Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
Blokirali ste korisnika/cu @d0c_n3o
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @d0c_n3o
-
Doctor Neo Qwerty proslijedio/la je Tweet
I always had a hard time finding
@GoogleVRP writeups beacuse they were all over the place in different blog posts, so I made this. If you know of something that is not in there, you are more than welcome to contribute!
#BugBonty#infosec#GoogleVRPhttps://github.com/xdavidhu/awesome-google-vrp-writeups …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Doctor Neo Qwerty proslijedio/la je Tweet
Subdomain Takeover https://link.medium.com/a61eAt5mC3 https://smaranchand.com.np/2019/12/subdomain-takeover-via-pantheon … https://m0chan.github.io/2019/12/16/Subdomain-Takeover-Azure-CDN.html … https://www.mohamedharon.com/2019/11/subdomain-takeover-via.html … https://www.mohamedharon.com/2019/09/how-i-able-to-takeover-10-subdomains-in.html … https://blog.usejournal.com/https-medium-com-aniltom-from-sub-domain-takeover-to-open-redirect-b5be4906e1a4 … https://blog.takemyhand.xyz/2019/05/escalating-subdomain-takeovers-to-steal.html … https://link.medium.com/VBwF4s6mC3 https://www.mohamedharon.com/2019/02/subdomain-aws-s3-buckets-reader.html … https://www.safetydetectives.com/blog/microsoft-outlook …
#bugbountyHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Doctor Neo Qwerty proslijedio/la je Tweet
SSRF https://ngailong.wordpress.com/2019/12/19/google-vrp-ssrf-in-google-cloud-platform-stackdriver … https://link.medium.com/Xbz6t9O2r3 https://link.medium.com/YHLYBsQ2r3 https://link.medium.com/IuBvi3Q2r3 https://link.medium.com/0RczPuR2r3 https://link.medium.com/CRffZUR2r3 https://link.medium.com/h4I5fpS2r3 https://link.medium.com/h3f0yHLEh3 https://link.medium.com/NOYWViSSg3
#bugbounty ,#bugbountytipsHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Doctor Neo Qwerty proslijedio/la je Tweet
#XSSI Write-ups Effortlessly finding Cross Site Script Inclusion (XSSI) & JSONP for bug bounty https://link.medium.com/g3MwS6YVK2 The Bug That Exposed Your PayPal Password https://link.medium.com/fxCdDmwl52 Yahoo — Two XSSi vulnerabilities https://link.medium.com/jFkPeGsUv3#bugbounty,#bugbountytipsHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Doctor Neo Qwerty proslijedio/la je Tweet
“How I was able to take over any users account with host header injection” by Ajay Gautam https://medium.com/nassec-cybersecurity-writeups/how-i-was-able-to-take-over-any-users-account-with-host-header-injection-546fff6d0f2 … "A Less Known Attack Vector, Second Order IDOR Attacks” by Ozgur Alp https://medium.com/@ozguralp/a-less-known-attack-vector-second-order-idor-attacks-14468009781a …
#bugbounty,#bugbountytipsHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Doctor Neo Qwerty proslijedio/la je Tweet
GGvulnz — How I hacked hundreds of companies through Google Groupshttps://medium.com/@milanmagyar/ggvulnz-how-i-hacked-hundreds-of-companies-through-google-groups-b69c658c8924 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Doctor Neo Qwerty proslijedio/la je Tweet
This is super useful, since I always go “oh, uh, how does this work again?”
