Відео

Thanks s lot!

your voice is annoying. you sound like chatgpt.

Thx u this is interesting

8:14 😊

4:11 filetype indexable type by google

3:38

4:55

Thanks for a great course, it gave me a lot, more then other resources. Also hard to find such well-structured materials on this topic. Thanks again! I'll check out more of your content, and def. do more if you have a chance to, you make a good lecturer

awesome!!!!!!!!!!!!!!!

these linux videos in the series of yours are superb!

Ok

Fantastic! Best video I've seen on the topic yet. Thank you!!

Great episode! Clear explanation. That's what i call a quality content. 👍👍

Genshin impact max0r video

thanks 😁

its very very good detailed explanation I ever seen. great job. Expecting more such explanation for other Security concepts too..

Wonderful. How did you make your presentation?!!?

Could you please make a new Joi validation video with the latest version update ? this approach is not working on Joi 17.x.x

great explanation

Nice talk, can I. know what have you used to create those slides? they look beautiful!

whole series is great, thanks for your hard work!

great stuff, super useful review for my college security class. Hopefully more people stumble onto these videos :)

Thanks buddy , really helped this video , it helped me in a interview where interviewer asjed ne about SOP , thanks u explained it really very well

thanks sir

This is really awesome. Loved it.

Thanks for the content

Thank you for great tutos!

This is great. Tyvm for putting it together. There's very little out there on nosqli that I've been able to find and this helped me with a ctf.

Thank you for this work! Is it possible to download the slides?

the best tutorial on UA-cam.

very nice explanation!

01:00 origin 08:20 SOP Rules 10:47 cross origin embedding examples 12:57 synchroniser token pattern 15:45 CORS

Very good food for thought. Thank you for the series and I really hope you provide us with a sequence for this one.

5 years have passed since this video was released. I would sincerely like to see another series about this topic but updated for today's reality. As we all know tech changes radically within a few years and I really enjoyed your thinking process, so it would be great to see this from your perspective again.

my dude, this is great content. I really appreciate that you took the time to make available some of your knowledge. I know it is hard to produce concise content, I've tried before and failed to deliver a well organized informational video, but you have succeeded in it. Even though it didn't make you good money, it generated good value for people like me. Thank you.

Thanks for your explication, the video was super informative.

Thank you for sharing this. But where do you see a hacker attack in this tutorial ?, basically you already have access to update the reviews of a product without need to login via the application. This means you're able to update the reviews of a product either using the GUI, or using a HTTP request or any other kind of action since there is absolutely no authentification or validation mechanism in the app you used as an example. Or did I miss something ?

Finally a clear English

great work👌👌❤❤

Who's here form the valorent anti-cheat conspiracy?

Here after Doom anti-cheat controversy

please tell me how this can worked as this code given error secContactType: Joi.when("secContact", { is: Joi.string(), then: Joi.string().required(), otherwise: Joi.optional(), }), secContact: Joi.when("secContactType", { is: Joi.string(), then: Joi.string().required(), otherwise: Joi.optional(), }), as both keys are dependent on each other

please describe what the attack actually is and demonstrate how they do it and how it is blocked. thank you for a great video

Please how do I share validation message from node hapi/Joi to React.js

Nice Video Sir, Please how do I share validation message from node hapi/Joi to React.js

@15:00 Q: What role does Same Origin Policy play in CSRF Prevention? A: By restricting the interaction of resources between origins, the Anti-CSRF token embedded within the form of vulnerable.com is protected from attacker.com to retrieve and forge its own request to the server. Thank you so much for clearing this up! SOP is always mentioned with CSRF, but I was never able to make the connection until now. :) Edit for my own notes: CORS - Cross-Origin Resource Sharing - server specifies in header allowing resource sharing with specified origins - this is dangerous for CSRF because if attacker.com is allowed via CORS, it will be able to see the Anti-CSRF token => attacker.com can forge requests

excellent video ! Please don't stop making videos, you're really doing valuable work !

What a great initiative and quality content! You definitely have knowledge, ability and professional voice to explain stuff in an easy way to developers. I wish channel gained more traction! It doesn't deserve tiny triple-digit view counts... I guess this is where web security is, as most devs want to just make it work somehow by end of the day and rarely understand risks.

beautiful work mate

Good presentation. How would you prevent the user from entering all spaces in the input field in order to bypass min length requirements? Thx