Exploiting AI Generated Code
If you are using AI coding assistant tools, you need to be cautions when doing so, as these tools often generate code with vulnerabilities. In today's video we will be attempting to exploit two vulnerabilities that were found in AI generated code, as well as showing you how you can easily fix them.
Use Snyk for free to find and fix security issues in your applications today! https://snyk.co/ugLYn
✍️ Resources ✍️
- Free Snyk account: https://snyk.co/ugLYn
⏲️ Chapters ⏲️
00:00 - Intro
00:43 - Getting Acquainted with the Application
01:37 - Exploiting a Vulnerability
03:14 - Further Exploiting - Triggering an Alert Box
03:46 - What's the Big Deal?
04:43 - How an Attacker can Locate your Sensitive Data
06:09 - Fixing the Vulnerability with Snyk
07:07 - Vulnerability 2
07:44 - How a NoSQL Injection Attack Works
08:06 - Passing in a Note ID
10:16 - Outro
⚒️ About Snyk ⚒️
Snyk helps you find and fix vulnerabilities in your code, open-source dependencies, containers, infrastructure-as-code, software pipelines, IDEs, and more! Move fast, stay secure.
Learn more about Snyk: https://snyk.co/ugLYl
📱 Connect with Us 📱
🖥️ Website: https://snyk.co/ugLYl
🐦 X: http://twitter.com/snyksec
💼 LinkedIn: https://www.linkedin.com/company/snyk
💬 Discord: https://discord.gg/devsecops-community-918181751526948884
- ️ Subscribe: https://www.youtube.com/c/SnykSec
- 🔥 We're hiring! Check our open roles: https://snyk.co/ugLYp
🔗 Hashtags 🔗
#ai #exploit #pentesting #devsecops