Tweetovi

Blokirali ste korisnika/cu @d0znpp

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @d0znpp

  1. proslijedio/la je Tweet
    1. velj

    I just got a fancy idea to create strings in without using dangerous characters 😃 Inspired by challenge from .

    Prikaži ovu nit
    Poništi
  2. proslijedio/la je Tweet
    31. sij

    junior SOC analyst returning from a threat hunt

    Poništi
  3. 31. sij

    tool is here how do you like it? Thanks, for a strong Go help.

    Poništi
  4. 30. sij
    Poništi
  5. proslijedio/la je Tweet
    23. sij

    If you use update to version 9.14.3.3 fixing CVE-2019-16535, CVE-2019-15024, CVE-2019-16536

    Poništi
  6. 23. sij
    Poništi
  7. proslijedio/la je Tweet

    Burp Vulners Scanner - Vulnerability scanner based on   search…  

    Poništi
  8. proslijedio/la je Tweet
    21. sij

    My main takeaway is that, in the bug bounty world, you may have a duplicate for the XSS but not for the RCE (for the exact same vector) 🤪

    Poništi
  9. proslijedio/la je Tweet
    20. sij

    This year I have two researches "Bypassing SOP Using the Browser Cache" and "Reverse proxies & Inconsistency" at the nomination list for Top 10 web hacking techniques of 2019. Vote for them! ahaha! Especially, for SOP bypass ^_^

    Poništi
  10. 17. sij
    Poništi
  11. proslijedio/la je Tweet
    16. sij

    CVE-2020-2551 WebLogic RCE via IIOP protocol.

    Poništi
  12. proslijedio/la je Tweet
    16. sij

    If you are using TLS client authentication with Java 11 or Java 13 you should patch your servers NOW.

    Poništi
  13. proslijedio/la je Tweet
    11. sij

    Just got a Hantek 2D72 handheld 2-channel oscilloscope (250 MSPS, 70 MHz) + arbitrary waveform generator (up to 5 or 25 MHz) + multimeter. Quite nice for the ~$160. Official: Firmware hacks: Hardware mods:

    Poništi
  14. proslijedio/la je Tweet
    9. sij

    Have reproduced Citrix SSL VPN pre-auth RCE successfully on both local and remote. Interesting bug!

    Poništi
  15. proslijedio/la je Tweet
    9. sij

    Fuzzing JavaScript WebAssembly APIs with Dharma/Domato (Chrome/v8)

    Poništi
  16. proslijedio/la je Tweet
    9. sij

    My team is looking for SOC/AppSec engineers. If things like “appsec”, “SOC”, “devsecops”, “bug bounty” is something you’ve heard about - come join us in the Kyiv office!

    Poništi
  17. proslijedio/la je Tweet
    8. sij

    CVE-2019-19781 Citrix path traversal base on vpns folder Example: GET /vpn/../vpns/services.html GET /vpn/../vpns/cfg/smb.conf patch >> HTTP/1.1 403 Forbidden no patch >> HTTP/1.1 200 OK [global] encrypt passwords = yes name resolve order = lmhosts wins host bcast

    Prikaži ovu nit
    Poništi
  18. 8. sij

    I did my first banner ad today ;)

    Poništi
  19. proslijedio/la je Tweet
    7. sij

    At Google Project Zero, the team spends a *lot* of time discussing and evaluating vulnerability disclosure policies and their consequences. It's a complex and controversial topic! Here's P0's policy changes for 2020 (with our rationale for the changes):

    Poništi
  20. proslijedio/la je Tweet
    8. sij

    Some useful characters for bypassing WAF(URL-Encoded): %0a%0d %09 %00 %e2%80%ae

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·