HACKING postMessage() FOR BEGINNERS!
Hi! I'm a pentester and a bug bounty hunter who's learning everyday and sharing useful resources as I move along. Subscribe to my channel because I'll be sharing my knowledge in new videos regularly. SIGN UP ON Intigriti: http://go.intigriti.com/farah BUY ME A COFFEE: https://www.buymeacoffee.com/farahhawa SOCIAL MEDIA: Follow me on Twitter: / farah_hawaa Follow me on Instagram: / farah_hawaa Connect with me on LinkedIn: / farah-hawa-a012b8162 TIME STAMPS: 0:43 Same-Origin Policy 1:14 When is postMessage() used 2:26 Parent window code 3:16 Child window code 4:11 Bug 1- Sender's origin not validated: 5:32 Bug 2- Target origin not specified: postMessage() LABS: https://github.com/t4kemyh4nd/postMes... https://github.com/shurmajee/postmess... RESOURCES FOR postMessage(): https://developer.mozilla.org/en-US/d... https://www.mcafee.com/blogs/enterpri... https://jlajara.gitlab.io/web/2020/06... / exploiting-post-message-to-steal-users-coo... Video editor: https://www.fiverr.com/pixelstudios1
WEB CACHE DECEPTION FOR BEGINNERS!
Finding Your Next Bug: GraphQL
HACKING ANDROID WebViews (Static analysis - Part 2)
How To Learn Hacking - A Practical Demo
Learn C# in Unity - Complete Course for Beginners
WEB CACHE POISONING FOR BEGINNERS + GIVEAWAY(closed)
HTTP Parameter Pollution Explained
Cross-Site Scripting (XSS) Explained
OSINT for Beginners: Find Everything About Anyone!
Finding Your First Bug: Manual IDOR Hunting
Cocky Scammers get the Virus Treatment
ATTACKING JWT FOR BEGINNERS!
HACKING OAuth 2.0 FOR BEGINNERS!
$25,000 Facebook.com postMessage account takeover vulnerability
Every Hacking Technique Explained in 18 Minutes
learning hacking? DON'T make this mistake!! (hide yourself with Kali Linux and ProxyChains)
Finding Your First Bug: Choosing Your Target
#NahamCon2024: OAuth Secret | @BugBountyReportsExplained
BYPASSING SAML AUTHENTICATION FOR BEGINNERS!
