Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @cBekrar
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @cBekrar
-
Prikvačeni tweet
What a researcher should do with his/her 0day? 1. Full disclosure so anyone/Govs can (ab)use it without limits/regulation 2. Sell to Govs/brokers and get a decent revenue while limiting (ab)use 3. Report to vendors & get sued, or get shitty bounties and/or your name in advisories
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Chaouki Bekrar proslijedio/la je Tweet
We are sponsoring & attending
@shmoocon conference in Washington DC. From 31st Jan to 2nd Feb, 2020. https://www.shmoocon.org/schedule/Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Chaouki Bekrar proslijedio/la je Tweet
Full list of talks for
#OffensiveCon20 is now up! https://www.offensivecon.org/speakers/ Only 50 seats left!Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Chaouki Bekrar proslijedio/la je Tweet
Last week to submit your talk, do not forget!https://cfp.offensivecon.org/offensivecon20/
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Chaouki Bekrar proslijedio/la je Tweet
Thank you
@Zerodium for supporting us as diamond sponsor! https://www.offensivecon.org/sponsors/Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Chaouki Bekrar proslijedio/la je Tweet
This year we will be giving away 8 free tickets to different offensivecon trainings for alumni of
@Blackhoodie_RE. Big shout to all the trainers that have donated a few spots in their classes!@aionescu@ret2systems@amatcama@brucedang@RolfRollesHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Chaouki Bekrar proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
The recent vBulletin pre-auth RCE 0day disclosed by a researcher on full-disclosure looks like a bugdoor, a perfect candidate for
@PwnieAwards 2020. Easy to spot and exploit. Many researchers were selling this exploit for years.@Zerodium customers were aware of it since 3 yearsHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Chaouki Bekrar proslijedio/la je Tweet
It’s funny how a once considered secure OS is now being mocked. Don’t get things wrong: the iOS vuln market was so tense that exploits are now proliferating, but it took years of research beforehand. Yes, things could be better for Apple, but still is a very decent OS IMO.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Chaouki Bekrar proslijedio/la je Tweet
Announcement: We've updated our prices for major Mobile exploits. For the first time, we will be paying more for Android than iOS. We've also increased WhatsApp & iMessage (0-click) but reduced the payout for iOS (1-click) in accordance with market trends: https://zerodium.com/program.html#changelog …pic.twitter.com/XqpmAKmmKF
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Now
@Zerodium is paying $2.5 million for Android full chains (iOS chains still at $2M) as Google/Samsung have considerably improved their security. iOS chains (1-click) e.g via Safari reduced to $1M as there’s a bunch of them on the market, sad but true.https://mobile.twitter.com/Zerodium/status/1168862389262880768 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
As expected, China Gov is behind the recent iOS exploits found in the wild. Huge resources and a bunch of talented researchers to turn PoCs into full iOS chains. No fucks were given about leaking the exploits as they have many others. Big balls work.https://www.forbes.com/sites/thomasbrewster/2019/09/01/iphone-hackers-caught-by-google-also-targeted-android-and-microsoft-windows-say-sources/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Chaouki Bekrar proslijedio/la je Tweet
In 2018, we've seen 5x more full chains for iOS than Android. Security and mitigations for Android have increased considerably (e.g. Samsung). Chrome sandbox is still the main challenge on Android. iOS only challenges are persistence (boot) and PAC (even though bypasses exist)
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Which country is smart enough to turn a bunch of iOS PoCs/vulns into full chains but dumb enough to openly use those exploits in massive attacks without distinction of targets?
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
When software vendors say to security researchers come take your bug bountypic.twitter.com/W9ofMwCCqq
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Proud of
@zerodium and its BIG bounties pushing vendors like Apple to start paying researchers the right price for their hard work! Congrats to@apple for the new bounty and let’s hope that it will be open to everyone and not just an invite-only shit.https://twitter.com/caseyjohnellis/status/1159554793397837824?s=20 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Official Blackhat notebooks look awesome this year
#BHUSA2019 /@Zerodiumpic.twitter.com/jjBejUTBqb
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Chaouki Bekrar proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Chaouki Bekrar proslijedio/la je Tweet
We're paying up to $500,000 for
#0day exploits targeting VMware ESXi (vSphere) or Microsoft Hyper-V, and allowing Guest-to-Host escapes. The exploits must work with default configs, be reliable, and lead to full access to the host. Contact us: https://zerodium.com/submit.htmlHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.