ViewTube

ViewTube
Sign inSign up
Author thumbnail

Motasem Hamdan

Web Application Pentesting Challenges and walkthroughs

11,782 views
110 items
Last updated on Dec 18, 2023
public playlist 
This playlist is updated regularly to be a repository for web application penetration testing challenges and solutions or walkthroughs.
Motasem Hamdan
Local File Inclusion & Log Poisoning Explained | CTF Walkthrough
14:23
Local File Inclusion & Log Poisoning Explained | CTF Walkthrough

Motasem Hamdan
Session ID Hijacking With Python | OverTheWire Natas 18-19
13:04
Session ID Hijacking With Python | OverTheWire Natas 18-19

Motasem Hamdan
Using Burp Suite for Session Hijacking | OverTheWire Natas Level 17-18
10:09
Using Burp Suite for Session Hijacking | OverTheWire Natas Level 17-18

Motasem Hamdan
Time Based SQL Injection | OverTheWire Natas Level 16-17
12:17
Time Based SQL Injection | OverTheWire Natas Level 16-17

Motasem Hamdan
Bypassing SQL Filters Using Command Substitution | OverTheWire Natas Level 15-16
12:46
Bypassing SQL Filters Using Command Substitution | OverTheWire Natas Level 15-16

Motasem Hamdan
Blind SQL Injection With Python | OverTheWire Natas Level 15
12:29
Blind SQL Injection With Python | OverTheWire Natas Level 15

Motasem Hamdan
SQL Injection | Bypassing Double Quotes | OverTheWire Natas Level 14
14:00
SQL Injection | Bypassing Double Quotes | OverTheWire Natas Level 14

Motasem Hamdan
File Upload Vulnerabilities P12 | OverTheWire Natas 13
8:58
File Upload Vulnerabilities P12 | OverTheWire Natas 13

Motasem Hamdan
File Upload Vulnerabilities P11 | OverTheWire Natas Level 12-13
12:04
File Upload Vulnerabilities P11 | OverTheWire Natas Level 12-13

Motasem Hamdan
PHP Session Hijacking With XOR Encryption | OverTheWire War Games Natas Level 11
11:47
PHP Session Hijacking With XOR Encryption | OverTheWire War Games Natas Level 11

Motasem Hamdan
Intro to Web Application Security | TryHackMe Introduction to Cyber Security Path
22:32
Intro to Web Application Security | TryHackMe Introduction to Cyber Security Path

Motasem Hamdan
Understanding The Bypass Of File Upload Extension Filters P10 | TryHackMe Opacity
21:12
Understanding The Bypass Of File Upload Extension Filters P10 | TryHackMe Opacity

Motasem Hamdan
Demonstrating XSS,RCE and PostgreSQL Exploitation | CTF Walkthrough
23:46
Demonstrating XSS,RCE and PostgreSQL Exploitation | CTF Walkthrough

Motasem Hamdan
Docker Privilege Escalation and SSTI Exploitation | CTF Walkthrough
30:25
Docker Privilege Escalation and SSTI Exploitation | CTF Walkthrough

Motasem Hamdan
PHP Static-Eval Exploitation | CTF Walkthrough
15:17
PHP Static-Eval Exploitation | CTF Walkthrough

Motasem Hamdan
Python Pickle Exploitation | CTF Walkthrough
20:45
Python Pickle Exploitation | CTF Walkthrough

Motasem Hamdan
Fuzzing Web Applications with Wfuzz | CTF Walkthrough
15:39
Fuzzing Web Applications with Wfuzz | CTF Walkthrough

Motasem Hamdan
IFrame and HTML Injection | TryHackMe MD2PDF
9:18
IFrame and HTML Injection | TryHackMe MD2PDF

Motasem Hamdan
OWASP Top 10 API Vulnerabilities Explained | Part Four | TryHackMe
14:18
OWASP Top 10 API Vulnerabilities Explained | Part Four | TryHackMe

