infinx phone hot8i i deleted my sms by mistake recovery possible please tell me
Deangelocrack.
She can help you
@Smithgeaoge yes i need help
@Smithgeaoge ok tell me how is this possible
What is this vulnerability known as ?
By the way very much informative videos and great presentation got to learn so much new things.👍❤
host header injection vulnerability i believe
does this mean i can get back my old xbox account and finally retrieve the memories that i thought were lost forever?
nevermind i just realized that this is about hacking websites or smth lol
Yes
No
Ok bye
brh i know i cant @@rajaconstantine
nice👍👍🤟
🔥
Big fan
What you do for living bro
Hi
😮
Op
Your contents are not beginner friendly for real
Many you really are shadow banned