Design Flaw in Security Product - ALLES! CTF 2021
In this video we are exploring a theoretical security product that automagically encrypts user data securely. But it has a fundamental design flaw which can be exploited.
Challenge Files: https://github.com/LiveOverflow/ctf-cryptowaf
Walkthrough: https://www.youtube.com/watch?v=ZKrABs-N9wA
BugBountyReportsExplained: https://www.youtube.com/c/BugBountyReportsExplained
00:00 - Intro
01:33 - Background Story
02:55 - What is CryptoWAF?
04:16 - Implementing Encryption
05:06 - Encryption Challenges
06:59 - Implementing Decryption
07:02 - Design Flaw
08:26 - Exploiting the Design Flaw
09:06 - Leaking Database
10:04 - WAF Bypass
11:04 - Conclusion
12:07 - Outro
-=[ ❤️ Support ]=-
→ per Video: https://www.patreon.com/join/liveoverflow
→ per Month: https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w/join
-=[ 🐕 Social ]=-
→ Twitter: https://twitter.com/LiveOverflow/
→ Instagram: https://instagram.com/LiveOverflow/
→ Blog: https://liveoverflow.com/
→ Subreddit: https://www.reddit.com/r/LiveOverflow/
→ Facebook: https://www.facebook.com/LiveOverflow/
Видео Design Flaw in Security Product - ALLES! CTF 2021 канала LiveOverflow
Challenge Files: https://github.com/LiveOverflow/ctf-cryptowaf
Walkthrough: https://www.youtube.com/watch?v=ZKrABs-N9wA
BugBountyReportsExplained: https://www.youtube.com/c/BugBountyReportsExplained
00:00 - Intro
01:33 - Background Story
02:55 - What is CryptoWAF?
04:16 - Implementing Encryption
05:06 - Encryption Challenges
06:59 - Implementing Decryption
07:02 - Design Flaw
08:26 - Exploiting the Design Flaw
09:06 - Leaking Database
10:04 - WAF Bypass
11:04 - Conclusion
12:07 - Outro
-=[ ❤️ Support ]=-
→ per Video: https://www.patreon.com/join/liveoverflow
→ per Month: https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w/join
-=[ 🐕 Social ]=-
→ Twitter: https://twitter.com/LiveOverflow/
→ Instagram: https://instagram.com/LiveOverflow/
→ Blog: https://liveoverflow.com/
→ Subreddit: https://www.reddit.com/r/LiveOverflow/
→ Facebook: https://www.facebook.com/LiveOverflow/
Видео Design Flaw in Security Product - ALLES! CTF 2021 канала LiveOverflow
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Finding The .webp Vulnerability in 8s (Fuzzing with AFL++)Binary Exploitation vs. Web SecurityHacking Google Cloud?Trying to Find a Bug in WordPressAuthentication Bypass Using Root ArrayMy YouTube Financials - The Future of LiveOverflowDefending LLM - Prompt InjectionAccidental LLM Backdoor - Prompt TricksAttacking LLM - Prompt InjectionOur Future As Hackers Is At Stake!Cyber Security Challenge Germany (2023)Cybercrime is Not Hacking!Attacking Language Server JSON RPCAdvanced Teleport Hack (stolen from cheaters)VPNs, Proxies and Secure Tunnels Explained (Deepdive)I’m moving, no videos sorryComputer Networking (Deepdive)Revisiting 2b2t Tamed Animal Coordinate ExploitPain in your Hand (RSI)?What is a Protocol? (Deepdive)The Future Of Hacking #shorts