PwnStar

@__PwnStar__

Try Harder

India
Vrijeme pridruživanja: travanj 2017.

Tweetovi

Blokirali ste korisnika/cu @__PwnStar__

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @__PwnStar__

  1. proslijedio/la je Tweet
    27. pro 2019.
    Poništi
  2. proslijedio/la je Tweet
    4. srp 2019.

    WhatsApp attachments are stored in the sdcard unencrypted. Firefox has read sdcard permission. Any app with sdcard permission can steal your WhatsApp attachments. Sorry, this is not a bug, this is by design.

    Poništi
  3. proslijedio/la je Tweet
    22. velj 2019.

    No nmap? No problem! Grab banners from local IPv4 listening ports. Look at me ma! I done a regex. netstat -nlt | grep 'tcp ' | grep -Eo "[1-9][0-9]*" | xargs -I {} sh -c "echo "" | nc -v -n -w1 127.0.0.1 {}"

    Prikaži ovu nit
    Poništi
  4. proslijedio/la je Tweet
    4. velj 2019.

    Photon : Incredibly fast crawler designed for OSINT : cc

    Poništi
  5. proslijedio/la je Tweet
    5. velj 2019.
    Poništi
  6. proslijedio/la je Tweet

    Modlishka - An Open Source Phishing Tool With 2FA Authentication

    Poništi
  7. proslijedio/la je Tweet
    3. velj 2019.

    LOLBAS - Living Off The Land Binaries And Scripts (LOLBins And LOLScripts)

    Poništi
  8. proslijedio/la je Tweet

    . 's NSE categories are auth, broadcast, brute, default. discovery, dos, exploit, external, fuzzer, intrusive, malware, safe, version, & vuln and each category holds many scripts. supports expressions like nmap -sV --script "discovery, vuln, not (brute or dos)"

    Poništi
  9. proslijedio/la je Tweet
    3. velj 2019.
    Poništi
  10. proslijedio/la je Tweet
    31. sij 2019.

    🎓 In this Chrome University talk, and explain how scripts are executed in . Learn how handles parsing, bytecode generation, interpretation, JIT compilation, and deoptimization:

    Poništi
  11. proslijedio/la je Tweet

    Want to see a really bad bug? You can FaceTime any iOS device running 12.1 and listen in remotely—WITHOUT THE OTHER PERSON ANSWERING THE CALL. (via )

    Prikaži ovu nit
    Poništi
  12. proslijedio/la je Tweet
    26. sij 2019.

    Encountered with AWS WAF? Just add "<!" (without quotes) before your payload and bypass that WAF. :) eg: <!<script>alert(1)</script>

    Prikaži ovu nit
    Poništi
  13. proslijedio/la je Tweet
    25. sij 2019.

    CVE-2019-1652/CVE-2019-1653 exploits for Cisco RV320 are finished. * Dump Config Data! * Dump Debug Data! * Decrypt Debug Data! * (Blind) Remote Root Command Injection! Hack the Planet, etc.

    Poništi
  14. proslijedio/la je Tweet
    25. sij 2019.

    In the meantime for anyone that is on I have created a list of OSCP-Like boxes you can try. Most of these are retired but if you have VIP access try them out! If you do not have VIP don't worry I recommend you check channel as most of them are there. Enjoy!

    Poništi
  15. proslijedio/la je Tweet
    23. sij 2019.

    Found an intersting bypass: https://x.x.x.x/WEB-INF/web.xml -> 403 Forbidden https://x.x.x.x/./WEB-INF/web.xml -> 403 Forbidden https://x.x.x.x/.//WEB-INF/web.xml -> 200 OK Tomcat 8 on Windows...

    Poništi
  16. proslijedio/la je Tweet
    24. sij 2019.

    Kerberos delegation = AD Account impersonation. Convert accounts configured with unconstrained delegation to constrained. Configure AD admin accounts (pref all admin accounts) with "Account is Sensitive and cannot be delegated" to protect them against Kerberos delegation attacks.

    Prikaži ovu nit
    Poništi
  17. proslijedio/la je Tweet
    19. sij 2019.
    Poništi
  18. proslijedio/la je Tweet
    22. sij 2019.

    malice : VirusTotal Wanna Be - a free open source version of VirusTotal that anyone can use at any scale from an independent researcher to a fortune 500 company :

    Poništi
  19. proslijedio/la je Tweet
    22. sij 2019.

    certutil downloads detected as malicious on Windows Server 2019? Use -verifyCTL instead! 😉

    Poništi
  20. proslijedio/la je Tweet
    23. sij 2019.

    iOS 12.1.1 remote jailbreak demonstrated on iPhone XS, PoC of Chaos kernel vulnerability to be released soon (dev - ). for visibility

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·