#506: ZERO Coding: How She Broke Into Cyber

You need to learn Linux. I've said this for a very long time. Occupy The Web says the same thing - if you want to learn hacking, you need to lean Linux. This is a fundamental skill. // Juniper Free Training // Big thank you to Juniper Networks for supporting the community and making this training free (and sponsoring my channel). Go to https://juniper.net/davidbombal to get lots of training and also learn how to get certified for $50 (Associate Level). Use this voucher code to register for your courses: DAVIDBOMBAL If you have issues with the Juniper registration, please use these links that they gave me: For Login assistance link https://userregistration.juniper.net/... Customer Support link- https://support.juniper.net/support/r... // Occupy The Web Books // Linux Basics for Hackers: https://amzn.to/3JlAQXe Getting Started Becoming a Master Hacker: https://amzn.to/3qCQbvh Network Basics for hackers: https://amzn.to/3W1iiCQ Top Hacking Books you need to read: • Top Hacking Books for 2023 // OTW Discount // Use the code BOMBAL to get a 20% discount off anything from OTW's website: https://davidbombal.wiki/otw Direct links to courses: Pro Subscriber: https://davidbombal.wiki/otwprosub 3 year deal: https://davidbombal.wiki/otw3year // Occupy The Web SOCIAL // Twitter: https://twitter.com/three_cube // Mr Robot Playlist // • Mr Robot // David's SOCIAL // Discord: https://discord.com/invite/usKSyzb Twitter: https://www.twitter.com/davidbombal Instagram: https://www.instagram.com/davidbombal LinkedIn: https://www.linkedin.com/in/davidbombal Facebook: https://www.facebook.com/davidbombal.co TikTok: http://tiktok.com/@davidbombal YouTube: / davidbombal // MY STUFF // https://www.amazon.com/shop/davidbombal // SPONSORS // Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com // MENU // 00:00 - Linux for Hackers 00:36 - Free training from Juniper 01:28 - Linux Basics for Hackers 06:57 - Why Linux is important 09:05 - Getting started with Linux // Using Virtual Machines 10:57 - "Latest is not always the greatest" 15:48 - Linux terms to familiarise & examples 18:28 - Linux file system explained & demo 26:55 - Linux terms to familiarise & examples (continued) 30:25 - Linux commands demo 56:02 - Password lists in Linux and where to find them 01:01:24 - Linux commands demo (continued) 01:10:41 - Conclusion linux kali linux ubuntu parrot os otw occupy the web internet of things hack hacking hacker cybersecurity Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel! Disclaimer: This video is for educational purposes only. #linux #kalilinux #ubuntu

11 Sep 20231h 11min

Should you be using IoT devices? Think carefully ... there is a new Botnet out there targeting IoT devices. IoT devices unfortunately often have very poor security.... and can be targeted. // Juniper Free Training // Big thank you to Juniper Networks for supporting the community and making this training free (and sponsoring my channel). Go to https://juniper.net/davidbombal to get lots of training and also learn how to get certified for $50 (Associate Level). Use this voucher code to register for your courses: DAVIDBOMBAL If you have issues with the Juniper registration, please use these links that they gave me: For Login assistance link https://userregistration.juniper.net/... Customer Support link- https://support.juniper.net/support/r... // Occupy The Web SOCIAL // Twitter: https://twitter.com/three_cube // OTW Discount // Use the code BOMBAL to get a 20% discount off anything from OTW's website: https://davidbombal.wiki/otw Direct links to courses: Pro Subscriber: https://davidbombal.wiki/otwprosub 3 year deal: https://davidbombal.wiki/otw3year // Mr Robot Playlist // • Mr Robot // David's SOCIAL // Discord: https://discord.com/invite/usKSyzb Twitter: https://www.twitter.com/davidbombal Instagram: https://www.instagram.com/davidbombal LinkedIn: https://www.linkedin.com/in/davidbombal Facebook: https://www.facebook.com/davidbombal.co TikTok: http://tiktok.com/@davidbombal YouTube: / davidbombal // Occupy The Web books // Linux Basics for Hackers: https://amzn.to/3JlAQXe Getting Started Becoming a Master Hacker: https://amzn.to/3qCQbvh Network Basics for hackers: https://amzn.to/3W1iiCQ Top Hacking Books you need to read: • Top Hacking Books for 2023 // Book Discussed // If it’s smart it’s vulnerable by Mikko Hypponen: https://amzn.to/3GdCbR0 // Other books // The Linux Command Line: https://amzn.to/3ihGP3j How Linux Works: https://amzn.to/3qeCHoY The Car Hacker’s Handbook by Craig Smith: https://amzn.to/3pBESSM Hacking Connected Cars by Alissa Knight: https://amzn.to/3dDUZN8 // Louis Rossmann YouTube // Louis Rossmann: / @rossmanngroup // MY STUFF // https://www.amazon.com/shop/davidbombal // SPONSORS // Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com // MENU // 00:00 - Coming Up 01:40 - Sponsored Segment 03:17 - Welcome Back, OTW! 05:11 - OTW's New Course 06:42 - Hacking IoT 07:00 - Botnets and DDOS 14:03 - OpenWrt 18:34 - How do Botnets get Access? 21:57 - Electronic or Manual Locks? 26:28 - TikTok 30:24 - You Buy but You Don't Own 32:22 - Ring Doorbell Story 33:31 - Right to Repair 36:05 - Hacking Vehicles 40:44 - Luddites 47:00 - Conclusion iot mirai mirai botnet otw occupy the web internet of things hack hacking hacker cybersecurity Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel! Disclaimer: This video is for educational purposes only. #hacking #cybersecurity #iot

