Nguyen The Duc

@ducnt_

Just another web warrior | Security Researcher | Security Engineer | CTF player && | Bug bounty hunter

Hồ Chí Minh, Việt Nam  
Vrijeme pridruživanja: veljača 2017.

Tweetovi

Blokirali ste korisnika/cu @ducnt_

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @ducnt_

  1. Prikvačeni tweet
    8. sij
    Poništi
  2. proslijedio/la je Tweet
    prije 5 sati

    Here's my write-up for ’s CTF challenge!

    Poništi
  3. proslijedio/la je Tweet
    prije 12 sati

    CVE-2020-7471: SQLI in Django: django.contrib.postgres.aggregates.StringAgg aggregation function was subject to SQL injection, using a suitably crafted delimiter. FIX:

    Poništi
  4. proslijedio/la je Tweet
    31. sij

    , , and I are starting a new security blog. In our first write-up, we will discuss the impact of "SameSite by default" and how it affects web app sec. Feel free to request future topics you would like us to cover.

    Poništi
  5. proslijedio/la je Tweet
    31. sij

    Someone dropped a PHP zero-day on GitHub. Talked to the PHP team last night. Bug requires local foothold to exploit, so not usable for remote attacks. Also, this is the second exploit for this "disable_functions bypass" in the last few months.

    Poništi
  6. proslijedio/la je Tweet
    28. sij

    .Net being open-source makes tracking these things cool. I just hope GitHub adds code navigation support for .net code soon as well. credit for the bug goes to of course.

    Poništi
  7. proslijedio/la je Tweet
    28. sij

    Also for the iPhone 11 Pro Max, iOS 13.3.1 beta3 Jailbreak

    Poništi
  8. proslijedio/la je Tweet
    24. sij

    Here are my (updated) slides from for my talk "Owning The Cloud Through SSRF & PDF Generators" with Chris Holt from . Big thank you to , , , , , and !

    Poništi
  9. proslijedio/la je Tweet
    24. sij
    Poništi
  10. proslijedio/la je Tweet
    23. sij

    The Bezos forensic report is not very good. The forensic analysis should be done by who at least have the relevant experience. The MP4 file should contain the exploit (if it is CVE-2019-11931). The exploit trigger should be visible with ffmpeg

    Prikaži ovu nit
    Poništi
  11. proslijedio/la je Tweet
    22. sij

    This is a pretty good reminder that any invasive heuristics in the browser - be it XSS filters or privacy protections - often cause more problems than they address:

    Poništi
  12. proslijedio/la je Tweet

    Learn how an authenticated RCE vulnerability in < 5.2.4 allows attackers to bypass hardening mechanisms. Read more ->

    Poništi
  13. proslijedio/la je Tweet
    18. sij

    Just published a blog post talking about some iOS kernel framebuffer research I’ve been looking at over the last couple weeks. Have a read if you’re interested :)

    Prikaži ovu nit
    Poništi
  14. proslijedio/la je Tweet
    18. sij

    RDP to RCE: When Fragmentation Goes Wrong AKA: What we know about CVE-2020-0609 and CVE-2020-0610.

    Poništi
  15. proslijedio/la je Tweet
    16. sij
    Poništi
  16. proslijedio/la je Tweet
    15. sij

    CVE-2020-5504 SQLI in phpMyAdmin: A malicious user could inject custom SQL in place of their own username when creating queries to this page fix:

    Poništi
  17. proslijedio/la je Tweet
    14. sij

    The NSA advisory is much more helpful than Microsoft's.

    Poništi
  18. proslijedio/la je Tweet
    12. sij

    Just posted Remote Code Execution in Three Acts: Chaining Exposed Actuators and H2 Database Aliases in Spring Boot 2. Using a payload containing three different programming languages :)

    Poništi
  19. proslijedio/la je Tweet
    14. sij
    Poništi
  20. proslijedio/la je Tweet
    12. sij

    I just found out someone assigned a CVE to . This is my first CVE ever! 🔥 CVE-2019-8900 Apple devices vulnerable to arbitrary code execution in SecureROM

    Poništi
  21. proslijedio/la je Tweet
    11. sij

    A CVE-2019-19781 is this easy – 1. Traversal to vpns folder, traversal in the NSC_HEADER + to write a malicious bookmark to the /netscaler/portal/templates/ folder (1st HTTP request), 2. Passing that template through the Template Toolkit (2nd request)

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·