Motasem Hamdan
OWASP Top 10 API Vulnerabilities Explained | Part 3 | TryHackMe
13:37
OWASP Top 10 API Vulnerabilities Explained | Part 3 | TryHackMe

Motasem Hamdan
OWASP TOP 10 API Vulnerabilities Explained | Part Two | TryHackMe
16:23
OWASP TOP 10 API Vulnerabilities Explained | Part Two | TryHackMe

Motasem Hamdan
Server Side Request Forgery | Simple Demonstration | TryHackMe Surf
11:19
Server Side Request Forgery | Simple Demonstration | TryHackMe Surf

Motasem Hamdan
Web Application Firewall Evasion | CTF Walkthrough
23:49
Web Application Firewall Evasion | CTF Walkthrough

Motasem Hamdan
Broken Authentication OWASP Top 10 | TryHackMe Overpass
22:23
Broken Authentication OWASP Top 10 | TryHackMe Overpass

Motasem Hamdan
Complete Guide to BurpSuite Intruder | TryHackMe Junior Penetration Tester
47:38
Complete Guide to BurpSuite Intruder | TryHackMe Junior Penetration Tester

Motasem Hamdan
Command Injection Vulnerability | TryHackMe Junior Penetration Tester
12:13
Command Injection Vulnerability | TryHackMe Junior Penetration Tester

Motasem Hamdan
Cross Site Scripting XSS Explained | TryHackMe Junior Penetration Tester
26:38
Cross Site Scripting XSS Explained | TryHackMe Junior Penetration Tester

Motasem Hamdan
SQL Injection Vulnerability Explained | TryHackMe Junior Penetration Tester
47:14
SQL Injection Vulnerability Explained | TryHackMe Junior Penetration Tester

Motasem Hamdan
File Inclusion Vulnerability Explained | TryHackMe Junior Penetration Tester
34:06
File Inclusion Vulnerability Explained | TryHackMe Junior Penetration Tester

Motasem Hamdan
Web Application Content Enumeration | TryHackMe Content Discovery
30:28
Web Application Content Enumeration | TryHackMe Content Discovery

Motasem Hamdan
Insecure Direct Object Reference Vulnerability Explained (IDOR) | TryHackMe IDOR
10:58
Insecure Direct Object Reference Vulnerability Explained (IDOR) | TryHackMe IDOR

Motasem Hamdan
Server Side Template Injection Vulnerability | TryHackMe SSTI
18:50
Server Side Template Injection Vulnerability | TryHackMe SSTI

Motasem Hamdan
Basic Penetration Testing Tools | TryHackMe ToolsRus
15:28
Basic Penetration Testing Tools | TryHackMe ToolsRus

Motasem Hamdan
Understanding Insecure Direct Object Reference Vulnerability | TryHackMe ZTH: Web 2
9:44
Understanding Insecure Direct Object Reference Vulnerability | TryHackMe ZTH: Web 2

Motasem Hamdan
Understanding SSRF : Server Side Request Forgery Vulnerability | TryHackMe
13:46
Understanding SSRF : Server Side Request Forgery Vulnerability | TryHackMe

Motasem Hamdan
XXE and JSON Web Tokens Vulnerabilities | TryHackMe ZTH: Obscure Web Vulns
14:03
XXE and JSON Web Tokens Vulnerabilities | TryHackMe ZTH: Obscure Web Vulns

Motasem Hamdan
Understanding JSON Web Token Vulnerabilities | TryHackMe
11:52
Understanding JSON Web Token Vulnerabilities | TryHackMe

Motasem Hamdan
Understanding Server Side Template Injection | TryHackMe
20:15
Understanding Server Side Template Injection | TryHackMe

Motasem Hamdan
Demonstrating Cross Site Scripting Filter Bypass Techniques | TryHackMe
13:24
Demonstrating Cross Site Scripting Filter Bypass Techniques | TryHackMe

