Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @bhaskarkapu
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @bhaskarkapu
-
Prikvačeni tweet
#HackerOne you have blocked an account because of 1 spam email, but do you care about your user's privacy ?Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
@ cheers !! proslijedio/la je Tweet
Jason Bourne XSS challenge by
@PwnFunction https://xss.pwnfunction.com/challenges/bourne/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
@ cheers !! proslijedio/la je Tweet
When testing for SSRF using a black list, take internal IP addresses and when encoding them, dont encode entire IP. Encode 1 octet of the IP address, or 2 or 3. For Instance: AWS Metadata - 0251.254.169.254 (this got the $160,000 payout in Oct 2018)
#bugbountytip#bugbountyPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
@ cheers !! proslijedio/la je Tweet
Some essential process execution/cmd lines to monitor for initial access/persist. powershell cmd rundll32 control wscript javaw csc regsvr32 reg certutil bitsadmin schtasks wmic eqnedt32 msiexec cmstp mshta hh curl installutil regsvcs/regasm at msbuild sc cscript msxsl runonce
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
@ cheers !! proslijedio/la je Tweet
Yo
@FSecure, 2002 called, they would like their integer overflow back... https://blog.doyensec.com/2020/02/03/heap-exploit.html …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
@ cheers !! proslijedio/la je Tweet
Hey bug hunters! Want a look at some of the top vulnerabilities ever found on
@Dropbox ? They just released the last blog post I wrote before leaving. Enjoy!#bugbountytipshttps://blogs.dropbox.com/tech/2020/02/dropbox-bug-bounty-program-has-paid-out-over-1000000/ …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
@ cheers !! proslijedio/la je Tweet
TeamViewer stored user passwords encrypted, not hashed, and the key is now publichttps://whynotsecurity.com/blog/teamviewer/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
@ cheers !! proslijedio/la je Tweet
The DNS service is essential for browsing the
#internet
What about the vulnerabilities of this service?
I made an #infographic that presents an attack called DNS Poisoning. Follow@SecurityGuill for more#Infographics about#infosec#cybersecurity#ITsecurity#techpic.twitter.com/k0iyF96Jbg
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
@ cheers !! proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
@ cheers !! proslijedio/la je Tweet
Many
#researchers struggle to promote their work. They just don't have the time. Here are 5 ways you can develop your online presence and better communicate your#research in 2020 http://bit.ly/2GyQeRd pic.twitter.com/qRRXfXiqtX
-
@ cheers !! proslijedio/la je Tweet
During his research into web-cache poisoning,
@albinowax stumbled upon a new route-poisoning trick for systems built on Zend and Symfony frameworks. Try it for yourself:https://portswigger.net/web-security/access-control/lab-url-based-access-control-can-be-circumvented?utm_source=twitter&utm_medium=social&utm_campaign=existing-labs …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
@ cheers !! proslijedio/la je Tweet
When testing for SSRF, change the HTTP version from 1.1 to HTTP/0.9 and remove the host header completely. This has worked to bypass several SSRF fixes in the past.
#bugbountytip#bugbountytip#bugbountyHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
@ cheers !! proslijedio/la je Tweet
XSS filter bypass leveraging </p> tag stripping, by
@TakSec <</p>iframe src=javascript:alert()//Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
@ cheers !! proslijedio/la je Tweet
XSS filter bypass using stripped </div> tags to obfuscate. Multiple P2 Stored XSS on a private bug bounty program. XSS Payload: <</div>script</div>>alert()<</div>/script</div>>
#BugBountyTips#bugbounty#xss@brutelogicpic.twitter.com/YLRuM1RoQD
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
@ cheers !! proslijedio/la je Tweet
Creating payloads without "'`()[]\%; by
@terjanq... that's useful...https://twitter.com/terjanq/status/1223403166118694912 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
@ cheers !! proslijedio/la je Tweet
I know that you know a lot more than I do but you should read this blog:https://link.medium.com/2R0mjFOFd3
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
@ cheers !! proslijedio/la je Tweet
I just got a fancy idea to create strings in
#javascript without using dangerous characters
Inspired by @garethheyes challenge from@WebSecAcademy.#bugbountytips#xsspic.twitter.com/GiAe0REwLI
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
@ cheers !! proslijedio/la je Tweet
RiskSense working on AI to predict if vulnerabilities will turn into ransomwarehttps://flip.it/GG6SdW
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
@ cheers !! proslijedio/la je Tweet
So I created this Burp Teams https://github.com/hackvertor/burp-teams … it allows you to share repeater/intruder/comparer tabs. It uses nodejs for the server with http://socket.io . But I then found out someone already did this so it won’t be on the BApp store. On the plus side I learnt lots.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
@ cheers !! proslijedio/la je Tweet
+ Added new UTF-7 encode cc
@Agarri_FR - Removed logo from message editor + Added Hackvertor to responseshttps://twitter.com/BApp_Store/status/1222084138007760896 …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
@ cheers !! proslijedio/la je Tweet
[EN] You have a list of credentials. You want to check which of them belong to the administrators and which are the accounts of ordinary users. Use Burp Intruder + Macro + Grep Extract
#bugbounty#bugbountytips#infosec#pentesthttps://www.youtube.com/watch?v=nS0xhr98Lvo …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.