he hacked my websites
Вставка
- Опубліковано 18 вер 2024
- Don’t get phished, protect yourself with Guardio: www.guard.io/n...
In my last video, I built 24 websites in 24 hours. 🚀 But with such a rapid development sprint, I knew security might have taken a backseat. So in this video, I decided to don my hacker hat and attempt to penetrate my own sites using tools like Nikto, OWASP Zap, Burp Suite, and Snyk. Spoiler alert: I didn't find much. 😅
Realizing my limitations, I called in reinforcements-my friend and professional ethical hacker Tyler Ramsbey. Tyler took the wheel and performed a thorough penetration test on my websites, uncovering vulnerabilities I had completely overlooked. From exposed API keys to cross-site scripting (XSS) and even accessing hidden admin panels, Tyler shows us how a real hacker would exploit these weaknesses. 😱
Along the way, we discuss how tools like LLMs (Large Language Models) can be both a blessing and a curse in cybersecurity, aiding both defenders and attackers. 🛡️⚔️
Subscribe to Tyler Ramsbey: / @tylerramsbey
🔥🔥Join the NetworkChuck Academy!: ntck.co/NCAcademy
🌟 Special Thanks to Guardio for Sponsoring This Video!
SUPPORT NETWORKCHUCK
---------------------------------------------------
➡️NetworkChuck membership: ntck.co/Premium
☕☕ COFFEE and MERCH: ntck.co/coffee
Check out my new channel: ntck.co/ncclips
🆘🆘NEED HELP?? Join the Discord Server: / discord
STUDY WITH ME on Twitch: bit.ly/nc_twitch
READY TO LEARN??
---------------------------------------------------
-Learn Python: bit.ly/3rzZjzz
-Get your CCNA: bit.ly/nc-ccna
FOLLOW ME EVERYWHERE
---------------------------------------------------
Instagram: / networkchuck
Twitter: / networkchuck
Facebook: / networkchuck
Join the Discord server: bit.ly/nc-discord
AFFILIATES & REFERRALS
---------------------------------------------------
(GEAR I USE...STUFF I RECOMMEND)
My network gear: geni.us/L6wyIUj
Amazon Affiliate Store: www.amazon.com...
Buy a Raspberry Pi: geni.us/aBeqAL
Do you want to know how I draw on the screen?? Go to ntck.co/EpicPen and use code NetworkChuck to get 20% off!!
fast and reliable unifi in the cloud: hostifi.com/?v...
Ethical hacking tutorial
Penetration testing your own website
Website security vulnerabilities
How to hack your own site ethically
OWASP Zap tutorial
Using Nikto for server scanning
Burp Suite Pro walkthrough
Exposing API keys risks
Cross-site scripting (XSS) explained
SQL injection prevention
Snyk code analysis tool
Static Application Security Testing (SAST)
Guardio browser security extension
Ethical hacking tools and techniques
Preventing data leaks online
Secure coding practices
Vulnerability scanning with Nuclei
WordPress security flaws
Exposed .git directories dangers
Fixing open redirects
Cybersecurity best practices
Learning ethical hacking with Tyler Ramsby
Securing API endpoints
Protecting your website from hackers
#hacking #cybersecurity
Don’t get phished, protect yourself with Guardio: www.guard.io/networkchuck
In my last video, I built 24 websites in 24 hours. 🚀 But with such a rapid development sprint, I knew security might have taken a backseat. So in this video, I decided to don my hacker hat and attempt to penetrate my own sites using tools like Nikto, OWASP Zap, Burp Suite, and Snyk. Spoiler alert: I didn't find much. 😅
Realizing my limitations, I called in reinforcements-my friend and professional ethical hacker Tyler Ramsbey. Tyler took the wheel and performed a thorough penetration test on my websites, uncovering vulnerabilities I had completely overlooked. From exposed API keys to cross-site scripting (XSS) and even accessing hidden admin panels, Tyler shows us how a real hacker would exploit these weaknesses. 😱
Along the way, we discuss how tools like LLMs (Large Language Models) can be both a blessing and a curse in cybersecurity, aiding both defenders and attackers. 🛡⚔
Subscribe to Tyler Ramsbey: www.youtube.com/@TylerRamsbey
🔥🔥Join the NetworkChuck Academy!: ntck.co/NCAcademy
🌟 Special Thanks to Guardio for Sponsoring This Video!
🎉
He just did a video about using Python on Telegram and I was wondering if what he's doing is ethical and legal ... Will you please explain , brother . Thank you and hugs from your autistic sister in Costa Rica
Bro is really skilled I watch him every time but he have not much follower thanks network chuck for letting him hack your web hehe
would love the video for building and deploying 24 sites in 24 hours!! Bruh, like how you gently cover that wonderful detail but not show us hoooooooooooow lol! Great videos as usual! Thank you!
nah I'd just use avast
>Points out dodgy addons that scrape data, while using Chrome
Priceless comedy
Tyler is a really decent dude. His discord is awesome too. Thanks Chuck for having him on. He's at less than 20k subs I think which is just criminal.