Motasem Hamdan
XML External Entity Vulnerability To SSH Shell | TryHackMe
13:06
XML External Entity Vulnerability To SSH Shell | TryHackMe

Motasem Hamdan
Security Testing Techniques For Authentication Mechanisms | TryHackMe
19:20
Security Testing Techniques For Authentication Mechanisms | TryHackMe

Motasem Hamdan
Understanding Local File Inclusion Vulnerability | TryHackmMe LFI
13:12
Understanding Local File Inclusion Vulnerability | TryHackmMe LFI

Motasem Hamdan
Web Application Vulnerability Scanning with OWASP ZAP | TryHackMe
20:20
Web Application Vulnerability Scanning with OWASP ZAP | TryHackMe

Motasem Hamdan
CGI and Tomcat Security Testing with Metasploit | Advent of Cyber
16:24
CGI and Tomcat Security Testing with Metasploit | Advent of Cyber

Motasem Hamdan
Anatomy and Analysis of SQL Injection | TryHackMe Advent of Cyber
20:55
Anatomy and Analysis of SQL Injection | TryHackMe Advent of Cyber

Motasem Hamdan
Understanding Fuzzing in Cybersecurity | TryHackMe Advent of Cyber
15:49
Understanding Fuzzing in Cybersecurity | TryHackMe Advent of Cyber

Motasem Hamdan
Re-Visiting File Upload Vulnerabilities P8 | TryHackMe Advent of Cyber
15:42
Re-Visiting File Upload Vulnerabilities P8 | TryHackMe Advent of Cyber

Motasem Hamdan
Understanding Cookies Security | TryHackMe Advent of Cyber
9:45
Understanding Cookies Security | TryHackMe Advent of Cyber

Motasem Hamdan
Local File Inclusion in Node.js | TryHackMe Advent of Cyber 1 Day 15
15:05
Local File Inclusion in Node.js | TryHackMe Advent of Cyber 1 Day 15

Motasem Hamdan
Bypassing Server Side Upload Filters P6 | Upload Vulnerabilities TryHackMe
14:48
Bypassing Server Side Upload Filters P6 | Upload Vulnerabilities TryHackMe

Motasem Hamdan
Exposing Sensitive Data and Viewing other users shopping carts - OWASP Juice Shop TyHackMe
15:44
Exposing Sensitive Data and Viewing other users shopping carts - OWASP Juice Shop TyHackMe

Motasem Hamdan
Broken Authentication and SQL Injection - OWASP Juice Shop TryHackMe
13:43
Broken Authentication and SQL Injection - OWASP Juice Shop TryHackMe

Motasem Hamdan
Analyzing Logs and Exploiting PHP Book Store - TryHackMe OWASP Top 10
10:51
Analyzing Logs and Exploiting PHP Book Store - TryHackMe OWASP Top 10

Motasem Hamdan
Explaining Insecure Deserialization Vulnerability - COMPTIA Pentest+ TryHackMe OWASP
15:36
Explaining Insecure Deserialization Vulnerability - COMPTIA Pentest+ TryHackMe OWASP

Motasem Hamdan
Finding Users Cookies with Reflective Cross Site Scripting - TryHackMe COMPTIA Pentest+ Pathway
10:12
Finding Users Cookies with Reflective Cross Site Scripting - TryHackMe COMPTIA Pentest+ Pathway

Motasem Hamdan
Grabbing Cookies With Stored Cross Site Scripting (Testing Scenario ) - TryHackMe
33:56
Grabbing Cookies With Stored Cross Site Scripting (Testing Scenario ) - TryHackMe

Motasem Hamdan
Finding Security Misconfigurations in a Website - COMPTIA Pentest+ TryHackMe OWASP Top 10
16:48
Finding Security Misconfigurations in a Website - COMPTIA Pentest+ TryHackMe OWASP Top 10

