PHP Object Injection & Serialization: Python Web Hacking | Natas: OverTheWire (Level 26)

Python

Video is ready, Click Here to View ×


Thanks for watching!
If you would like to support me, please like, comment & subscribe, and check me out on Patreon and Amazon!
Patreon: https://patreon.com/johnhammond010
Amazon: https://www.amazon.com/b?_encoding=UTF8&tag=johnhammond01-20&linkCode=ur2&linkId=77d12c0560e69d115a2345ad0ee2deb5&camp=1789&creative=9325&node=13900871

8 thoughts on “PHP Object Injection & Serialization: Python Web Hacking | Natas: OverTheWire (Level 26)

  1. dude never use python's b64encode, it gives me a different result for the same value compared to what php gives me. Took about 3 hours to find out that that's why my exploit wasn't working

  2. Id like if you would do more php attacks in the future! it’s so interesting and maybe add your two cents as how to protect or change the code to prevent against the attack would be awesome 😀

    Questions:
    If in this case you don’t have the source code, how likely is this attack vector do you think?

Leave a Reply

Your email address will not be published. Required fields are marked *