9 Aug 202349min

So many stories and so much advice from Dave Plummer - the original creator of task manager and other interesting software like unzip on Microsoft Windows. Did the NSA have a backdoor in Microsoft Windows? Should you learn Rust or GoLang? Learn from someone who has years of development experience! // Dave’s Social // Youtube: / @davesgarage Twitter: https://twitter.com/davepl1968 LinkedIn: https://www.linkedin.com/in/davidplummer // Great videos on Dave's channel // Windows Task Manager: • Inside Task Manag... Windows Clock: • Inside Task Manag... Windows Start Menu: • Behind the Window... Windows Zip Folders; • 06.Secret History... Windows Activation: • Blame Me: The INS... 10x your code with ChatGPT: • 10X Your Code wit... // Great Playlist on Dave's channel // • Windows War Stories // David's SOCIAL // Discord: https://discord.gg/davidbombal Twitter: https://www.twitter.com/davidbombal Instagram: https://www.instagram.com/davidbombal LinkedIn: https://www.linkedin.com/in/davidbombal Facebook: https://www.facebook.com/davidbombal.co TikTok: http://tiktok.com/@davidbombal // MY STUFF // https://www.amazon.com/shop/davidbombal // SPONSORS // Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com // Menu // 00:00 - Coming up 01:01 - Dave Plummer's history 02:26 - Dave's Garage 03:33 - How Dave started at MicroSoft 06:15 - Task Manager 10:36 - Other Operating Systems 11:06 - What OS is Dave coding on? 11:30 - How Dave got into coding 13:14 - Advice to younger people 14:18 - Sell your work, not yourself 15:38 - Still coding long after Microsoft 16:22 - Visual Zip 18:40 - Show your work 19:31 - Was it easier in the old days? 21:07 - Would you use Rust today? 21:43 - Should I learn C? 22:10 - What language is Windows written in? 23:14 - ZIG and other programming languages 25:05 - Start with Python 26:32 - Write your code right 27:00 - Windows 95 vs NT 30:00 - 20-year-old code still in Windows 30:47 - Task manager is still the same 31:11 - Politics between Win 95 and NT team 31:48 - Product Activation 33:42 - Loved for task manager; hated for Windows activation 35:05- Open Source 36:00 - Who is looking at your code? 37:15 - NSA and backdoor access to Windows 38:07 - Sneaking code into Windows 38:53 - Windows Easter eggs 39:54 - Doom on Excel 40:17 - Secret messages in MS DOS 40:46 - Pinball 43:49 - The Start menu 45:08 - Calculator and Clock 47:58 - Blue screen of death 48:59 - Chat GPT 51:01 - Chat GPT and bad code 51:30 - Plans with your channel 52:27 - Meeting Dave in person 52:45 - Outro microsoft windows microsoft windows windows nt windows 98 windows 95 python rust #microsoft #windows #cybersecurity

