Web App Testing: Episode 1 - Enumeration
Vložit
- čas přidán 6. 07. 2024
- 0:00 - Introductions/Welcomes
5:47 - whoami
7:25 - Course learning objectives
11:30 - Important TCM resources
14:03 - Web app resources
26:15 - Five stages of ethical hacking
30:30 - Reconnaissance overview
34:30 - Identifying target to enumerate
36:15 - Using sublist3r to identify subdomains
40:50 - Using crt.sh to identify subdomains
44:45 - Setting up proxy for Burp Suite
46:50 - Enumerating with Burp Suite
1:05:00 - Credential stuffing/password spraying theory/tools
1:13:50 - Using Nikto as a vulnerability scanner
1:16:10 - Enumerating cipher strength
1:18:07 - Using nmap for fingerprinting
1:19:55 - Actively scanning with Burp Suite Pro
1:28:30 - Reviewing Juice Shop
1:31:43 - AMA begins
Resource List
Juice Shop:
github.com/bkimminich/juice-s...
bkimminich.gitbooks.io/pwning...
OWASP Testing Guides:
www.owasp.org/images/1/19/OTG...
github.com/tanprathan/OWASP-T...
Bug Bounties:
bugcrowd.com/
hackerone.com/
www.synack.com/red-team/
www.guru99.com/bug-bounty-pro...
Education:
www.elearnsecurity.com/course...
portswigger.net/web-security
www.giac.org/certification/we...
www.amazon.com/Web-Applicatio...
❓Info❓
___________________________________________
Hire me: tcm-sec.com
Course info: www.thecybermentor.com/zero-t...
Contact (professional inquiries only, please): info@thecybermentor.com
📱Social Media📱
___________________________________________
Website: thecybermentor.com
Twitter: / thecybermentor
Twitch: / thecybermentor
Discord: / discord
LinkedIn: / heathadams
💸Donate💸
___________________________________________
Like the channel? Please consider supporting me on Patreon:
/ thecybermentor
Support the stream (one-time): streamlabs.com/thecybermentor - Věda a technologie
I hope you enjoyed this video! If so, please consider dropping a like and subscribing.
Bro, how di contact you ???
Enjoyed? Seriously? I watched your whole WAPT course and it's unbelievably awesome, totally loved it, enjoyed every moment and currently appearing for PNPT and then EJPT, thankyou soo much sir :)
Happy to have found your channel by
Hey man thanks again! Excellent work and hope u never get tired of helping us who are aspiring cybersec people.. take care bruh
I'm a student and I know basic full stack developement, and started this series in quarantine as I wanted to know about security REALLY GREAT CONTENT !!
This channel is a national treasure! Thank you, Adam!
Great work man this's my first time watching you and I'm glad I found this channel .
I'm glad to have you
Ohh!finally found this gold.i was in search of this for a month.
Thank you TCM!
Love from this side.
Best infosec youtuber, this websec serie is awesome. You are awesome
Thank you!
Best CZcams tutorial I've ever seen..! Love from Bangalore, India ..!
You jhaddix and stok as well as others are paving the way for neophytes bless you and all who come after thank you for your work
You're very welcome!
@@TCMSecurityAcademy I just turned 25 and the only present I want is to find a bug haha thank you for the work you put out it truly does help
Thanks for this, have a nice day
This is a great course. You are making some very useful videos.
Thank you sir...this is incredible... I was searching from many time and finally find this...and it reallly worth it sir...plz continue this series... Loved this😃😃😃
You know what :D I never see somebody like that before you are KING Thank you sir :)
Great stuff mate.great stuff
Great videos man! Keep it up
from today i became your die hard fan bro. thanks for great content.
Glad to have you!
Can't wait for the next episode
Keep up the good work sir ❤
thanks a lot bro.....u r just great and keep posting
Scanning and enumeration is the fun part honestly
I have a question when you get a client for a pentest how do you verify that the person is the actual owner of the website?
QualiittttttttttyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyyY! I am really IMPRESSED by your content quality, sir. Thanks for all your hardwork. Hope I will soon be capable to repay you. Keep rocking man!
Also, i would suggest you "uBlock" instead of "ablock" as an adblocker. Oh and i did disable the blocker for your video and watched a whole ad of 1:20 minutes :)
What's the difference between network penetration testing and web application penetration testing? Do you need to know both to be a bug bounty hunter?
Best cyber mentor of my life
Best lesson on u tube 👌 ❤️❤️❤️
Great work man .. keep going and i hope so that you perform a lot of bug bounty to learn it quickly ..
ישראלי?
What are the requirements for this series? html, javascript knowledge ? or Do I need to finish zero to hero?
Thanks
Basic knowledge helps but is not required. Zero to hero has nothing to do with this course.
Thank you so much... you are awesome teacher.
u the best mentor! period!
Thanks for teaching sir.
Hey so TCM mentioned the darknet diaries about a podcast talking about a company that got pentested because the pen tester didn't do the reconnaisance procedure properly and hacked a company with very similar names etc. Does anyone know which episode that is on the darknet diaries podcasts?
1:21:13 I get this page on another site when I test for xss and there's a blacklist. Accepted words don't give me the same page so it's not necessarily a ban. I don't know if your case is different since I wasn't crawling the site like you did.
Oh, no, I am banned lol
sir what is the basic prequisite knowledge required to start this course as i even dont know basic html javascript css php as well so first off all should i go for these topics first to get the best fromyour course
Will you continue this series? btw thanks!
it was a nice video I learn a lot of thanks for making a video, I'm new to in this field. I have some question for example
You are assigned to conduct an ethical pen test for a mid-size company.
