Cross Site Scripting (XSS) | Real World

omg, this was so amazing, there are thousands of videos on XSS but I hardly encountered anyone who explains topics in a such beautiful and simple way. Thank-you so much

WtfAnupam

You are the best teacher of this subject I have found on YouTube. I graduated this year with a BAS in Cyber Security, but still feel like I’ve only scratched the surface regarding ethical hacking. I’m trying to become self-sufficient at bug bounty hunting, but I’m so bad at it. Your videos are really helping me though (more than other creators). You just explain it so well in shorter, more concise videos. Thanks so much, and keep it up!!!

ratmoneyg

I have looked for stuff like this forever and it never gives me a simple way or a way that makes sense THANK YOU.

Deleted_User

Thank you so much! I was searching for this exact thing, using a real payload and explaining instead of simple alert that wont demonstrate harm to the server

yarinp

Thank you for the example ! Im starting with pentesting and I decided to go with XSS, it's actually pretty fun and I learned a lot with your video.

antraxgl

Thanks a lot for this kind of videos. Maybe you could do a OWASP 10 but in this format with 10 basic examples of the most common vul, also i'm from Chile and a new sub.

Waflon

This kind of real world explanation will actually help us to understand attack more. Thanks!!!

sumedh

this is amazing, most videos usually just alert.
btw is it possible to try do one on angular based web?

himawanraharja

Hey could you make a video on what your process is for bug bounties? What steps do you take when carrying out recon? What do you check for? And once you've completed recon, what do you do next?

brs

very interesting ill be back when i understand what I just watched

GINGER-

thanks for this amazing tutorial, n btw would you like to recommend any books for learning javascript ?

ss-rcgy

great video, you connected all the dots with a real world attack example ! Make a video for exploiting latest AI attacks and 3rd party component vulns

gkdusa

Amazing how you teach in a simple form to understood.
Can you make a video, explain how to test xss when the webApp have some waf/filters ? 🙂

pedrobarthacking

keren, terimakasih ilmunya.
itulah mengapa penting sebuah website menggunakan SSL agar dapat terredirect ke https dan cookies nya aman

adnanirfan

Would this be considered a persistant XSS attack?

pnuema

Hello plz answer me i have qst abt bug bounty
i finish html im in Js (Function) When i finish Js can i start learning XSS & Learn Recon & how Web Work & burpsuit and try in labs than start in real world ? and in the same time keep learning about PHP & MYSQL and other OWASP 10 & methodology

amoh

That's cool 😲.. so this type of attack is called reflected xss yeah 🤔?

phoenix

Why are we referencing the xss.js file in the form field? Isn't it possible to directly paste the code from this file into the field?

pd

great content, thank you.. I've not seen a real example of xss so far. could you make more contents like this? the real world/hands on hacking videos

theMintyRaven

Great as always !
Idea : you can make more videos about server side bugs !

Mr_tadoo