Motasem Hamdan
Explaining XML vulnerabilities [Owasp] - COMPTIA Pentest+ Course Preparation TryHackMe
13:46
Explaining XML vulnerabilities [Owasp] - COMPTIA Pentest+ Course Preparation TryHackMe

Motasem Hamdan
Finding Sensitive Data in a Website - COMPTIA Pentest+ TryHackMe OWASP
11:35
Finding Sensitive Data in a Website - COMPTIA Pentest+ TryHackMe OWASP

Motasem Hamdan
Demonstrating Command Injection - TryHackMe OWASP Walkthrough
12:20
Demonstrating Command Injection - TryHackMe OWASP Walkthrough

Motasem Hamdan
Demonstrating PHP Filters Bypass For Local File Inclusion - TryHackMe DogCat
39:03
Demonstrating PHP Filters Bypass For Local File Inclusion - TryHackMe DogCat

Motasem Hamdan
Demonstrating Web Application Vulnerabilities - Cyberseclabs Shock
15:38
Demonstrating Web Application Vulnerabilities - Cyberseclabs Shock

Motasem Hamdan
Testing For SQL Injection Database Vulnerability in search fields - bWAPP
24:42
Testing For SQL Injection Database Vulnerability in search fields - bWAPP

Motasem Hamdan
Penetration testing series - Part10: Cyberseclabs CMS walkthrough
16:07
Penetration testing series - Part10: Cyberseclabs CMS walkthrough

Motasem Hamdan
Penetration Testing Series - Part9: Testing For PHP Command Injection
7:53
Penetration Testing Series - Part9: Testing For PHP Command Injection

Motasem Hamdan
Penetration Testing Series - Part:7 - OS Command Injection
10:39
Penetration Testing Series - Part:7 - OS Command Injection

Motasem Hamdan
bWAPP - Part 5: Mail Header Injection
11:31
bWAPP - Part 5: Mail Header Injection

Motasem Hamdan
bWAPP - Part 3: IFrame Injection
10:11
bWAPP - Part 3: IFrame Injection

Motasem Hamdan
BWAPP - Part 2 : HTML Injection
21:01
BWAPP - Part 2 : HTML Injection

Motasem Hamdan
Ultimate Guide to Manual SQL Injection Testing and Training
35:56
Ultimate Guide to Manual SQL Injection Testing and Training

Motasem Hamdan
From Local File Inclusion to Remote Shell | OSCP Preparation
20:46
From Local File Inclusion to Remote Shell | OSCP Preparation

Motasem Hamdan
Fingerprinting and Detecting Web Application Firewalls
13:15
Fingerprinting and Detecting Web Application Firewalls

Motasem Hamdan
XML External Entity Injection [113] - OWASP
8:19
XML External Entity Injection [113] - OWASP

Motasem Hamdan
OWASP Directory Traversal - Sunrise Vulnhub Walkthrough
5:51
OWASP Directory Traversal - Sunrise Vulnhub Walkthrough

Motasem Hamdan
OWASP CSRF Vulnerability Code Review [26]
16:11
OWASP CSRF Vulnerability Code Review [26]

Motasem Hamdan
SQL and XSS Vulnerability Code Review [25]
4:19
SQL and XSS Vulnerability Code Review [25]

Motasem Hamdan
Reflected Cross Site Scripting PHP Code Review [24]
7:52
Reflected Cross Site Scripting PHP Code Review [24]

Motasem Hamdan
PHP command Injection Vulnerability Code review [23]
7:44
PHP command Injection Vulnerability Code review [23]

Motasem Hamdan
SQL Injection PHP Code Review [22]
11:00
SQL Injection PHP Code Review [22]

Motasem Hamdan
Practical Web Application Pentesting - Red Team Training - Nezuko CTF vulnhub
16:02
Practical Web Application Pentesting - Red Team Training - Nezuko CTF vulnhub

