Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @Gamliel_InfoSec
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @Gamliel_InfoSec
-
Prikvačeni tweet
"Lo que importa es que nunca te rindas de hacer en lo que tú crees." ~Arriba & más alláhttps://twitter.com/evanricafort/status/854755292071944193 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
(((Gamliel))) proslijedio/la je Tweet
My writeup for H1-415 CTF. Again, hope that you enjoy it. :) https://github.com/manoelt/H1-415-CTF-Writeup … Thanks,
@NahamSec@0xacb@Hacker0x01Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
(((Gamliel))) proslijedio/la je Tweet
#writeup by@WeizmanGal $12,500 USD Read From The File System Access (potencial RCE) on Whatsapp Desktop (electron)#BugBounty#infosechttps://www.perimeterx.com/tech-blog/2020/whatsapp-fs-read-vuln-disclosure …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
(((Gamliel))) proslijedio/la je Tweet
Im really going to enjoy this. Parse current JS files for endpoints Scrape endpoints from wayback create wordlist of endpoints Run through FFUF Bring into burp for further testing.https://twitter.com/joohoi/status/1222658222965825537 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
(((Gamliel))) proslijedio/la je Tweet
#bugbounty This tweet is for guys who ask me about duplicates! I started hunting in 2016 Nov and I’m still trying to avoide duplicates! But they never stopped me from hunting and learning more! Keep grinding! Good Luckpic.twitter.com/xlA9lx1wex
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
(((Gamliel))) proslijedio/la je Tweet
When you're brute forcing for endpoints, don't forget to add extensions. You can also use this method to discover backup files. Here's a command I use frequently: dirsearch -e php,asp,aspx,jsp,py,txt,conf,config,bak,backup,swp,old,db,sql -u <target>
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I see a new FB security team member around... :V
#65K#BugBounty https://twitter.com/Samm0uda/status/1221482119513460736 …pic.twitter.com/tAFDlAMnS8Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Waiting for this <3 If you too, follow him!
@zseano#BugBounty#ZSeanoRulezhttps://twitter.com/zseano/status/1212432956163313671 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
(((Gamliel))) proslijedio/la je Tweet
2nd critical of this week.
#BugBountyTip Abuse ouath Sign-up flow: 1) Use phone number instead email in 3rd party to sign-up. 2) Link victim's email to your 3rd party account while singnup on target. 3) Login to vicitim's account using your 3rd party account.pic.twitter.com/4yrK5KXa4v
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
(((Gamliel))) proslijedio/la je Tweet
We are screaming congratulations to our SEVENTH million-dollar hacker!
@inhibitor181 sprinted across the 7-figure payout mark, bringing in almost $300K in bounties over the last 90-days. You're incredible! Thank you for the work you do in security. Thank you for being you!
pic.twitter.com/yy8Lehg83l
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
(((Gamliel))) proslijedio/la je Tweet
I just released some of my PoCs! IDOR: https://youtu.be/3hJaxmiSzO4 Stored XSS: https://youtu.be/pwLG7tAGO08 Stored XSS: https://youtu.be/fnW0w2VYT2I RXSS: https://youtu.be/IC43MzAkC7E RXSS: https://youtu.be/DZxMB_KOoMk RXSS: https://youtu.be/L5isQP28o3M RXSS: https://youtu.be/CaoAh2CXyr0
#GeneralEG#BugBountyHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
(((Gamliel))) proslijedio/la je Tweet
OS Command Injection; The Pain, The Gain
#infosec#pentest#bugbountyhttps://www.blackhillsinfosec.com/os-command-injection-pain-gain/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
(((Gamliel))) proslijedio/la je Tweet
Follow this step-by-step guide to properly test for
#XSS… Like a#KNOXSS! https://brutelogic.com.br/blog/testing-for-xss-like-a-knoxss/ … by@rodoassis@brutelogicHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
(((Gamliel))) proslijedio/la je Tweet
Lesser Known Web Attack Lab - train your advances web security skills
#infosec#pentest#bugbounty https://github.com/weev3/LKWA pic.twitter.com/r4r7aozpmO
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
(((Gamliel))) proslijedio/la je Tweet
How to bypass Android certificate pinning and intercept SSL traffic
#infosec#pentest#bugbountyhttps://vavkamil.cz/2019/09/15/how-to-bypass-android-certificate-pinning-and-intercept-ssl-traffic …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
(((Gamliel))) proslijedio/la je Tweet
Ppl interested to learn about SSRF attacks
1. https://medium.com/bugbountywriteup/server-side-request-forgery-ssrf-testing-b9dfe57cca35 …
2. https://www.shorebreaksecurity.com/blog/ssrfs-up-real-world-server-side-request-forgery-ssrf/ …
3. https://hackerone.com/reports/115748
4. https://www.kernelpicnic.net/2017/05/29/Pivoting-from-blind-SSRF-to-RCE-with-Hashicorp-Consul.html …
5. https://geleta.eu/2019/my-first-ssrf-using-dns-rebinfing/ …
6. https://medium.com/@androgaming1912/gain-adfly-smtp-access-with-ssrf-via-gopher-protocol-26a26d0ec2cb …
7. https://medium.com/@w_hat_boy/server-side-request-forgery-ssrf-port-issue-hidden-approch-f4e67bd8cc86 …
8. https://medium.com/@armaanpathan/pdfreacter-ssrf-to-root-level-local-file-read-which-led-to-rce-eb460ffb3129 …
WriteupsHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
A Noob Guide to setup your Own OOB DNS Server
#SSRF#OOB#BugBounty#hacking#pentestinghttps://medium.com/@spade.com/a-noob-guide-to-setup-your-own-oob-dns-server-870d9e05b54a …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
(((Gamliel))) proslijedio/la je Tweet
live now! Coffee and wrapping up SSRF on
@WebSecAcademy! Let’s hack Carlos!http://Twitch.tv/nahamsecHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
(((Gamliel))) proslijedio/la je Tweet
Google Dorking is powerful but requires a lot of typing, I'm trying to reduce that typing with this semi-automated helper that generates links and then all you have to do is open tabs. Feel free to add your ideas to it and share! https://blog.deesee.xyz/automation/osint/2020/01/07/semi-automation-dorking.html … (I love that title)
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
(((Gamliel))) proslijedio/la je Tweet
Data exfiltration over DNS request covert channel - thanks to
@Arno0x0x#infosec#pentest#redteam https://github.com/Arno0x/DNSExfiltrator …pic.twitter.com/WTwVHJGXsTHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
Technical Operations Manager by day | 
| Bug Hunter sometimes at nights |