Class Central is learner-supported. When you buy through links on our site, we may earn an affiliate commission.

YouTube

Websocket SQL Injection and JWT Token Exploitation Tutorial

CryptoCat via YouTube

Start learning Write review
Great Learning Ad

Learn Python with Generative AI - Self Paced Online

Learn More → Coursera Ad

Google Data Analytics, IBM AI & Meta Marketing — All in One Subscription

Learn More →

Overview

Google, IBM & Meta Certificates — All 10,000+ Courses at 40% Off
One annual plan covers every course and certificate on Coursera. 40% off for a limited time.
Get Full Access
Learn how to solve the "Bug Report Repo" web challenge from the INTIGRITI 1337UP LIVE CTF 2023 in this walkthrough video. Follow along to discover multiple security vulnerabilities including IDOR exploitation, websocket-based SQL injection, and JWT token manipulation. Master techniques for using SQLMap through a proxy, cracking JWT signing keys, and forging authentication tokens to escalate privileges. Explore practical applications of web security testing tools while working through a multi-stage CTF challenge designed for beginners. Gain hands-on experience with real-world penetration testing scenarios including database enumeration, authentication bypass, and privilege escalation through detailed step-by-step demonstrations.

Syllabus

Start
Explore functionality
Tamper with requests IDOR
Identify SQLi
Modify websocket SQLi proxy
SQLMap proxied via burp suite
Explore hidden endpoint
Crack JWT token with jwt_tool
Forge new token to login as admin
End

Taught by

CryptoCat

Reviews

Start your review of Websocket SQL Injection and JWT Token Exploitation Tutorial

Start learning

Never Stop Learning.

Get personalized course recommendations, track subjects and courses with reminders, and more.

Sign up for free
Someone learning on their laptop while sitting on the floor.