Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @PranavVenkatS
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @PranavVenkatS
-
Prikvačeni tweet
Found a command injection bug in Google,Got a reward of 6000$ !,This bug will be featured in
#nullcon by#googlesecpic.twitter.com/DqsZtNdFRG
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Venkatesh Sivakumar proslijedio/la je Tweet
When testing for SSRF using a black list, take internal IP addresses and when encoding them, dont encode entire IP. Encode 1 octet of the IP address, or 2 or 3. For Instance: AWS Metadata - 0251.254.169.254 (this got the $160,000 payout in Oct 2018)
#bugbountytip#bugbountyPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Venkatesh Sivakumar proslijedio/la je Tweet
Hey bug hunters! Want a look at some of the top vulnerabilities ever found on
@Dropbox ? They just released the last blog post I wrote before leaving. Enjoy!#bugbountytipshttps://blogs.dropbox.com/tech/2020/02/dropbox-bug-bounty-program-has-paid-out-over-1000000/ …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Venkatesh Sivakumar proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Venkatesh Sivakumar proslijedio/la je Tweet
I was asked: "What advice would you give an ambitious and talented young person today?" I would say create some space for yourself, space in the physical and metaphorical sense. Space is the room to make mistakes and recover. Space is the "runway" in startup terminology.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Venkatesh Sivakumar proslijedio/la je Tweet
SQL Injection Payload List by
#ismailtasdelen https://link.medium.com/lxgpVQNUK3 Password Cracking Is Easy: Here’s How to Do It by@KennyMuLi in@TDataScience https://towardsdatascience.com/password-cracking-is-easy-heres-how-to-do-it-875806a1e42a … API Security Testing(Part 1) by Saumya Prakash Ranahttps://link.medium.com/tFlFCFfVK3Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Venkatesh Sivakumar proslijedio/la je Tweet
Here is my massive lib db (for ctfs/wargames/blind pwns etc.). It consists of thousands of libs across over a dozen Linux distributions and architectures spanning the last 20 years. It indexes symbols & gadgets (including one gadgets AKA magic gadgets). https://github.com/0xb0bb/karkinos pic.twitter.com/T76K3lkQ3r
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Venkatesh Sivakumar proslijedio/la je Tweet
I was tired of outdated XSS cheat sheets that don't touch on frameworks, html5, filter bypasses and other important stuff, so I made my own. I hope you find it as useful as I do. :) https://netsec.expert/2020/02/01/xss-in-2020.html …
#bugbountytipspic.twitter.com/Mdygq1PI9Z
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Venkatesh Sivakumar proslijedio/la je Tweet
This month I learnt how to analyse the JavaScript of a React Native application while bounty hunting. I wanted to share what I found out with everyone else.https://blog.assetnote.io/bug-bounty/2020/02/01/expanding-attack-surface-react-native/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Venkatesh Sivakumar proslijedio/la je Tweet
The 30th HTB box I solve in preparation for the OSCP. Initial Foothold - XXE injection + lack of input validation on user supplied input into the pickle serialization library. Privilege Escalation - Root RSA private key in git history.https://medium.com/@ranakhalil101/hack-the-box-devoops-writeup-w-o-metasploit-afa7d5952117?source=friends_link&sk=dd991ffcf647caa6262609fa6df38832 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Venkatesh Sivakumar proslijedio/la je Tweet
Akamai WAF Bypass, worked on a recent
#bugbounty program#xss <x onauxclick=a=alert,a(domain)>clickHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Venkatesh Sivakumar proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Venkatesh Sivakumar proslijedio/la je Tweet
Call to security researchers, bug bounty hunters, and security enthusiasts. Bharti Airtel is organizing an invite-only bug bounty event. Please follow the below link for registration. https://form.jotform.com/200273599522053
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Venkatesh Sivakumar proslijedio/la je Tweet
@ngalongc,@EdOverflow, and I are starting a new security blog. In our first write-up, we will discuss the impact of "SameSite by default" and how it affects web app sec. Feel free to request future topics you would like us to cover. https://blog.reconless.com/samesite-by-default/ …pic.twitter.com/5R23YmpksT
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Venkatesh Sivakumar proslijedio/la je Tweet
2019 has been a record-breaking year on lots of fronts - thanks to you all! Keep up your awesome discoveries.https://security.googleblog.com/2020/01/vulnerability-reward-program-2019-year.html …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Venkatesh Sivakumar proslijedio/la je Tweet
Some
#bugbounty hunters made over €50.000 in bug bounties with this simple trick.
Thanks for the #BugBountyTip,@rez0__!pic.twitter.com/z9sPFJTNqV
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Venkatesh Sivakumar proslijedio/la je Tweet
I took my 8-year-old to the office on Take Your Child to Work Day. As we were walking around, she starting crying & getting very cranky, so I asked her what was wrong. As my coworkers gathered round, she sobbed, 'Daddy, where are all the clowns that you said you worked with?'
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Venkatesh Sivakumar proslijedio/la je Tweet
Some Lateral Movement Methods: -Pass the Hash/Relay ((Net-)NTLM) -Pass the Ticket (Silver/Golden) -RDP (Legit creds) -Remote Services (VNC/SSH) -(D)COM (Remote sched tasks, Services, WMI) -Remote Service Vuln (EB) -Admin Shares (PSExec) -Webshell (Chopper) -WinRM (PS Remoting)
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Venkatesh Sivakumar proslijedio/la je Tweet
I always had a hard time finding
@GoogleVRP writeups beacuse they were all over the place in different blog posts, so I made this. If you know of something that is not in there, you are more than welcome to contribute!
#BugBonty#infosec#GoogleVRPhttps://github.com/xdavidhu/awesome-google-vrp-writeups …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Venkatesh Sivakumar proslijedio/la je Tweet
[Educational] One of the best blog posts that I ever read about going from 0 to unauth RCE in f**king Mikrotik OS step by step:https://medium.com/@maxi./finding-and-exploiting-cve-2018-7445-f3103f163cc1 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Venkatesh Sivakumar proslijedio/la je Tweet
Parameter tampering https://blog.securitybreached.org/2020/01/26/improper-input-validation-add-custom-text-and-urls-in-sms-send-by-snapchat-bug-bounty-poc … https://b3nac.com/posts/2019-09-02-Spear-Texting-Via-Parameter-Injection.html … https://link.medium.com/rkcIUvhuD3 https://link.medium.com/8tXuo2juD3 https://link.medium.com/a6yLwgkuD3 https://blog.avatao.com/How-I-could-steal-your-photos-from-Google … https://link.medium.com/eyxLrykuD3 https://link.medium.com/cgg3NLkuD3 https://link.medium.com/MZP6o1kuD3 https://link.medium.com/ztkAjeluD3
#bugbountyHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.