Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @XCorail
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @XCorail
-
Xavier René-Corail proslijedio/la je Tweet
Awesome CodeQL query from
@ggolawski that detects many variants of LDAP Injections in Java: Plain Java JNDI, UnboundID, Spring LDAP and Apache LDAP API. We are pleased to award him our maximum bounty reward $3000 https://github.com/Semmle/ql/pull/2651 …pic.twitter.com/wXJPh4ZwQ0
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Xavier René-Corail proslijedio/la je Tweet
Announcement
It’s our pleasure to announce that Nico Waisman (@nicowaisman) - Head of the GitHub Security Lab will give a talk at#TyphoonCon2020! https://typhooncon.com/speakers-2020/nicolas-waisman …pic.twitter.com/nIQjJgaDkV
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hey friends! If you are in Brussels this weekend, join me for drinks and chats! I'd love to talk to you about securing open source with the GitHub
@GHSecurityLab https://www.eventbrite.com/e/github-open-source-social-tickets-90820952915 …https://twitter.com/bdougieYO/status/1221881573215096833 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Xavier René-Corail proslijedio/la je Tweet
Another day, another crap article saying that “agile” is unsuited to ML projects because of sprints. There are no sprints in the Agile Manifesto. Stop thinking so linearly. Think in terms of Loops, Not Lines.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Xavier René-Corail proslijedio/la je Tweet
Gravity is a hoax used by Big Aviation to keep us from flying like the volant animals we are! It's just a theory. Physicists are only in it for the money! We should listen to both sides of the argument.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Xavier René-Corail proslijedio/la je Tweet
The 4th and final post of my "whoopsie-daisy" series. This one is about getting code execution from a heap overflow on a 2GB string, with a few obstacles such as ASLR and UTF8 restrictions. https://securitylab.github.com/research/ubuntu-whoopsie-CVE-2019-11484 …pic.twitter.com/xrTyS1Dvv7
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Xavier René-Corail proslijedio/la je Tweet
First blog post in a short series about some vulnerabilities that I found in Ubuntu's crash reporter earlier this year. I learned a lot from working on the exploits, so I am going to share some of the tips and tricks that I learned. https://securitylab.github.com/research/ubuntu-whoopsie-daisy-overview …pic.twitter.com/hqNAm8Bnzn
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Xavier René-Corail proslijedio/la je Tweet
Integer overflow that leads to a heap overflow found by
@agustingianni MQ software is such a critical piece of software for so many companies https://twitter.com/CVEnew/status/1201271035825475584 …pic.twitter.com/zKyrdL8UFe
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Xavier René-Corail proslijedio/la je Tweet
ICYMI: We're running a CTF until December 31st. Write a CodeQL query to find a specific class of DOM-based XSS vulns. The 2 best submissions will win Nintendo Switches, and 10 additional entries will receive coupons that can be used for GitHub Swag.https://securitylab.github.com/ctf/jquery
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Xavier René-Corail proslijedio/la je Tweet
If you are interested in working with CodeQL or some of the work we are doing at
@GHSecurityLab we just open a slack. Let me know and I will send you an invite.Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Xavier René-Corail proslijedio/la je Tweet
Yesterday we had our first GitHub Security Meetup, with ligthning talks by
@kevin_backhouse@Nosoynadiemas@agustingianni and Abishek Arya (Google). But also with exciting discussions with security folks. Thanks to all attendees and others: stay tuned for the next one in January.https://twitter.com/nicowaisman/status/1195506103825522689 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Xavier René-Corail proslijedio/la je Tweet
Learn how our security researcher
@nicowaisman found wireless vulnerabilities in the Linux Kernel, and variants, thanks to CodeQL:https://securitylab.github.com/research/anatomy-of-a-coffee-bean-wireless-vulnerabilities-in-linux-kernel …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Xavier René-Corail proslijedio/la je Tweet
Check out the GitHub Security Lab bounty program! https://securitylab.github.com/bounties . Write a query, find bugs, get rewarded.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Xavier René-Corail proslijedio/la je Tweet
We are releasing CodeQL, the unrivalled code exploration technology, and its new Visual Studio Code extension, free for open source code or academic research. Download CodeQLhttps://securitylab.github.com/tools/codeql
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Xavier René-Corail proslijedio/la je Tweet
Hi
we are the GitHub Security Lab. Find more information about us here:https://securitylab.github.com Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Xavier René-Corail proslijedio/la je Tweet
Stay tune for the fantastic announcements
@github will be doing tomorrow at the keynote! We will be talking about Security ;)Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Xavier René-Corail proslijedio/la je Tweet
In the next installment of our series on using Semmle QL for vulnerability hunting,
@l4wio shows how to research DOM-based XSS by finding sources and sinks.https://msrc-blog.microsoft.com/2019/11/06/vulnerability-hunting-with-semmle-ql-dom-xss/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Xavier René-Corail proslijedio/la je Tweet
Forgot to tweet this at the time but
@nicowaisman had a great talk on mapping vulnerabilities as a data flow graph from a source to a sink (eg a mempy) and using the pattern to identify other vulns in OSS#bluehatseattle@github@Semmlepic.twitter.com/q9gpiIllpy – mjesto: Showbox SoDo
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Xavier René-Corail proslijedio/la je Tweet
As a security research team rule we donate all bug bounties... and we (
@github@Semmle) double them! Join us to have a deeper impact in the world.https://twitter.com/alonsocandado/status/1187667974645260288 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Xavier René-Corail proslijedio/la je Tweet
Want to learn more about QL and how you can use it to find variants of vulnerabilities in your code? Join us for our Semmle User Group this Wednesday night at Mozilla. See the event details for more information.https://www.meetup.com/Semmle-San-Francisco-User-Group/events/265186468/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.