ADITYA _SHENDE

@ADITYASHENDE17

Bug Hunter | Admin at Kong Cyber Security | MIT Pune | | Indian

Maharashtra, India
cyberskong.blogspot.com
Vrijeme pridruživanja: travanj 2019.
8 fotografija ili videozapisa Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @ADITYASHENDE17

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @ADITYASHENDE17

  1. proslijedio/la je Tweet
    4. velj

    I published this trick in 2015

    When testing for SSRF using a black list, take internal IP addresses and when encoding them, dont encode entire IP. Encode 1 octet of the IP address, or 2 or 3. For Instance: AWS Metadata - 0251.254.169.254 (this got the $160,000 payout in Oct 2018)
    Prikaži ovu nit
    7 replies 77 proslijeđenih tweetova 285 korisnika označava da im se sviđa
    Poništi
  2. prije 10 sati

    Story of SSRF SSRF to admin access was like this-> 2. Fetching data from internal resources so I tried uri=http://0.0.0.0 , Got default internal page .♥️ Here is exploit uri=http://0.0.0.0/administrator/dashboard. No auth on admin

    38 proslijeđenih tweetova 119 korisnika označava da im se sviđa
    Poništi
  3. prije 12 sati

    Heyo All you liked stories of RCE and takeover Want more ? Thinking to upload daily one what you say ?

    14 replies 6 proslijeđenih tweetova 104 korisnika označavaju da im se sviđa
    Poništi
  4. 3. velj

    Takeover story of repo 1.A site having github logo 2. Example: Click on logo it'll show you git repo() 3. In my case , It was 404 Main part 4. Created git account with name of company , So it was like Successful takeover

    5 replies 36 proslijeđenih tweetova 143 korisnika označavaju da im se sviđa
    Poništi
  5. 3. velj

    RCE story Forbidden 2.HTTP header in request - Login page access 3. Sqli queries tried no success 4. Some recon on gitlab - Found base64 pwd - decrypt 5. Accessed admin panel 6. Admin panel customized - CLI available 7. File read successful

    6 replies 70 proslijeđenih tweetova 280 korisnika označava da im se sviđa
    Poništi
  6. 2. velj

    Coming to goa nullcon ? I am up there from 3 march to 10 march Conference and enjoy too....

    8 replies 1 proslijeđeni tweet 35 korisnika označava da im se sviđa
    Poništi
  7. proslijedio/la je Tweet
    2. velj
    Odgovor korisnicima i sljedećem broju korisnika:

    You are looking only for traditional bugs , go explore some cheesy bugs . Follow for logical stuff , I do follow also and better dont go for common bugs like xss, csrf and limiting. Always hunt for P0 then you'll get P1 ONLY

    1 reply 4 proslijeđena tweeta 17 korisnika označava da im se sviđa
    Poništi
  8. proslijedio/la je Tweet
    30. sij

    Password reset flaw

    5 replies 185 proslijeđenih tweetova 394 korisnika označavaju da im se sviđa
    Poništi
  9. 30. sij

    Thanks for P1 Warrior

    Announcing our top P1 researchers for Q4 2019, drumroll please... 🥁 The continues to impress us with their awesome work, keep it up!
    6 korisnika označava da im se sviđa
    Poništi
  10. 29. sij

    2020 will be more devil than 2019

    1 reply 5 korisnika označava da im se sviđa
    Poništi
  11. proslijedio/la je Tweet
    27. sij

    When you're brute forcing for endpoints, don't forget to add extensions. You can also use this method to discover backup files. Here's a command I use frequently: dirsearch -e php,asp,aspx,jsp,py,txt,conf,config,bak,backup,swp,old,db,sql -u <target>

    13 replies 160 proslijeđenih tweetova 461 korisnik označava da mu se sviđa
    Poništi
  12. 26. sij

    Bought this beast thank you for all

    8 replies 2 proslijeđena tweeta 95 korisnika označava da im se sviđa
    Poništi
  13. 26. sij

    Gaining sympathy from female is the new trend in cyber security. If she don't know answer other f*ckbois wil cover her🤣🤣 what you say guys ?

    1 proslijeđeni tweet 11 korisnika označava da im se sviđa
    Poništi
  14. proslijedio/la je Tweet
    21. sij

    Sorry 😂😂 but indeed true

    6 replies 14 proslijeđenih tweetova 74 korisnika označavaju da im se sviđa
    Poništi
  15. proslijedio/la je Tweet
    29. pro 2019.

    Writeup on how I made $40,000 breaking the new Chromium Edge using essentially two XSS flaws by

    4 proslijeđena tweeta 7 korisnika označava da im se sviđa
    Poništi
  16. proslijedio/la je Tweet
    17. sij

    Hey guys, Big News will be opening students pass on Monday 20th Jan 2020 Midnight. So be ready upcoming hacker. Don't miss it. .

    11 proslijeđenih tweetova 13 korisnika označava da im se sviđa
    Poništi
  17. 18. sij

    I earned $3,000 for my submission on With love ♥️RCE

    69 korisnika označava da im se sviđa
    Poništi
  18. proslijedio/la je Tweet
    18. sij

    Happy for One more recognition for Third-I - Enhancing Policing Preventing Crimes with Digital Technologies by Computer Society Of India at Bhuvaneshvar in 2019 . This adds to 2 FICCI & 2 SKOCH awards of recognition. Pune Police Team will be in 2020

    पुणे शहर पोलिसांनी* सुरू केलेल्या Third I या कार्यप्रणालीला कॉम्पुटर सोसायटी ऑफ इंडिया चे ई-गव्हर्नन्स अवॉर्ड 2019 तर्फे "Award of Recognition" हा पुरस्कार देण्यात आला.
    10 replies 16 proslijeđenih tweetova 123 korisnika označavaju da im se sviđa
    Poništi
  19. proslijedio/la je Tweet
    16. sij

    Submit your bugs for nomination and awards!

    We are thrilled to introduce our Review Committee member Thank you Pranav Hivarekar for taking the time out from your busy schedule and to be part of our review committee. more:
    6 proslijeđenih tweetova 31 korisnik označava da mu se sviđa
    Poništi
  20. 14. sij

    Boss bounty soon..... Hit 3 tech giants in 2020 start Oracle, Microsoft, Google What about you guys ?

    1 reply 12 korisnika označava da im se sviđa
    Poništi

@ADITYASHENDE17 još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·