Oren Hafif

@OrenHafif

Security Engineer at Facebook. White Hat Hacking and PenTesting since 2007. Web App Security.

Vrijeme pridruživanja: ožujak 2012.

Tweetovi

Blokirali ste korisnika/cu @OrenHafif

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @OrenHafif

  1. 13. svi 2019.
    Poništi
  2. proslijedio/la je Tweet
    4. ožu 2019.

    The BSidesSF 2019 CTF winners have been announced — L to R: 1) dcua 2) perfectblue 3) OpenToAll. Congratulations to the winners and everyone who participated!

    Poništi
  3. proslijedio/la je Tweet
    28. sij 2019.

    Just confirmed this bug. Major iPhone FaceTime bug lets you hear the audio of the person you are calling … before they pick up

    Poništi
  4. proslijedio/la je Tweet
    25. sij 2019.

    Great new post about the work that we do on the security team at Facebook (yay ):

    Poništi
  5. proslijedio/la je Tweet
    9. sij 2019.

    Facebook is launching BountyCon, a 2 day bug bounty conference in Singapore in March - Details on how to be invited at

    Poništi
  6. proslijedio/la je Tweet

    We opensourced most of the Google CTF 2018 Finals challenges:

    Poništi
  7. 5. stu 2018.

    Are there still easy ways to snoop on people's history due to SOP leaks in browsers like or . Also, these should not affect XHRs right?

    Poništi
  8. 4. lis 2018.

    Going to ? Come say hi at the Facebook booth on Thursday :)

    Poništi
  9. 19. ruj 2018.

    So excited about Facebook's security presence in GHC. See you there: .

    Poništi
  10. proslijedio/la je Tweet
    8. lip 2018.

    Starting in October, you'll only be able to use Facebook Login if your site is HTPS.

    Poništi
  11. 16. svi 2018.

    YOUR INBOX TL;DR: "Updated Our Privacy Policy"

    Poništi
  12. proslijedio/la je Tweet
    13. svi 2018.

    The coolest part of bug bounty programs is, by definition, you discover things you weren't aware of or thinking about. "Client-side crsf" is a recent example that came through for us at facebook:

    Poništi
  13. proslijedio/la je Tweet
    11. svi 2018.

    Announcing Pyre, a type checker for python! The facebook product security team is all about finding, fixing and preventing security bugs. Improving the safety of the language itself is in the prevention bucket and today we share our tools.

    Poništi
  14. proslijedio/la je Tweet
    7. svi 2018.

    My first interactive blog post. Be sure to have Google logged in when you read it ;)

    Poništi
  15. 2. svi 2018.
    Poništi
  16. proslijedio/la je Tweet
    21. ožu 2018.

    The Cure53 Chinese New Year XSS Challenge 2018 is over. The two winners are: , being the second to solve, using 429 bytes 🥇 , being the first to solve, using 442 bytes 🥈 Congratulations :D Write-up coming soon!

    Poništi
  17. proslijedio/la je Tweet

    Taking over Facebook accounts using Free Basics partner portal - This is why Facebook's program is my favorite.

    Poništi
  18. proslijedio/la je Tweet
    7. velj 2018.
    Poništi
  19. proslijedio/la je Tweet
    1. velj 2018.

    The team I work on at FB (Product Security) is starting a team in NYC! Excited to see the team grow (and for more trips to NYC). If people are interested always happy to chat!

    Poništi
  20. proslijedio/la je Tweet
    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·