P𝗿𝐞ⅆr𝚊ⓖ Ⅽ𝗎𝐉an𝚘𝕧ⓘć

@cujanovic

Just another random tech/infosec guy from the crowd or not? Think bad, do good.

Belgrade, Republic of Serbia
keybase.io/cujanovic
Joined February 2010
1,045 Photos and videos Photos and videos

Tweets

You blocked @cujanovic

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @cujanovic

  1. Pinned Tweet
    21 Nov 2017

    Blind XXE in python3-saml by me :) CVE-2017-9672

    32 retweets 67 likes
    Undo
  2. Retweeted
    20 hours ago

    Good Test case for SQLIi “Bypassing Email Filter which leads to SQL Injection” by

    91 retweets 218 likes
    Undo
  3. Retweeted
    Aug 24

    Full writeup and POC for the RCE I found in Electron (CVE-2018-15685).

    113 retweets 189 likes
    Undo
  4. Retweeted
    Aug 24

    A former Tesla employee, who worked on their IT infrastructure, is posting in a subforum of a subforum, a little-known place for funy computer forgotten by time. His NDA has expired. He has such sights to show us. Join me and I will be your silent guide into a world of horror.

    433 replies 12,131 retweets 24,648 likes
    Show this thread
    Show this thread
    Undo
  5. Retweeted
    Aug 24

    Here's how I got a RCE on a Facebook server : !

    11 replies 414 retweets 784 likes
    Undo
  6. Retweeted
    Aug 24

    -2018-11776 Apache Struts RCE(struts2-057) ,too busy for these days to update this later.

    5 replies 56 retweets 104 likes
    Undo
  7. Aug 24

    Electron: Abusing the lack of context isolation

    1 like
    Undo
  8. Retweeted
    Aug 24

    Are you a plugin developer? We are happy to announce , a platform that details security risks of all plugins. You can find out if your code is at risk here:

    11 retweets 19 likes
    Undo
  9. Aug 24

    DNS Rebinding Headless Browsers

    3 likes
    Undo
  10. Aug 24

    Unusual cases of reflected XSS

    1 retweet 3 likes
    Undo
  11. Aug 24

    Scanning the Alexa top 1M sites for Dockerfiles

    2 likes
    Undo
  12. Aug 23

    How an uploaded image could take over your website, and how to stop it

    8 retweets 31 likes
    Undo
  13. Retweeted
    Aug 23

    Blog post: Burp Suite 2.0 beta now available

    27 replies 534 retweets 839 likes
    Undo
  14. Retweeted
    Aug 22

    Blog post: New response renderer

    10 replies 57 retweets 160 likes
    Undo
  15. Aug 21

    lol :D

    We will never have great national security in the age of computers - too many brilliant nerds can break codes (the old days were better).
    3 likes
    Undo
  16. Retweeted
    Aug 20

    Just released a new exploit for CVE-2018-15473 OpenSSH Username Enumeration! You can find it here:

    19 replies 501 retweets 883 likes
    Show this thread
    Show this thread
    Undo
  17. Retweeted
    Aug 21

    Blog post: Goodbye state files, we won't miss you

    12 replies 50 retweets 144 likes
    Undo
  18. Retweeted
    Aug 20

    Blog post: Burp's new REST API

    14 replies 266 retweets 560 likes
    Undo
  19. Retweeted
    Aug 20

    It was "wildewest" yesterday on the E75 from Presevo to Belgrade : I was with two Dutch friends and they were negativly amazed. No police and it seems the speedcontrol also is not working for foreigners: they drive really like idiots. I thought government did smt,

    2 replies 2 retweets 7 likes
    Show this thread
    Show this thread
    Undo
  20. Retweeted
    Aug 20

    New Blogpost : Bug or Backdoor - Exploiting a Remote Code Execution in ISPConfig.

    4 replies 172 retweets 269 likes
    Undo
  21. Retweeted
    Aug 19

    Check for Traefik instances running on port 8080. The /api endpoint exposes private keys of the SSL certificates belonging to the hosts listed on the Traefik instance.

    13 replies 237 retweets 447 likes
    Show this thread
    Show this thread
    Undo

@cujanovic hasn't Tweeted yet.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·