MD5 Length Extension and Blind SQL Injection - BruCON CTF part 3

Channel:

Subscribers:

921,000

Published on November 22, 2016 4:18:22 PM ● Video Link: https://www.youtube.com/watch?v=sMla6_4Z-CQ

Duration: 10:30

28,455 views

583

Last video from the BRUCON CTF 2016. Covering "Breaking the crypto", "Log Analysis BSQLi" and "Crypto". Topics covered: hash length extension attack, hashpump, blind sql injection, webserver access.log

Filippo: https://twitter.com/FiloSottile
cryptography.training: https://github.com/cryptography-training

Chapters:
00:00 - Intro
00:17 - MD5 Length Extension
05:07 - Blind SQL Injection
09:30 - Encoded Script

-=[ ❤️ Support ]=-

→ per Video: https://www.patreon.com/join/liveoverflow
→ per Month: https://www.youtube.com/channel/UClcE-kVhqyiHCcjYwcpfj9w/join

-=[ 🐕 Social ]=-

→ Twitter: https://twitter.com/LiveOverflow/
→ Website: https://liveoverflow.com/
→ Subreddit: https://www.reddit.com/r/LiveOverflow/
→ Facebook: https://www.facebook.com/LiveOverflow/

-=[ 📄 P.S. ]=-

All links with "*" are affiliate links.
LiveOverflow / Security Flag GmbH is part of the Amazon Affiliate Partner Programm.

#CTF #Cryptography #WebSecurity

Other Videos By LiveOverflow

2016-12-27	LiveOverflow Channel Trailer
2016-12-23	Riscure Embedded Hardware CTF setup and introduction - rhme2 Soldering
2016-12-20	[Live] Remote oldschool dlmalloc Heap exploit - bin 0x1F
2016-12-16	Remote format string exploit in syslog() - bin 0x1E
2016-12-13	First remote root exploit - bin 0x1D
2016-12-09	Linux signals and core dumps - bin 0x1C
2016-12-06	Celebrating 10.000 subscribers with a small Q&A - loopback 0x02
2016-12-02	Socket programming in python and Integer Overflow - bin 0x1B
2016-11-29	TCP Protocol introduction - bin 0x1A
2016-11-25	First steps into networking with net0 from exploit.education protostar - bin 0x19
2016-11-22	MD5 Length Extension and Blind SQL Injection - BruCON CTF part 3
2016-11-18	Making-of LiveOverflow videos
2016-11-15	The Heap: dlmalloc unlink() exploit - bin 0x18
2016-11-11	int0x80 from DualCore lent me his lockpicking set and I'm a horse - BruCON CTF part 2
2016-11-08	Simple reversing challenge and gaming the system - BruCON CTF part 1
2016-11-04	The Heap: Once upon a free() - bin 0x17
2016-11-01	The Browser is a very Confused Deputy - web 0x05
2016-10-28	The Heap: How do use-after-free exploits work? - bin 0x16
2016-10-25	What is CTF? An introduction to security Capture The Flag competitions
2016-10-21	Explaining Dirty COW local root exploit - CVE-2016-5195
2016-10-18	Channel is growing and Riscure hardware CTF starting soon - loopback 0x01

Tags:

live hacking

live ctf

let's hack

how to hack

hacking tutorials

software exploitation

Brucon CTF

hashpump

hash length extension

md5 hack

access.log

blind sql injection log

bsqli

Brucon

BRUCON 2016

Brucon 0x8

LiveCTF

live CTF

cryptography attack

crypto workshop