The #1 reason sites get hacked "I don't want to do this, I don't have time for this." :) Oh and wordpress.
Is WordPress this bad?
shame this was super simple, tyler is pretty talented at this stuff.
Under hour gang
Coffee beans can be found in Forests and wild animals can be found at a watering hole.
Absolutely amazing to be part of this. Thank you @NetworkChuck!
Your Amazing Sir.👍
I watch you all time lil bro you are really skilled thanks for your UA-cam vids they helped me lots😊
I w kk
Yoooooo let’s go
Hi
That is just level 1 any-one can do it
What do you expect considering the format and content on this channel?
as a web dev. none of this stuff to me was anything even remotely educational... this screams grade 8 in the library at lunch time. isnt even at a script kiddy level really
True i though i will see something sophisticated.
Sorry who?
@@theguythatknows are you 12?
I make my coffee on a $20 Walmart "Mr. Coffee" every morning.
I don't even like coffee, but it helps me unload my chamber before I shower-up...so there's that.
I feel that explanation was about as nonsensical and misplaced as yours.
Would be cool to see him go through this again but more in depth with what he would do for an actual pentest.
Caffeine addiction at its finest. Also good IT vids.
he just said in the previous video, that he doesnt drink caffeine coffe anymore cus of the age.
You have my uninterrupted attention for rest of my days …
NetworkChuck is Peter McKinnon, if Peter had gotten really into computers instead of really into cameras.
The best part is the "same password as my bank account" 😅😅😅
Oh shoot, it's a real hacking example video with real cyber security processes
non-sponser, non-proprietary toolset, just back to back explanation of every step of the way, fantastic
for the coffee, run it through a coffee filter, like one of the filter holders that sit on top of cup..
Next Video: How to make good coffee
ohhh the set in the bg lookin crisp asf
I don't think you could make it any easier
I only watch these videos so that I know how to make coffee ☕
Have you seen the clasic scifi movie The Day The Earth Stood Still? I’m guessing the name nikto came from that since it coined the famous line “Klaatu barada nikto” which means “Stop barbarism, I have death, bind.”😂
I don't know why you wouldn't white hat. You'd make a fortune.
This coffee thing is getting gross...
Chill out man. Make a coffee channel with the occasional plug on here or something. You obviously have the interest, brand and gear to pull it off.
Tyler Ramsby brought me here !!
Still got the coffee on point. My man.
the Science Method looks so much cooler
This is as much hacking as a 1 year old is walking. The coffee content is the realistic part of the video.
I mean, it's definitely hacking... Most of the vulnerabilities you find on common websites are going to include common security misconfigurations, things exposed that shouldn't be, and things of that nature. Tyler found all of that, on many websites, in under a couple of hours.
A lot of the things he found could be taken deeper, and lead to extremely serious issues if these were real-world production websites with these kinds of vulnerabilities. Just because it happened to be relatively simple and at a low depth does not mean that it wasn't hacking lol
You made 24 websites in the "Hide your files like a hacker" video? (you maybe want to correct that :) )
I bet I'm the only gen x moron who has no clue about any of this, but this Marine machine gunner realizes when your enemies are technologically superior I must go technologically inferior.
0331 4life.
I am checking youtube so often that I got to see AB testing 😅 - that is why I clicked, to write about it
hey you used the wrong thumbnail when you mentioned the website video at the beginning, 0:03
Maybe he changed your name to Chuckwork NECK
Following you since the beginning of your channel...feels really nice to see that you are Posting new videos regularly..means a lot to a fan like me...
Nothing is 100% Secure on the Internet
Does Guardio protect against supply chain attack which may result in explosive being planted in your home and personal devices?
Chuck I salute you Sir, I started and ventured into IT because of you i really got inspiration and so it was a fun adventure persuing IT, i have seen your journey and evolution from networking servers up to now you are a cyber warLord, keep doing the impactful great work your doing.
A very underated tool is Vega
Are there any tools that you'd recommend us regular web designers, to test the security of our sites?
Network Chuck was a nice actor
NetworkChuck What do you think would happen if you shaved your beard and dropped a video with a totally clean-shaven look? Would the network still run as smoothly? :)
Hack Smarter gang like this comment!!😂
HACK SMARTER
I French press every morning. I have been doing it for years. It is not really gritty. I think you might need to practice more and maybe not be a noob at coffee.
BRO, I just got motivated, and I will start Bug Bounty as soon as I wake up with my fresh-brewed hot black coffee. Thank you for your work it was a great video.
