Highlight: THM: Advent of Cyber 2022 [Day 16] Secure Coding SQLi’s the king, the carolers sing

Channel:
United Kingdom MSec
Subscribers:
512
Published on ● Video Link: https://www.youtube.com/watch?v=jMd58FzpBKQ


Duration: 42:58
47 views
1

0:00 Story Readthrough
19:00 Flag 1 - elf.php intval() sanitization
24:05 Flag 2 - search-toys.php prepared statements
33:25 Flag 3 - toy.php intval() sanitization
37:30 Flag 4 - login.php prepared statements
41:30 Wrap-up & Outro

Set to have all their apps secured, the elves turned towards the one Santa uses to manage the present deliveries for Christmas. Elf McSkidy asked Elf Exploit and Elf Admin to assist you in clearing the application from SQL injections. When presented with the app's code, both elves looked a bit shocked, as none of them knew how to make any sense of it, let alone fix it. "We used to have an Elf McCode, but he founded a startup and helps us no more", said Admin.

After a bit of talk, it was decided. The elves returned carrying a pointy hat and appointed you as the new Elf McCode. Congratulations on your promotion!

[https://tryhackme.com/room/adventofcyber4](https://tryhackme.com/room/adventofcyber4) -- Watch live at https://www.twitch.tv/msec



Other Videos By MSec


2022-12-24Highlight: Horizon Forbidden West (2022) | First Playthrough | Part #14 - Gemini
2022-12-24Highlight: TryHackMe: Advent of Cyber [Day 24] [The End] The Year of the Bandit Yeti
2022-12-23Highlight: TryHackMe: Advent of Cyber [Day 23] Defence in Depth Mission ELFPossible: Abominable for
2022-12-22Highlight: TryHackMe: Advent of Cyber [Day 22] Attack Surface Reduction Threats are failing all arou
2022-12-22Highlight: TryHackMe: Advent of Cyber [Day 21] [TASK IS FIXED] MQTT Have yourself a merry little web
2022-12-21Highlight: TryHackMe: Advent of Cyber [Day 21] MQTT Have yourself a merry little webcam
2022-12-20Highlight: TryHackMe: Advent of Cyber [Day 20] Firmware Binwalkin’ around the Christmas tree
2022-12-19Highlight: Horizon Forbidden West (2022) | First Playthrough | Part #12 - The Sea of Sands
2022-12-19Highlight: TryHackMe: Advent of Cyber [Day 19] Hardware Hacking Wiggles go brrr
2022-12-18Highlight: THM: Advent of Cyber 2022 [Day 18] Sigma Lumberjack Lenny Learns New Rules
2022-12-17Highlight: THM: Advent of Cyber 2022 [Day 16] Secure Coding SQLi’s the king, the carolers sing
2022-12-17Highlight: THM: Advent of Cyber 2022 [Day 17] Secure Coding Filtering for Order Amidst Chaos
2022-12-15Highlight: THM: Advent of Cyber 2022 [Day 15] Secure Coding Santa is looking for a Sidekick
2022-12-14Highlight: TryHackMe: Steel Mountain [Easy]
2022-12-14Highlight: THM: Advent of Cyber 2022 [Day 14] Web Applications I'm dreaming of secure web apps
2022-12-13Highlight: THM: Advent of Cyber 2022 [Day 12] Malware Analysis Forensic McBlue to the REVscue!
2022-12-13Highlight: THM: Advent of Cyber 2022 [Day 11] Memory Forensics Not all gifts are nice
2022-12-13Highlight: THM: Advent of Cyber 2022 [Day 13] Packet Analysis Simply having a wonderful pcap time
2022-12-12Highlight: THM: Advent of Cyber 2022 [Day 9] Pivoting Dock the halls
2022-12-12Highlight: THM: Advent of Cyber 2022 [Day 10] Hack a game You're a mean one, Mr. Yeti
2022-12-08Highlight: THM: Advent of Cyber 2022 [Day 8] Smart Contracts Last Christmas I gave you my ETH


Tags:
Advent of Cyber
challenge
christmas
games
hacking
thm
tryhackme
twitch