Videos
Tutorials and walkthroughs from my YouTube channel: the full OverTheWire Natas web security series, the bookshelf reviews, Burp Suite tips, PowerShell, penetration test methodology, and more.
2025
2024
2023
2022
2021
- \"Do you know any other words than `No`?\" - No... Annoying scammers trying to scam #shorts
- Practice and prepare for Incident Response - 35+ scenarios included
- Start Learning PowerShell - Essential Commands - Demos included
- How to document Penetration Testing Findings
- New Burp Suite Wordlists + Update Channels
2020
- Fuzzing and discovering vulnerabilities - Natas 29 Walkthrough - Overthewire.org
- Breaking ECB Crypto (No programming) - Natas 28 Walkthrough - Overthewire.org
- You actually can name a file CON in Windows (With bonus trick hiding data in plain sight)
- Book shelf review - Books which I currently read - Infosec, IT and other books
- Book shelf review - Shelf #4 - Infosec, IT and other books
- Book shelf review - Shelf #5 - Infosec, IT and other books
- Book shelf review - Shelf #3 - Infosec, IT and other books
- Book shelf review - Shelf #2 - Infosec, IT and other books
- Book shelf review - Shelf #1 - Infosec, IT and other books
- Attack methodology & fuzzing - Finding weird vulnerabilities - Natas27 Walkthrough - Overthewire.org
- Learning object serialization vulnerabilities - Natas 26 Walkthrough - Overthewire.org
2019
- Exploiting Local File Inclusion and defeating filters - Natas 25 - Overthewire.org - Walkthrough
- Funky PHP Type Juggling - Natas 24 - Overthewire.org - Walkthrough
- Fuzzing, trying to find anomalies and discrepancies - Natas 23 - Overthewire.org - Walkthrough
- Content discovery; finding hidden information - Natas 22 - Overthewire.org - Walkthrough
- Insecure configuration with shared hosting - Natas 21 - Overthewire.org - Walkthrough
- Exploiting a custom session handler - Natas 20 - Overthewire.org - Walkthrough
- Insecure session identifiers - Natas 18 - Overthewire.org - Walkthrough
- More insecure session identifiers - Natas 19 - Overthewire.org - Walkthrough
- Understanding a fully blind SQL Injection - Natas 17 - Overthewire.org - Walkthrough
- Understanding Filtered Command Injection with Sub Shells - Natas16 - Overthewire.org - Walkthrough
- Understanding Blind SQL Injection - Natas15 - Overthewire.org - Walkthrough
2018
- Understanding File Upload vulnerabilities - Natas12 - Overthewire.org - Walkthrough
- Understanding File Upload vulnerabilities with MIME checking - Overthewire.org - Natas 13
- Understanding SQL Injection and Login Bypass - Natas14 - Overthewire.org - Walkthrough
- XDR / Traps malware protection bypass
- Client security controls - Natas01 - Overthewire.org - Walkthrough
- Finding hidden data and understanding & limiting search engine crawling - Natas03 - Overthewire.org
- Finding weakness through source code review - Natas06 - Overthewire.org - Walkthrough
- Learn practical web security - Introduction & Walkthrough - Natas00 - Overthewire.org
- Learn website security, finding hidden data - Natas02 - Overthewire.org - Walkthrough
- Source code review and reversing an encoding algorithm - Natas08 - Overthewire.org - Walkthrough
- Understanding command injection - Natas09 - Overthewire.org - Walkthrough
- Understanding command injection with filter bypass - Natas10 - Overthewire.org - Walkthrough
- Understanding cookies and tampering of requests - Natas05 - Overthewire.org - Walkthrough
- Understanding Local File Inclusions - Natas07 - Overthewire.org - Walkthrough
- Understanding referrals and HTTP headers - Natas04 - Overthewire.org - Walkthrough
- Understanding XOR, encodings' and reversing an algorithm - Natas11 - Overthewire.org - Walkthrough
- LinkedIn Employee screen scraping with userscript