Design Flaw in Security Product - ALLES! CTF 2021
In this video we are exploring a theoretical security product that automagically encrypts user data securely. But it has a fundamental design flaw which can be exploited.
Challenge Files: https://github.com/LiveOverflow/ctf-cryptowaf
Walkthrough: https://www.youtube.com/watch?v=ZKrABs-N9wA
BugBountyReportsExplained: https://www.youtube.com/c/BugBountyReportsExplained
00:00 - Intro
01:33 - Background Story
02:55 - What is CryptoWAF?
04:16 - Implementing Encryption
05:06 - Encryption Challenges
06:59 - Implementing Decryption
07:02 - Design Flaw
08:26 - Exploiting the Design Flaw
09:06 - Leaking Database
10:04 - WAF Bypass
11:04 - Conclusion
12:07 - Outro
-=[ ❤️ Support ]=-
→ per Video: https://www.patreon.com/join/liveoverflow
→ per Month: https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w/join
-=[ 🐕 Social ]=-
→ Twitter: https://twitter.com/LiveOverflow/
→ Instagram: https://instagram.com/LiveOverflow/
→ Blog: https://liveoverflow.com/
→ Subreddit: https://www.reddit.com/r/LiveOverflow/
→ Facebook: https://www.facebook.com/LiveOverflow/
Видео Design Flaw in Security Product - ALLES! CTF 2021 канала LiveOverflow
Challenge Files: https://github.com/LiveOverflow/ctf-cryptowaf
Walkthrough: https://www.youtube.com/watch?v=ZKrABs-N9wA
BugBountyReportsExplained: https://www.youtube.com/c/BugBountyReportsExplained
00:00 - Intro
01:33 - Background Story
02:55 - What is CryptoWAF?
04:16 - Implementing Encryption
05:06 - Encryption Challenges
06:59 - Implementing Decryption
07:02 - Design Flaw
08:26 - Exploiting the Design Flaw
09:06 - Leaking Database
10:04 - WAF Bypass
11:04 - Conclusion
12:07 - Outro
-=[ ❤️ Support ]=-
→ per Video: https://www.patreon.com/join/liveoverflow
→ per Month: https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w/join
-=[ 🐕 Social ]=-
→ Twitter: https://twitter.com/LiveOverflow/
→ Instagram: https://instagram.com/LiveOverflow/
→ Blog: https://liveoverflow.com/
→ Subreddit: https://www.reddit.com/r/LiveOverflow/
→ Facebook: https://www.facebook.com/LiveOverflow/
Видео Design Flaw in Security Product - ALLES! CTF 2021 канала LiveOverflow
Показать
Комментарии отсутствуют
Информация о видео
Другие видео канала
Finding The .webp Vulnerability in 8s (Fuzzing with AFL++)
Binary Exploitation vs. Web Security
Hacking Google Cloud?
Trying to Find a Bug in WordPress
Authentication Bypass Using Root Array
My YouTube Financials - The Future of LiveOverflow
Defending LLM - Prompt Injection
Accidental LLM Backdoor - Prompt Tricks
Attacking LLM - Prompt Injection
Our Future As Hackers Is At Stake!
Cyber Security Challenge Germany (2023)
Cybercrime is Not Hacking!
Attacking Language Server JSON RPC
Advanced Teleport Hack (stolen from cheaters)
VPNs, Proxies and Secure Tunnels Explained (Deepdive)
I’m moving, no videos sorry
Computer Networking (Deepdive)
Revisiting 2b2t Tamed Animal Coordinate Exploit
Pain in your Hand (RSI)?
What is a Protocol? (Deepdive)
The Future Of Hacking #shorts