https://twitter.com/shodanhq/status/1215709765244006400 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Doctor Neo Qwerty proslijedio/la je Tweet
Here are some
#SQLi reports you should read https://hackerone.com/reports/531051 https://hackerone.com/reports/198734 https://hackerone.com/reports/687908 https://hackerone.com/reports/433792 https://hackerone.com/reports/689997 https://hackerone.com/reports/592400 https://hackerone.com/reports/489146 https://hackerone.com/reports/297478 https://hackerone.com/reports/502758#bugbountyHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Doctor Neo Qwerty proslijedio/la je Tweet
Road to
#OSCP:#HackTheBox &#Vulnhub OSCP-like VMs by@TJ_Nullpic.twitter.com/o1ITvUXo3m
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Doctor Neo Qwerty proslijedio/la je Tweet
Account takeover on Airbnb acquisition | An Unusual Bug Part-2
https://medium.com/@princechaddha/account-takeover-on-airbnb-acquisition-an-unusual-bug-part-2-45fab11dc407 … @Hacker0x01#BugBountyHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Doctor Neo Qwerty proslijedio/la je Tweet
Articles worth reading discovered last week:
http://blog.intothesymmetry.com/2020/01/the-curious-case-of-webcrypto-diffie.html …
https://medium.com/@renwa/bypass-samesite-cookies-default-to-lax-and-get-csrf-343ba09b9f2b …
https://medium.com/@alex.birsan/the-bug-that-exposed-your-paypal-password-539fc2896da9 …
https://googleprojectzero.blogspot.com/2020/01/remote-iphone-exploitation-part-1.html …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Doctor Neo Qwerty proslijedio/la je Tweet
Lesser Known Web Attack Lab - train your advances web security skills
#infosec#pentest#bugbounty https://github.com/weev3/LKWA pic.twitter.com/r4r7aozpmO
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Doctor Neo Qwerty proslijedio/la je Tweet
Ppl interested to learn about SSRF attacks
1. https://medium.com/bugbountywriteup/server-side-request-forgery-ssrf-testing-b9dfe57cca35 …
2. https://www.shorebreaksecurity.com/blog/ssrfs-up-real-world-server-side-request-forgery-ssrf/ …
3. https://hackerone.com/reports/115748
4. https://www.kernelpicnic.net/2017/05/29/Pivoting-from-blind-SSRF-to-RCE-with-Hashicorp-Consul.html …
5. https://geleta.eu/2019/my-first-ssrf-using-dns-rebinfing/ …
6. https://medium.com/@androgaming1912/gain-adfly-smtp-access-with-ssrf-via-gopher-protocol-26a26d0ec2cb …
7. https://medium.com/@w_hat_boy/server-side-request-forgery-ssrf-port-issue-hidden-approch-f4e67bd8cc86 …
8. https://medium.com/@armaanpathan/pdfreacter-ssrf-to-root-level-local-file-read-which-led-to-rce-eb460ffb3129 …
WriteupsHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Doctor Neo Qwerty proslijedio/la je Tweet
I just released some of my PoCs! IDOR: https://youtu.be/3hJaxmiSzO4 Stored XSS: https://youtu.be/pwLG7tAGO08 Stored XSS: https://youtu.be/fnW0w2VYT2I RXSS: https://youtu.be/IC43MzAkC7E RXSS: https://youtu.be/DZxMB_KOoMk RXSS: https://youtu.be/L5isQP28o3M RXSS: https://youtu.be/CaoAh2CXyr0
#GeneralEG#BugBountyHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Doctor Neo Qwerty proslijedio/la je Tweet
Razer disclosed a bug submitted by corraldev: https://hackerone.com/reports/723060 - Bounty: $750
#hackerone#bugbountypic.twitter.com/u3wIkYa2Xo
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Doctor Neo Qwerty proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Doctor Neo Qwerty proslijedio/la je Tweet
FINALLY releasing hakrawler! A web crawler for hackers! Check out the blog post for details. https://medium.com/@hakluke/introducing-hakrawler-a-fast-web-crawler-for-hackers-ff799955f134 …pic.twitter.com/XDx2ujPQpp
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Doctor Neo Qwerty proslijedio/la je Tweet
Time for
#bugbountytip - always look for 3 types of employee in a company from Linkedin or other sources. 1. DevOps/SRE 2. Data Science 3. Tech Interns It will help a lot from your recon perspective and you will be amazed to see the results.#bugbountytips#HappyHackingHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Doctor Neo Qwerty proslijedio/la je Tweet
Thinking about getting stoned and starting the blog back up tonight with the first post a basic intro to bug hunting, and some of my routine for hunting bugs. If this can get 100 retweets then I'll start on it, otherwise xbox sounds like just as much fun lol.
#bugbountyHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Doctor Neo Qwerty proslijedio/la je Tweet
The most useful document of the year for me was Rule of 2
Thanks @fugueish and all for making such a great document
https://chromium.googlesource.com/chromium/src/+/master/docs/security/rule-of-2.md …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.