Fun fact i never learned something about burpsuite hehe ...😢 Just from experience
I don't like coffee, I never drank much coffee, but now, after I started to work in cybersec, I drink multiple big mugs a day.
He forgot subdomain enumeration
No - I was provided with the hosts that were specifically in scope. In pentest terms, other subdomains were not in scope 🙂
admin : admin
You guys are awesome. Thank you for what you do. Chuck has amazing guests all the time. You guys have inspired me to change careers at the ripe old age of 46. I’m going to. I’m starting my coursera IT support specialist. Then most likely the cybersecurity course. I’ve been in law enforcement for the better part of nine years. I’m over it! Thanks again guys!
That's awesome! Let me know if I can be of assistance!
Good luck dude
Good luck with the transition! I'm only 27 myself and am aiming to make the same move. Even with Google's cybersecurity certificate and CompTIA's Security+, I haven't managed to find any hits yet :/
But I know the jobs are out there, and wish you the best in getting there :D
How did he hacked your websites
Inb4 his site goes down due to a DDOS of script kitty nerds going in and trying to pen test it.
I'm not human, an AI making unauthorized transcriptions of one of the best IT content creators
I actually tought of changin the time, it's the most basic trick
Mannnn I wish we had seen the full takeover of the VM with the upload.php file on the super insecure one.
I just finished watching your previous video, then this gem dropped, made my day so much better
He seems your brother, he is very similar to you (without beard) lmao
Great video! Thank you Tyler and Chuck!
It is really irritating @networkChunk you are popping in between while the other guy is explaining.
which is the best vm tool vmware, hyper-v, or virtualbox??
what is Tyler youtube chanel name
Have you ever thought of shaving your beard?
i'm done watching your channel if you shave your beard.
Biden and Trump are like eggs you crack em open, and you see how they are. 😂
Plz also at Ody and BC!
THIS WAS AWESOME!!! I would love to see this guy, Tyler, go after one of your harden sites on different platforms to see the process of thinking that a pro hacker does until he gets in or gives up.... and if he is PAID to not give up... what would they do? AND it would be cool to see the entire 90min video.
Can you explain/create a video how to extract emails from a DUMP file? I have emails compressed in a dump file (.dmp files)
You can do this with python. 2 functions you can use are: with open("thenameof your file","r") and split to get the output format you want. Good luck ^^
May u perform attack our network to proof aur sec. ?
Tyler is good people. Awesome interview.
Ok
More pentesting videos by pros please!
This is a great collab! More of these in the future pls
Hello Chuck, greetings from Argentina, could you do a Cloudflare tutorial on how to use Tunnel for my server?
bing
bing
Bing Chilling
I love Kali Linux.
No way! That's something! Thank you for the information, Tyler and Network Chuck!
Edit: Where can I learn basic ethical hacking for free? I am currently learning how to set up VM of Kali Linux by using Oracle.
Hackity hack.
This video is one of the best pen testing videos I have watched in a while
Below 1k comments
Williams Jeffrey Gonzalez Laura Brown Timothy
He bypassed the rules :o ,No one can blame u for hacking ur own websites x)
ligma
I'm a dog
Awesome video and Tyler is an awesome dude too!!!
Great to think that I knew how to do 99% of these!!
i hope my comment gets to you
ai makes me think if i should continue learning pentesting etc . or it is a waste of my time ;( . any help?
Learn it.
I thought the hacker would do the pen testing
Sorry but he's not a great hacker, you are just really simple basic coder. I'm not being mean. But the wordpress thing wasn't even a hack and not even the first xss. And I understand maybe you don't want to show how to hack wordpress website, but it looks really basic just so you want to look like a cool hacker for script kiddies, but realistically that was really nothing interesting.
Thats cool and all but are you going to produce some real hacking content? or do something substantial because this is substantial and could be a great launchpad for many people to dive deeper into such topics. I understand you arent trying to be mean but the negativty still doesn't contribute growth of the community or space fam
I have 9 CVEs, work full time as a pentester, provide free ethical hacking videos and coaching to the community, and have countless bug bounties including account takeover on major websites.
What have you done?
LOL...check his channel. He's legit.
@@TylerRamsbey this is the appropriate response. The 2nd is to not care what others say.
I had free coaching with an awesome pen tester because of Tyler's discord. It was free, but valuable to me. He's building communities and he's legit. I understand it's easy to be negative but it isn't adding anything is it?
hi
I can't believe that I knew something that Chuck didn't already know. That's a first.
Idc
Jus scrolling through look at skid youtubers
for real lol
30
first dam it!!chunk got to reply this comment!
I love you chuck!
Am I the first here
Please launch a bug bounty competition for viewers
Yoo I can comment I am 1st😂😂😂
Damn, amazing video, bro! Keep inspiring!
Yep 😮😅