JavaScript Enumeration for ethical hackers: methodology and tools
Вставка
- Опубліковано 4 жов 2024
- JavaScript Enumeration is a critical skill to have if you want to level up your penetration testing or bug bounty hunting game. Yet, not everyone does it, partly because it is a boring exercise or it consumes most of your time, not to mention how intimidated you might feel reading someone else’s code. Today, we will explore this topic and understand why it matters, and how you can perform it.
Further reads mentioned in the video:
thehackerish.c...
portswigger.ne...
labs.detectify...
/ the-bug-that-exposed-y...
Download your FREE Web hacking LAB: thehackerish.c...
Read more on the blog: thehackerish.com
Facebook Page: / thehackerish
Follow us on Twitter: / thehackerish
Listen on Anchor: anchor.fm/theh...
Listen on Spotify: open.spotify.c...
Listen on Google Podcasts: podcasts.googl...
Hopefully, this episode will help you overcome these hurdles and give you the tools you need to make JavaScript Enumeration less painful. We will first understand how it can lead to serious security bugs. Then, we will discover different ways to properly do it. So, stay with me until the end because you will definitely learn some hacking tricks along the way!
The was like WHOA!!! Awesome stuff my mate. 👍 Keep up the great work. You explain it well. And of the importance of JS enumeration.
Thanks for your comment! I'm glad you liked the content. You can learn more on other playlists as well.
Shameless plug:
Just last night, I added a filter for a proxy that I'm writing (called ponieproxy), which downloads all js files to a folder you specify, while you browse the website.
Good job!
share?
@@tanercoder1915
Of course. It's a repo on GitHub
github.com/ctoyan/ponieproxy
great high level overview thanks for califying hacking JS files awesome video
Thanks a lot for your kind comment!
Great video. Thank you.😇🥰
Great learning:)
Thank you 🤗
Tested and trusted
Man awesome as always
Thanks again!
What is the advantage of using burpsuite vs dev tools? As dev we just simply use the dev tools for hacking, I mean testing. I wonder if burpsuite has a debugger where you can breakpoint codes?
BurpSuite or any other web proxy allows you to collect JS files and play with HTTP requests. As far as I know, you can't use breakpoints to debug a JS code.
Where can i learn all about JS hacking for bug hunting. Any suggestions, please
@
thehackerish can you make a detailed video on buffer overflow
That's not really my area of expertise, but I recommend you solve bof challenges on root-me, they are great!
can you make about javascript reverse engineering