What is Clickjacking?

preview_player
Показать описание
👩‍🎓👨‍🎓 Learn about Clickjacking vulnerabilities. In this video, we are going to see an example of what it is and how a victim would fall for it!

Overview:
00:00 Intro
00:16 Lab overview
01:16 What is an iframe?
02:19 Cascading Style Sheets
03:14 Crafting the payload
04:55 Solving the lab!
05:35 Conclusion

---

  1. Intigriti
  2. intigriti
  3. hackademy
  4. vulnerability
  5. chaining
  6. clickjacking
Рекомендации по теме
What is Clickjacking? 0:08:06

What is Clickjacking?

What is Clickjacking? 0:01:29

What is Clickjacking?

Clickjacking - Hacking 0:08:01

Clickjacking - Hacking Web Application UIs

How Does Click 0:02:22

How Does Click Hijacking Works? | Using iframe TAG | x-frame-options

CYBERMinute - What 0:01:09

CYBERMinute - What is Clickjacking?

What is Clickjacking? 0:01:14

What is Clickjacking?

What is Clickjacking 0:01:29

What is Clickjacking | OWASP Top 10 | Bug Bounty Service LLC

Clickjacking: How to 0:08:30

Clickjacking: How to Perform Clickjacking Attack // Live Hacking

What Is Click-Jacking? 0:07:06

What Is Click-Jacking? | UI Redress Atack? | Working and Causes Explained

Testing for clickjacking 0:03:38

Testing for clickjacking using Burp Suite

Hacker101 - Clickjacking 0:02:32

Hacker101 - Clickjacking

Clickjacking Attack Types, 0:08:38

Clickjacking Attack Types, Risks, and its Prevention

How Attackers use 0:07:48

How Attackers use Clickjacking to Steal Social Media Accounts

what is Clickjacking 0:01:21

what is Clickjacking - cyber security series - ethical hacking basics

what is clickjacking 0:03:03

what is clickjacking attack|what is clickjacking|what is clickjacking vulnerability| K7 Tech Learn

Burp Clickbandit: How 0:04:17

Burp Clickbandit: How to perform clickjacking attack // Live Hacking

Making $$$ with 0:07:02

Making $$$ with Clickjacking

What is clickjacking? 0:00:17

What is clickjacking? #shorts #shortsviral #tech

What is ClickJacking? 0:07:25

What is ClickJacking? (Tamil) | How Its Works? | How To Be Safe?| Quick Through #ClickJacking

What is Click 0:06:31

What is Click Jacking Simple Definition | Sistech

what is clickjacking 0:54:49

what is clickjacking | clickjacking attack | bug bounty | owasp top 10 | clickjacking vulnerability

What is Clickjacking 0:02:24

What is Clickjacking | Hacksplaining #hacksplaining

What is Click 0:06:09

What is Click Jacking? Explained in Hindi

What is Clickjacking? 0:07:30

What is Clickjacking?

Комментарии
Автор

You made this so easy to understand! Not just the attack but how to actually perform it! Well done and thank you!

fastexpand
Автор

Very helpful explanation, thank you! :)

WithSandra
Автор

The iframe seems not carring the cookies of browser.
I need to login again in the iframe when viewing the exploit, am I doing something wrong?
Thx!

rexlei
Автор

it looks so easy but my screen keeps going to the log in screen instead of staying on the my account screen when i put my account id in the exploit server body?

nerdisyumyum
Автор

Excellent tutorial! Thank you very much :D

prof.angelinagokhale
Автор

Are there any programs on platform which still accept clickjacking? I doubt so.

manmoon
Автор

This worked just fine on Firefox. Can't you use the source code to alter the attack and foil the attacker the same way as in the lab? Thanks a bunch It made the lab easy!

temeturs
Автор

my lab id shows the login button rather the update and delete button..what may be the problem

Norman-rz
Автор

In both Chrome or Firefox I do not manage to modify the height of the iFrame, it stays at about 100px, and a scrollbar appears on the right. Hence I never can align the div...

jamesrobertson
Автор

How does the user goes to that exlpoited page, will he click any button, i don't understand can you please explain 😢😢, do the user know that he is deleting his account

satwiksv
Автор

Thanks for the tutorial! Do you think people need to know web development to understand clickjacking?

shinobix
Автор

Your explanation is too good a new sub added god bless you brother and can explain the please Lab: CORS vulnerability with internal network pivot attack like what are the 4 scripts are and how it works

julianjulian
Автор

Thank you, but I did all the same things but the state would not change to solved!

arshiaalidosti
Автор

Oh my god, this lab is the worst.
It says: "To solve the lab, craft some HTML that frames the account page and fools the user into deleting their account. The lab is solved when the account is deleted."
I created the page locally and a fake button that wraps the iframe exactly above the delete button, so that this fake button can be placed anywhere not just at the exact position like in this video. Still after deleting the account (as mentioned in the task), the solution says that I shouldn't have deleted it ))

mustang...
Автор

Why always every one out of scope text injection? 😭

fahadfaisal
Автор

I subscribed after I heard his voice. LOL

crimson
Автор

Does this fall under social engineering?

zzzzzzzzZzZZzzzaZzz
Автор

Clickjacking is commenting first like me

lethalleet