1. How will you prepare for your test.
2. What tools and techniques will you use.
3. What goals are you trying to achieve during your test.
Thank you
Is there anyway I can receive a paper copy of the book or is it strictly ebook?
best wishes for your journey
Can we learn Pentesting from scratch on this playlist plz? or there are some prerequisites
Lol how many attempts to upload this video. Thumbs up for perseverance. 👍
subscribed bro, thank you for doing this
Where can we get a copy of the checklist that you were talking about? Sorry, I am just not seeing it!
Awesome Video!
You said BurpSuite Community Edition also has the scan option.... But i don't know why my scan option is grayed out... Can't run a crawler... Can you help?
clear all, thanks sir
Is passive scanning illegal if you don't have permission
? Using sublist3r for example?
It's all public information, so in my opinion, no.
When in kali firefox ESR browser I set proxy to 127.0.0.1: 8080, for the purpose of Burpsuite same as explained by TCM. But the internet is not working Any advise?
Try to put interception to off, and if you can surf the internet as normal, then it's working properly. All request you made will first come to Burp, and you need to forward it for the page to continue. Or maybe you haven't installed the certificate for enabling burp to run on https as well.
The tools you mentioned in the first are those non automation tool.
Because there are many websites on the hacker one that do not grant permission for automation scanner tool
Is this course helpful today as well? Should i start it!
how to find whether application has swagger api or not through fuzzing any wordlist or tool to find
Hi want to learn penetration testing. what should i do which course should I take. i am working as QA engineer. but want to switch my career as a penetration tester. can you help me please
The course info link in the description of the video is not working btw
Hi TCM!! Hey does anybody remember the name of the book that he recommended? Was it "The Web Application Hackers Handbook"????? Thanks in advanced!
Yes
@@gbravy Thank you sir.....much appreciated......
Sir can you help in window application Penetration testing
And since im training in pentesting, bug bounties would have to be on my later down the road learn right? Worry about the other stuff first or?
Nvm
Thank you so much!
Wonderfull video on CZcams
I am not able to use the scan option as it is greyed out. at 56:30
What should I do?
@The Cyber Mentor, Sir Your explanation and videos are very good. Could you please do videos for Red Teaming, Blue Teaming and Hack The Box series. It will really helpful to others.
Shalom brother! love from Israel
Just confirming, the PDF you are referring to with the checklist at 19:09 isn't free right?
Why isn't it free? I got it off the OWASP website
@@TCMSecurityAcademy got it thanks man!
E: Could not open lock file /var/lib/dpkg/lock-frontend - open (13: Permission denied)
E: Unable to acquire the dpkg frontend lock (/var/lib/dpkg/lock-frontend), are you root?
problem please help me
I love you bro!
I love you more
I don't have much knowledge of python, bash scripting, can i start my career in cyber security ? i dnt hv any programming skill, i want to start my career in penetration.. being a mentor kindly guide me
amaizn
Thanks 😊
Thanks Boss
38:07 when I run it i get domain.resolve and error
your Burp suite using skills are at peek level please make video on How to use Burp suite
Can do! Great idea :)
thank you sir
cool video)
what shoud i learn to start this course plz ?
Do you have course on udemy?
I'm glad I found this channel. My question is that can I still refer/review this playlist or things are now changed? PS: I'm beginner in Pen Testing.
Concept are same but tools/techniques keep changing learn concepts rather than tools . Although response is too late for you but It can be too early for someone else 👍👍👍
שלום גם לך
Daily appreciation comment :)
It is not possible to do the Scan with the Community Edition!
Hi, How are you able to intercept all the request without having to forward every request one by one in burp? Are you using some kind of burp extension to do so? I am having to forward all the request one by one and it is such a headache.
You can set the options to only intercept from scope. Keeps the traffic way down
@@TCMSecurityAcademy Thank you, will do that :)
Thanks
hello from South Boston
You forget about the Burp certificate for firefox...that was giving me pain for hour
Where's next episode? :(
Hello Big Bro. Can you please give us a list of websites that host bug bounty programs paid or community and guide us towards the rules and best practices in collecting bug bounties. If there is already such a video you posted, just tell me what to search to get to that video. ty.
Google
Hello sir did you know hindi , please give us guide to become success in the field of Ethical Hacker
Bro this course is a jackpot for noob hackers
next video pls :)
Make a playlist and put these noob to hero epiaodes in order please
Hi thanks for your perfect educations.can u help me about advanced malware writing.please introduce me some good books and refrences. Please help.its important to me to get answere. Tnx
please what this is mean in scope and out scope
I like you as my teacher
I like you as my student
Thank you sir
@@TCMSecurityAcademy thank you sir
Can you do video on request smuggling?
Yes. Great suggestion :)
Hihi but dont do the portswigger one because it's just complicated ... Help us by doing something more practical thank you 😁love from India
Start setup
The time you go live then is 2 am by us
Sorry :(
@@TCMSecurityAcademy, It's ok. I'll try to stay up or I'll just watch the video in the mornings.
Thank you for all the video and the knowledge that you share. It really helps me with cybersecurity!
You kinda leaked your address (When you introduced the book on amazon) , I hope you noticed it and you didn't do it by mistake. , great video as always thanks!
Just location services being location services :). It's not entirely accurate, thankfully. Thanks for the heads up.
gg
can I get another discord link invite?
I need a HUGE FAVOR!!!!
Someone please suggest the most efficient and optimal way to make notes from a video?
I use notion it really keeps all the stuff organized pretty well.
@@aqibyaseen2122 I've seen a few note making apps. Obsidian is one of them. I'm also following the concept of building a second brain. And apparently obsidian is a pretty good platform for that.
Thoughts?
Using Burp Professional against Community edition does NOT help.
For example no scan and no spidering
Stamp.
@37:05
welinkinfo.com got shut down :(
Alternative to burp suite , that is free