24 Juli 202353min

This is a real world demonstration of the SQL Injection attack used in the recent MOVEit hack. This is real world - not just a simple SQL attack. Big thank you to Juniper Networks for supporting the community and making training free. Go to https://juniper.net/davidbombal to get lots of training and also learn how to get certified for $50 (Associate Level). // Mr Robot Playlist // • Mr Robot // Proof of Concept // Horizon3: https://www.horizon3.ai/moveit-transf... // David's SOCIAL // Discord: https://discord.com/invite/usKSyzb Twitter: https://www.twitter.com/davidbombal Instagram: https://www.instagram.com/davidbombal LinkedIn: https://www.linkedin.com/in/davidbombal Facebook: https://www.facebook.com/davidbombal.co TikTok: http://tiktok.com/@davidbombal YouTube: / davidbombal // Occupy The Web social // Twitter: https://twitter.com/three_cube // OTW classes // Hacker's Arise Pro Subscription: https://hackers-arise.com/online-stor... Get 3 year's access to all live courses: https://hackers-arise.com/online-stor... // Occupy The Web books // Linux Basics for Hackers: https://amzn.to/3JlAQXe Getting Started Becoming a Master Hacker: https://amzn.to/3qCQbvh Top Hacking Books you need to read: • Top Hacking Books... // Other books // The Linux Command Line: https://amzn.to/3ihGP3j How Linux Works: https://amzn.to/3qeCHoY The Car Hacker’s Handbook by Craig Smith: https://amzn.to/3pBESSM Hacking Connected Cars by Alissa Knight: https://amzn.to/3dDUZN8 // Occupy The Web Website / Hackers Arise Website // Website: https://www.hackers-arise.com/?afmc=1d OTW Mr Robot series: https://www.hackers-arise.com/mr-robot Want to learn more from Occupy the Web? You can join his classes using these links: Hacker's Arise Pro Subscription" https://hackers-arise.com/online-stor... Get 3 year's access to all live courses: https://hackers-arise.com/online-stor... // MY STUFF // https://www.amazon.com/shop/davidbombal // SPONSORS // Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com // MENU // 00:00 - Coming Up 00:55 - Juniper Free Training (Sponsored segment) 01:51 - OccupyTheWeb books and new books 03:57 - The MOVEit breach explained 05:20 - Clop website // Companies affected 08:52 - The two different vulnerabilities 10:26 - The truth about SQL Injection 12:21 - Using Shodan 14:05 - Proof of concept of the exploit 16:18 - SQL Injection example 20:35 - MOVEit hack analysis / How it was done 28:57 - CVE-2023-35708 SQL Injection vulnerability explained 30:36 - What is Taiwan Semi-Conductor (TSMC) and why they got hacked 31:01 - SQL Injection hack in the real world 32:45 - OccupyTheWeb online classes 33:46 - Union statement // Stacking queries demo 37:02 - Upcoming OccupyTheWeb courses and classes 39:50 - Conclusion MOVEit sql sql injection hack hacking hacker pegasus cybersecurity Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel! Disclaimer: This video is for educational purposes only. #hacking #cybersecurity #sql

