Tweetovi

Blokirali ste korisnika/cu @KarimPwnz

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @KarimPwnz

  1. proslijedio/la je Tweet
    31. sij

    , , and I are starting a new security blog. In our first write-up, we will discuss the impact of "SameSite by default" and how it affects web app sec. Feel free to request future topics you would like us to cover.

    Poništi
  2. proslijedio/la je Tweet
    4. pro 2019.

    ⚠️Open staging environments can lead to production account takeover ✔️If they use a separate DB, but same JWT secret ✔️If the username or e-mail address is used as identifier This is an excellent , thanks !

    Poništi
  3. proslijedio/la je Tweet
    5. stu 2019.

    I wrote a blog post about that time I broke GitHub's OAuth flow

    Poništi
  4. 2. stu 2019.

    17 hours to triage, resolve, and reward! That’s how fast ’s program on is. I’d like to also give a shoutout to . In that narrow timeframe, he managed to mentor me!

    Poništi
  5. 3. lis 2019.

    Firefox can minimize/stop vulnerabilities like CSRF and CORS misconfiguration. My new article for .

    Poništi
  6. proslijedio/la je Tweet
    29. ruj 2019.
    Poništi
  7. proslijedio/la je Tweet
    24. ruj 2019.

    Introducing ! Varanid can monitor DNS records, SSL certificates, and any file changes, with support for beautiful email, Slack, and custom webhook notifications. Perfect for a professional and reliable monitoring setup. Sign up now to get a 35% discount.

    Poništi
  8. proslijedio/la je Tweet
    23. ruj 2019.

    We have published a writeup of latest DOMPurify bypass with mutation XSS

    Poništi
  9. proslijedio/la je Tweet
    20. kol 2019.

    As I promised, here's my new blog post: Attacks on Applications of K-Anonymity - For the Rest of Us! Special thanks to and Rephlexsion from 's discord for reviewing the post.

    Poništi
  10. proslijedio/la je Tweet
    19. kol 2019.

    Interlace now has blockers! So if you want to multithread some tasks, but you need one to complete before doing the other one, you can do that now. Yeah It's hard to describe in a tweet just click the link and read the README.

    Poništi
  11. proslijedio/la je Tweet
    12. srp 2019.

    Announcing the public release of my tool secretz! Written during our research of TravisCI, secretz is a tool that minimizes the large attack surface of Travis CI. It automatically fetches repos, builds, and logs for any given organization. Check it out:

    Poništi
  12. proslijedio/la je Tweet
    3. srp 2019.

    Hey everyone! Curious about Rust? Perhaps you find the language confusing? Wondering what "ownership" and "borrowing" is all about? Join me this Saturday at 12PDT and Let's Learn Rust!

    Prikaži ovu nit
    Poništi
  13. proslijedio/la je Tweet
    2. srp 2019.

    I want to give another shout-out to for his amazing work on . This is an excellent reference for anyone that wants to determine the security implications of a publicly-disclosed API key.

    Poništi
  14. proslijedio/la je Tweet
    29. lip 2019.

    🔥 Burp Suite tutorial: IDOR vulnerability automation using Autorize and AutoRepeater (bug bounty) with by the community for the community!

    Poništi
  15. proslijedio/la je Tweet
    28. lip 2019.

    WRITE-UP: "GOTCHA: Taking phishing to a whole new level" by . Without a doubt the most creative attack scenario we've ever seen! 👏👏

    Poništi
  16. proslijedio/la je Tweet
    22. lip 2019.

    VIM tutorial: linux terminal tools for bug bounty pentest and redteams with

    Poništi
  17. proslijedio/la je Tweet
    18. lip 2019.

    When those new private invites be looking kinda fresh

    Poništi
  18. proslijedio/la je Tweet
    14. lip 2019.
    Poništi
  19. proslijedio/la je Tweet
    16. svi 2019.

    Time for a fresh from : change your username to cause namespace collisions and see what happens! Read more:

    Poništi
  20. proslijedio/la je Tweet
    26. tra 2019.

    Thanks to 's work, we have a list of the most common [secure] variables from 5,302,677 build logs on Travis CI. This is great for anybody doing reconnaissance on GitHub, GitLab, Bitbucket, etc.

    Prikaži ovu nit
    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·