Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @Enesdex
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @Enesdex
-
Prikvačeni tweet
1. Top 500 Hackerone 2. 100 Bug in total
#BugBounty2020Goalspic.twitter.com/yOd66OMIp0Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Selim Enes Karaduman proslijedio/la je Tweet
When testing for SSRF, change the HTTP version from 1.1 to HTTP/0.9 and remove the host header completely. This has worked to bypass several SSRF fixes in the past.
#bugbountytip#bugbountytip#bugbountyHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
any update = where is my bounty?
#BugBountyHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Selim Enes Karaduman proslijedio/la je Tweet
I published another blog today. This is a story about an interesting SQL Injection I found. “A Not-So-Blind RCE with SQL Injection” by Prashant Kumarhttps://link.medium.com/sC7JJUxgG3
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Selim Enes Karaduman proslijedio/la je Tweet
Some
#bugbounty hunters made over €50.000 in bug bounties with this simple trick.
Thanks for the #BugBountyTip,@rez0__!pic.twitter.com/z9sPFJTNqV
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Selim Enes Karaduman proslijedio/la je Tweet
even though the jenkins was patched there were still build sources and other stuff including password ,etc. some directories were /build/ /downloads/ /images/ /testing/
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Selim Enes Karaduman proslijedio/la je Tweet
Do you know what 2nd order IDORs are?
Wondering how @jhaddix does recon or how@fransrosen breaks the web? Read everything in this week's#BugBytes!
https://go.intigriti.com/bugbytes-55 Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ok I'll find a bug!
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Selim Enes Karaduman proslijedio/la je Tweet
Any type of bug is 1. for me I rarely find bug
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Selim Enes Karaduman proslijedio/la je Tweet
Having trouble findings endpoints? Normal tricks failing? Try making a new wordlist by running wayback against the root domain (and all subdomains). Even if it's not in scope! echo http://example.com | waybackurls |cut -d '/' -f4- |sort -u |tee wordlist.txt
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Selim Enes Karaduman proslijedio/la je Tweet
-API TIP:19/31- Which features do you find tend to be more vulnerable? I'll start: - Organization's user management - Export to CSV/HTML/PDF - Custom views of dashboards - Sub user creation&management - Object sharing (photos, posts,etc)
#bugbountytipsHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Selim Enes Karaduman proslijedio/la je Tweet
Looking for kubelet information exposure? Use shodan and type this keyword : product:"Kubernetes" port:"10250" And try https://x.x.x.x:10255/pods
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Selim Enes Karaduman proslijedio/la je Tweet
When you are looking for subdomain takeover Use this method Save all subdomains on txt file And use dig for found all cname ` dig -f txt.txt|grep CNAME ` you will get all cname for subdomains Open cnames and looking for error if mean takeover This method it so easy
#bugbountytipsHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Selim Enes Karaduman proslijedio/la je Tweet
Authentication bypass https://link.medium.com/6POLXbk7j3 https://link.medium.com/fjRpVHTkg3 https://link.medium.com/FBilq4m7j3 https://link.medium.com/5Etuo0n7j3 https://link.medium.com/Zq5cjGn7j3 https://xpoc.pro/oauth-authentication-bypass-on-airbnb-acquisition-using-weird-1-char-open-redirect … https://link.medium.com/TC85brt7j3 https://www.randorisec.fr/client-side-validation … https://link.medium.com/IYzPwWK7j3 https://link.medium.com/SZDewmL7j3
#bugbountyHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Selim Enes Karaduman proslijedio/la je Tweet
basarilarinin devamini dilerim, tebrikler. :) eger arac bekledigim kullanima ulasirsa yakin zamanda tarama limitini 300'den 600'e 800'e 1200'e cikartabilirim.https://twitter.com/aslanewre/status/1218229656211664896 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Selim Enes Karaduman proslijedio/la je Tweet
I m surprised at how often companies use these credentials in internal login panels: company_name company_name admin company_name employee_name (/github username/from LinkedIn/any public source) company_name
#bugbounty#bugbountytip#infosecPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Selim Enes Karaduman proslijedio/la je Tweet
Yo hackers! I've built a small website that has some
#XSS challenges.
http://xss.pwnfunction.com
The main challenge for the week is `WW3`
All upcoming challenges will be hosted there, so stay tuned :)
Would love to know what you guys think. Have fun!pic.twitter.com/0vGboYQIY7
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Selim Enes Karaduman proslijedio/la je Tweet
Blog post I did about an SSRF on Yahoo a couple years ago that I forgot was still online
#bugbountyhttps://twitter.com/tolo7010/status/1215110767969615873 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Selim Enes Karaduman proslijedio/la je Tweet
This weekend I’ll be posting “Remote Code Execution in Three Acts”, about an RCE on one of the most popular microservices frameworks. Remember to subscribe at https://spaceraccoon.dev/subscribe to get it when I publish!
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Selim Enes Karaduman proslijedio/la je Tweet
If you need a nice GUI for HTTP manipulation you can use pownjs combined with the http://secapps.com tools. `npm install -g pown; pown module install @pown/apps; pown apps resend`
#bugbountytipspic.twitter.com/5FYwjqpLnX
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Selim Enes Karaduman proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.