10 Juli 202340min

He made $100K in 2 months from Bug Bounty! Learn from one of the best! Big thanks to Brilliant for sponsoring this video! Get started with a free 30 day trial and 20% discount: https://brilliant.org/DavidBombal Ben (Nahamsec) hacks platforms legally and with their permission! He gives us his top 3 Bug Bounty tips for 2023. // Websites recommended by Ben // * https://hackerone.com * https://www.bugcrowd.com/ * https://picoctf.org/ * https://portswigger.net/web-security * https://www.intigriti.com/ * https://www.hacker101.com/ * https://www.synack.com/ // Ben’s Social // Twitch: https://www.twitch.tv/nahamsec YouTube: / nahamsec Github: https://github.com/nahamsec Instagram: https://www.instagram.com/nahamsec Twitter: https://twitter.com/NahamSec Website: https://nahamsec.com/ // Videos mentioned // Ben's $100K video: • I MADE $100,000 I... Kali Linux Nethunter Android Install in 5 minutes (Rootless): • Kali Linux NetHun... // Youtube channels recommended by Ben// @InsiderPHD: / @insiderphd @FarahHawa: / @farahhawa @STOKFredrik: / @stokfredrik @phd_security: / @phd_security @_JohnHammond: / @_johnhammond @IamJakoby: / @iamjakoby @HackerSploit: / @hackersploit @BugBountyReportsExplained: / @bugbountyreports... // Recommended Books // Atomic Habits by James Clear: https://amzn.to/46D8yDE Hacking API’s by Corey J. Ball: https://amzn.to/3NRTafh Bug Bounty Bootcamp by Vickie Li: https://amzn.to/3JAPZWS The Web Application Hacker’s Handbook 2 by Daffyd Stuttard and Marcus Pinto: https://amzn.to/3XvNmLp // MENU // 00:00 - Coming up 01:00 - Brilliant sponsored segment 02:31 - Making $100K in 2 months with bug bounty 04:43 - Top 3 tips for starting with bug bounty 06:15 - Top 3 technical tips for bug bounty 08:10 - "Don't learn to hack, hack to learn" // Consistency is key 11:32 - Top 3 free learning platforms for bug bounty 12:47 - Top 3 bug bounty platforms 15:08 - Vulnerability Disclosure Programs // How VDPs can open doors to opportunities 19:55 - Top 3 recommended YouTube channels 21:27 - Top 3 recommended books 22:17 - Top 3 technologies to understand 23:45 - Helping others // Twitch, YouTube & Twitter 25:35 - Conclusion // MY STUFF // https://www.amazon.com/shop/davidbombal // SPONSORS // Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com xss cross site scripting portswigger ajax jscript javascript xss attack penetration testing ethical hacking bug bounty Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel! #xss #hack #javascript

10 Juli 202326min

Watch and learn. So many truths shared in this video. A very big thank you to Cisco for sponsoring my Cisco Live trip and this video. // Fletcher's Social // LinkedIn: https://www.linkedin.com/in/fletcherp... Twitter: https://twitter.com/fletcherprevin Cisco Newsroom: https://newsroom.cisco.com/c/r/newsro... // David's SOCIAL // Discord: https://discord.com/invite/usKSyzb Twitter: https://www.twitter.com/davidbombal Instagram: https://www.instagram.com/davidbombal LinkedIn: https://www.linkedin.com/in/davidbombal Facebook: https://www.facebook.com/davidbombal.co TikTok: http://tiktok.com/@davidbombal YouTube: / davidbombal // MENU // 00:00 - I'm unqualified for every job 00:33 - SVP & CIO Fletcher Previn's background 03:24 - "Tech is a difficult job" 04:42 - What does a CIO do? 06:02 - What employers look for when hiring? 07:14 - Dealing with Imposter Syndrome 08:01 - Should I still apply when I don't meet all the requirements? 09:10 - Explaining the Dunning-Kruger effect 09:45 - Moving from a technical role to management 12:52 - Cisco products 13:48 - Directional vision for Cisco's networks 14:52 - Infrastructure 15:58 - Cisco defending against hackers 16:47 - Attack surface of the environment has changed with hybrid work 17:57 - What to expect for the future in tech? 19:00 - Reason why the adoption of AI is slow 19:34 - Mastery of language is the next frontier of AI 19:46 - Ai Infrastructure providers 21:15 - Networking is not dying 22:01 - Advice for your younger-self // Conclusion 22:56 - Conclusion cybersecurity jobs ai python development networking #cybersecurity #networking #ai

