Рет қаралды 1,424
Let's learn about race conditions and how to hunt for them.
Please leave a Like, subscribe, and let me know in the comments what you think about the video.
Happy Hacking!
Resources:
- portswigger.net/research/smas...
Follow me on:
✖️ - / bughunterlabs
Chapters:
00:00 - Intro
01:20 - Race Conditions
01:45 - Limit Overrun
02:16 - Race Condition: Gift Card
04:12 - Multiple Requests Send in Parallel
04:38 - Last-Byte Sync
05:28 - Single Packet Attack
06:00 - Benchmark
06:45 - State-Machines
07:00 - State Machine: Make Payment
07:45 - Race Conditions with Burp
08:27 - Methodology
09:10 - Example: Confirmation Email
11:07 - Outro