File Inclusion Vulnerability Explained | TryHackMe Junior Penetration Tester | OSCP

Показать описание

In this video walk-through, We covered local and remote file inclusion vulnerability. We also explained methods of bypassing filters. This was part of TryHackMe Junior Penetration Tester pathway. This video is useful for OSCO certification prep.
*********
Receive Cyber Security Field, Certifications Notes and Special Training Videos
**********
Writeup
TryHackMe File Inclusion
**********
Store
Patreon
Instagram
Google Profile
LinkedIn
Instagram
Twitter
Facebook
**
0:00 - Introduction to File Inclusion Vulnerability
1:08 - Lab 1: Simple File Inclusion
3:17 - Lab 2: File Inclusion in the Includes Directory
6:48 - Lab 3: Bypassing Extensions with Null Bytes
9:58 - Lab 4: Function Vulnerabilities in File Inclusion
12:46 - Lab 6: Directory and File Path Manipulation
16:14 - Challenge 1: Capturing the First Flag
18:42 - Challenge 2: Bypassing Cookie Restrictions
23:22 - Challenge 3: Post Request File Inclusion
27:51 - Remote File Inclusion (RFI) Playground
31:01 - Gaining Remote Shell Access

Рекомендации по теме

Комментарии

I somehow struggled my way through these challenges but didn't really feel like I understood the material. Your explanation was much better than the written material

DeeMeltDown

I wouldn't be able to do this task without this video. good explanation

farhadturabi

I really loved to study cybersecurity for the past month but after I got to this point i gave up convincing myself that i am too stupid for all of this since i couldnt understand a single word they wrote on the site but after coming across this video and reading the comments i decided i am going to try again, thank you

anonuser

Thank you for a thorough and concise tutorial. There is no way I could have completed that challenge without your help. Now I just need to do it another five times and I might be able to remember how to do this! Keep up the GREAT work!

justinnewberry

This room was the first room where i started getting problems. Thanks for this tutorial.

av

Well done, much better explanations than the provided material. I really think they need to revise or flesh out some of these labs, for example some of the tools that may be helpful such as burp suite aren't covered until later in the path. I ran into a similar issue when they were talking about decoding sha, md5, and base64, they gave you a link to help you with the later but not the base64, later in the path they provided a link. Funny enough it was the one I just happened upon to complete the lab.

uscmhudson

This really helped me sir ! But I must say that this is a liitle too advanced for beginners.

edgeofthegrasstactics

The only video you need to understand whole file inclusion concept!!
Thank you so much for this. ❤❤

lphV

nice work on this one, really cleared up my mind. Thanks keep it up

alexandrosmitsouli

انا لقيت اسمك عربي فسمحلي اكتب بالعربي
فبجد مجهود رائع وشرح سهل ومبسط
كمان اخر جزء في الفيديو كان رهيب. حقيقي فخور ان في مسلمين بالمهارة دي. اتمنى أوصل لمستوى حضرتك.

AhmedMohamed-knsf

thanks man! tried the challenges by myself for a while but had no chance. with your help I completed it while still learning a lot.

jeitzi

love the videos man - so informative and plenty of time to pause and try out yourself out without blurting out the answers

FrugalThinkin

Thank you for this walkthrough! I could not wrap my head around this room. So much help!

jodokast

This helped so much even after I'd read the written write up.

rbrookes

thank you for activating the subtitles, it gives us the possibility to put the translation in French

tonyYoutube

Thanks very much, the written tutorial for this was not particularly helpful but this is much better.

Adam-kodx

thank you so much for this. This walk through is so much better then the room. And i was able to follow along as a mid level cyber learner. 💕

worldbuilder

thanks for the help brother. I didn't just want the answers so I'm happy I came across your channel so I could actually learn step by step. that made much more sense then the verbage they had.

TheSpecialist

Thank you! Challenge 3 was whooping my a** and this helped me through. Great explanation good sir!

N_NMz

I thought it was well done! the best break down I've seen out here. I'm glad to have subscribed and will check out the rest of the vids. Keeo up the great work!

xpwnstar

File Inclusion Vulnerability Explained | TryHackMe Junior Penetration Tester | OSCP

Remote File Inclusion Explained and Demonstrated!

TryHackMe! [Web Vulnerabilities] Local File Inclusion

File Inclusion Vulnerability Explained | TryHackMe Junior Penetration Tester | OSCP

Penetration Testing - File Inclusion Vulnerability

BUG BOUNTY: UNDERSTANDING LOCAL FILE INCLUSION(LFI) #1 | DEMONSTRATION | 2023

Local File Inclusion Explained

Penetration Testing - Local File Inclusion (LFI)

TryHackMe! File Inclusion - Beginner Friendly Walkthrough

DVWA File Inclusion Vulnerability Walkthrough (Low & Medium)

Web Hacker Basics 04 (Local and Remote File Inclusion)

Advanced Local and Remote File Inclusion - PHP Wrappers

Secure Code Warrior Explainer Video - Remote File Inclusion

Hacker101 - File Inclusion

What is Local File Inclusion? How Directory Traversal Works? Hunt for Path Traversal | Bug Bounty

$6000 Local File Inclusion | Sensitive Data Exposure | Bug Bounty POC 2021

what is lfi and rfi || local file inclusion vulnerability || lfi vs rfi || Cyber World Hindi

File Inclusion - TryHackMe Junior Penetration Tester 3.6

Penetration Testing - Remote File Inclusion (RFI)

File Inclusion Vulnerability Explained - Hack The Box - Responder Walkthrough

Local File Inclusion Attack and Prevention

File Inclusion Types, Examples, and Prevention

Hunting Local File Inclusion (LFI) Vulnerability Using Burp Suite | LFI Tutorial in Hindi

LFI & RFI Complete tutorial | Local File Inclusion | Remote File Inclusion

Introduction to LFI/RFI vulnerabilities and their mitigation - Local and Remote File Inclusion hack