elChivato

@SecGus

17 y/o CTF addict | Pentester | | OSCP | HTB Top 10

Parent’s Basement
gusralph.info
Vrijeme pridruživanja: travanj 2015.
137 fotografija ili videozapisa Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @SecGus

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @SecGus

  1. Prikvačeni tweet
    17. pro 2019.

    This is some in depth Blind Second Order SQL Injection research I did that makes use of the extremely limited ORDER BY clause for the Shitter challenge on the TMHC CTF Competition.

    53 proslijeđena tweeta 94 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  2. prije 38 minuta

    This is an absolutely insane statistic. Why do Brits have such a superiority complex when we / they have done absolutely nothing to deserve it? You aren't special Frank, multiculturalism is good.

    A quarter of Brits (26%) - and 41% Leave voters - say they're bothered when they hear those from a non-English speaking country talking to each other in their own language whilst in the UK
    1 reply 1 korisnik označava da mu se sviđa
    Poništi
  3. prije 23 sata

    Security of design != Security of implementation ‼️‼️

    1 proslijeđeni tweet 5 korisnika označava da im se sviđa
    Poništi
  4. 3. velj

    Posted my notes for chapter one of "Hacking Web Apps" the book on hackmd. Gives a quick insight into what CORS policies are and touches on why they are relevant.

    1 proslijeđeni tweet 8 korisnika označava da im se sviđa
    Poništi
  5. 2. velj

    Never prouder. Amazing job ❤️

    First con, first face to face ctf, and first place! (Representing Yorcheto). A huge hug to my amazing teammates and ‘s staff.
    1 reply 1 proslijeđeni tweet 6 korisnika označava da im se sviđa
    Poništi
  6. proslijedio/la je Tweet
    1. velj
    Odgovor korisniku/ci

    I found a CSRF vuln in a home router I had, it allowed you to own the entire router. I’ve seen security products with CSRF, on their user admin sections (so either escalate your privileges or create your own user). So yep often under rated.

    1 reply 1 proslijeđeni tweet 5 korisnika označava da im se sviđa
    Poništi
  7. 1. velj

    Cross-Site Request Forgery is one of the most (if not the most) undervalued vulnerabilities in regards to severity.

    1 proslijeđeni tweet 8 korisnika označava da im se sviđa
    Poništi
  8. proslijedio/la je Tweet
    31. sij

    Happy brexit day you bloody idiots

    1 proslijeđeni tweet 5 korisnika označava da im se sviđa
    Poništi
  9. proslijedio/la je Tweet
    17. pro 2019.

    This is some in depth Blind Second Order SQL Injection research I did that makes use of the extremely limited ORDER BY clause for the Shitter challenge on the TMHC CTF Competition.

    53 proslijeđena tweeta 94 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  10. 29. sij

    "I am a 1337, strong, independent hacker that dominates all areas flawlessly and no one can tell me otherwise. Mass spraying CVE's is just more fun", the skid thought to himself, as he clicked the link for Shodan.

    9 korisnika označava da im se sviđa
    Poništi
  11. 28. sij

    If you feel like you lack certain AD understanding read this, it should be considered an essential :)

    Just published my latest blog titled (Ab)using Kerberos from Linux, which covers common Kerberos abuse vectors, as well as how to exploit them from Linux using Impacket. Check it out here:
    Prikaži ovu nit
    1 reply 3 proslijeđena tweeta 18 korisnika označava da im se sviđa
    Poništi
  12. proslijedio/la je Tweet
    28. sij

    Virus or no virus, being a racist online isn’t a good look.

    1 reply 1 proslijeđeni tweet 9 korisnika označava da im se sviđa
    Poništi
  13. proslijedio/la je Tweet
    28. sij

    Chairs are underappreciated

    7.060 replies 34.294 proslijeđena tweeta 307.307 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  14. proslijedio/la je Tweet
    6. sij

    My first blog post! Bypassing AV via in-memory PE execution. I've created a tool to go along with the post and help automate creating undetected PEs, links inside the post 😉

    8 replies 180 proslijeđenih tweetova 396 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  15. 28. sij

    This is a great way to go about anything infosec, find a resource, set a goal, learn from it, and give back to the community so others can follow. Kudos!

    When I'm top 15 (18 atm) at I'll be releasing writeups for all the challenges I solved so far :)
    1 reply 8 korisnika označava da im se sviđa
    Poništi
  16. proslijedio/la je Tweet
    26. sij

    6.942 proslijeđena tweeta 30.930 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  18. proslijedio/la je Tweet
    26. sij
    Odgovor korisnicima

    I think teaching something that’s not practical is nuts! In any case from a Foundational pov. Schools have continually failed to teach people real life skills which means people aren’t being equipped for later life.

    1 proslijeđeni tweet 2 korisnika označavaju da im se sviđa
    Poništi
  19. 26. sij

    Luckily my teacher heard me out, and has asked me to give the heads of department a quick walkthrough around the flask idea so that they can update the curriculum to use more relevant technologies in the future years.

    1 reply 1 korisnik označava da mu se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  20. 26. sij

    For example, I couldn't stand making my project in pascal, so I chose to write a simple flask webserver with python to host a custom made store front, with sessions, admin panel, cart... etc and I learnt / improved from it.

    1 reply 1 korisnik označava da mu se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  21. 26. sij

    My computer science course teaches pascal for the A-Level coursework... Since when was education about passing over learning relevant information? I get that it is similar to English, and easy to understand, but there are more relevant languages that carry the same attributes.

    Odgovor korisniku/ci @degenerateDaE
    Delphi. Depends on how retro though.
    4 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi

@SecGus još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·