Motasem Hamdan
OWASP Local File Inclusion Vulnerability - Prime 1 Vulnhub CTF Walkthrough
10:25
OWASP Local File Inclusion Vulnerability - Prime 1 Vulnhub CTF Walkthrough

Motasem Hamdan
BsidesTLV 2018 Vulnhub CTF Walkthrough - IH8emacs
9:10
BsidesTLV 2018 Vulnhub CTF Walkthrough - IH8emacs

Motasem Hamdan
BsidesTLV 2018 CTF Vulnhub Walkthrough - Redirect Me
15:12
BsidesTLV 2018 CTF Vulnhub Walkthrough - Redirect Me

Motasem Hamdan
Insecure Direct Object Reference Vulnerability - OWASP
12:20
Insecure Direct Object Reference Vulnerability - OWASP

Motasem Hamdan
Cookie Security Via HTTPONLY and secure Flag | OWASP Top 10
12:16
Cookie Security Via HTTPONLY and secure Flag | OWASP Top 10

Motasem Hamdan
OWASP Stored XSS - Practical Approach - Penetration Testing and Cybersecurity Training
12:15
OWASP Stored XSS - Practical Approach - Penetration Testing and Cybersecurity Training

Motasem Hamdan
Practical Reflected XSS - Owasp Cross Site Scripting
11:37
Practical Reflected XSS - Owasp Cross Site Scripting

Motasem Hamdan
HTML Forms Injection Explained | EP1 | OWASP Hackademic | Challenge 10
4:36
HTML Forms Injection Explained | EP1 | OWASP Hackademic | Challenge 10

Motasem Hamdan
Practical Command Injection with Burp Suite | EP2 | OWASP Hackademic | Challenge 008
4:10
Practical Command Injection with Burp Suite | EP2 | OWASP Hackademic | Challenge 008

Motasem Hamdan
Directory Traversal With Burp Suite | EP1 | OWASP Hackademic | Challenge 007
6:47
Directory Traversal With Burp Suite | EP1 | OWASP Hackademic | Challenge 007

Motasem Hamdan
Playing with Javescript Functions | OWASP Hackademic | Challenge 006
3:40
Playing with Javescript Functions | OWASP Hackademic | Challenge 006

Motasem Hamdan
User Agent Spoofing Explained | EP1 | OWASP Hackademic | Challenge 5
2:58
User Agent Spoofing Explained | EP1 | OWASP Hackademic | Challenge 5

Motasem Hamdan
Practical Encoded Reflected XSS | EP3 | OWASP Hackademic | Challenge 004
5:09
Practical Encoded Reflected XSS | EP3 | OWASP Hackademic | Challenge 004

Motasem Hamdan
Reflected Cross Site Scripting | EP2 | OWASP Hackademic | Challenge 003
3:04
Reflected Cross Site Scripting | EP2 | OWASP Hackademic | Challenge 003

Motasem Hamdan
Playing with Javascript Methods | OWASP Hackademic | Challenge 002
6:48
Playing with Javascript Methods | OWASP Hackademic | Challenge 002

Motasem Hamdan
Directory Browsing Vulenrability and Spidering Explained | OWASP Hackademic | Challenge 001
6:42
Directory Browsing Vulenrability and Spidering Explained | OWASP Hackademic | Challenge 001

Motasem Hamdan
XPATH Injection Vulnerability Explained | OWASP WebGoat
4:26
XPATH Injection Vulnerability Explained | OWASP WebGoat

Motasem Hamdan
Session Fixation Attack Explained | OWASP WebGoat
7:26
Session Fixation Attack Explained | OWASP WebGoat

Motasem Hamdan
Client-side Validation (CSV) Bypass Explained | OWASP WebGoat
10:35
Client-side Validation (CSV) Bypass Explained | OWASP WebGoat

Motasem Hamdan
XML External Entity Injection Explained | EP1 | OWASP WebGoat
5:57
XML External Entity Injection Explained | EP1 | OWASP WebGoat