3 Juli 202323min

Neal is back and shares his Top 3 Cybersecurity tips! There's also some very important life lessons in this video as Neal shares some life changing information. // Previous Videos // 2022: • Ex-NSA hacker tel... 2021: • Ex-NSA hacker tel... // Connect with Neal // Instagram Personal: https://www.instagram.com/it.junkie/ Instagram Cybersecurity: https://www.instagram.com/cyber.insec... YouTube: / cyberinsecurity LinkedIn: https://www.linkedin.com/in/nealbridges/ Twitter: https://twitter.com/ITJunkie All: https://linktr.ee/cyber_insecurity // Connect with David // Discord: https://discord.com/invite/usKSyzb Twitter: https://www.twitter.com/davidbombal Instagram: https://www.instagram.com/davidbombal LinkedIn: https://www.linkedin.com/in/davidbombal Facebook: https://www.facebook.com/davidbombal.co TikTok: http://tiktok.com/@davidbombal YouTube: / davidbombal // MENU // 00:00 - Coming up 01:27 - Neal Bridges' PGA goal // Help support Neal's journey to the PGA 03:06 - The cancer story 18:04 - Neal's top 3 tips in life 26:54 - Top 3 tips for careers 39:47 - The hacked youtube channel story 41:41 - Top 3 tips for careers (continued) 43:26 - You can get hacked 45:13 - Advice to get to higher positions (upcoming) 47:03 - Business acumen // Learn business skills 50:13 - Soft skills // Communication is key 52:43 - "I'm Robert Downey Jr." 55:17 - Technical vs Business // Find the balance 01:00:09 - Neal is back online 01:02:24 - Neal's goal to get to the PGA 01:06:02 - Conclusion nsa nsa hacker nsa hacking ethical hacking hacking ethical hacker Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel! Disclaimer: This video is for educational purposes only. #hacker #cybersecurity #nsa

26 Juni 20231h 7min

Pegasus is used around the world to hack people's phones. It's extremely dangerous and can be used to control a phone remotely without the user knowing that is running. Big thanks to Brilliant for sponsoring this video! Get started with a free 30 day trial and 20% discount: https://brilliant.org/DavidBombal // Mr Robot Playlist // • Mr Robot // David's SOCIAL // Discord: https://discord.com/invite/usKSyzb Twitter: https://www.twitter.com/davidbombal Instagram: https://www.instagram.com/davidbombal LinkedIn: https://www.linkedin.com/in/davidbombal Facebook: https://www.facebook.com/davidbombal.co TikTok: http://tiktok.com/@davidbombal YouTube: / davidbombal // Occupy The Web social // Twitter: https://twitter.com/three_cube // OTW classes // Hacker's Arise Pro Subscription: https://hackers-arise.com/online-stor... Get 3 year's access to all live courses: https://hackers-arise.com/online-stor... // Occupy The Web books // Linux Basics for Hackers: https://amzn.to/3JlAQXe Getting Started Becoming a Master Hacker: https://amzn.to/3qCQbvh Top Hacking Books you need to read: • Top Hacking Books... // Other books // The Linux Command Line: https://amzn.to/3ihGP3j How Linux Works: https://amzn.to/3qeCHoY The Car Hacker’s Handbook by Craig Smith: https://amzn.to/3pBESSM Hacking Connected Cars by Alissa Knight: https://amzn.to/3dDUZN8 // Occupy The Web Website / Hackers Arise Website // Website: https://www.hackers-arise.com/?afmc=1d OTW Mr Robot series: https://www.hackers-arise.com/mr-robot Want to learn more from Occupy the Web? You can join his classes using these links: Hacker's Arise Pro Subscription" https://hackers-arise.com/online-stor... Get 3 year's access to all live courses: https://hackers-arise.com/online-stor... // MY STUFF // https://www.amazon.com/shop/davidbombal // SPONSORS // Interested in sponsoring my videos? Reach out to my team here: sponsors@davidbombal.com // MENU // 00:00 - Intro 00:22 - Brilliant Add 01:59 - OTW Books 03:54 - Pegasus overview 06:54 - Pegasus info 07:40 - Pegasus in use 08:56 - Human rights 09:25 - 0 Day malware 13:33 - Original Pegasus 1 click exploit 14:30 - How it works 16:52 - Remote access 17:48 - Malware links 19:30 - Femtocell 21:01 - Stingray 22:10 - How they work 23:50 - Pegasus 0 click exploit 24:55 - Pegasus malware 25:29 - Human rights 26:51 - ISO/Android vs malware 27:40 - Governments 29:19 - What can we do? 30:35 - Be responsible 32:01 - Governments and malware 32:51 - NSO 35:14 - Privacy 36:03 - Command and control 37:36 - Processes 38:38 - NSO developers 38:53 - Expectations 40:30 - Social engineering 43:04 Eternal blue 44:25 Chrysaor 45:23 Outro thoughts pegasus spyware hacking hacker malware Please note that links listed may be affiliate links and provide me with a small percentage/kickback should you use them to purchase any of the items listed or recommended. Thank you for supporting me and this channel! Disclaimer: This video is for educational purposes only. #pegasus #iphone #andorid

22 Juni 202347min