Ayush Pathak
@ehayushpathak
$ ./ayu.sh | Learner | Geek | DECODING LIFE
|
Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @ehayushpathak
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @ehayushpathak
-
Prikvačeni tweet
https://medium.com/@ehayushpathak/security-risks-of-cors-e3f4a25c04d7 … I wrote this for
@mubix's OSCP voucher giveaway challenge. Not something great tho but i learned something new and that's good.Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ayush Pathak proslijedio/la je Tweet
Happy 71st
#RepublicDay from@net_square_ @NSConclave#nsconclave2020 सारे जहॉं से अच्छा!#jaihind
pic.twitter.com/QuKHlQz7V8
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ayush Pathak proslijedio/la je Tweet
Hacker's gonna hack
#nsconclave2020@NSConclavepic.twitter.com/7d2rkkAOYs
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ayush Pathak proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Ayush Pathak proslijedio/la je Tweet
New year gift
Set up a free server to exploit blind vulnerabilities!
1. https://ssh.cloud.google.com/cloudshell/editor …
2. sudo apt-get install apache2 pagekite
3. add "ServerName localhost" to /etc/apache2/apache2.conf
4. 80->8080 in /etc/apache2/ports.conf
5. pagekite 8080 http://xyz.pagekite.me pic.twitter.com/j7UovMdYCr
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ayush Pathak proslijedio/la je Tweet
Check if a server is running any vulnerable services wget https://raw.githubusercontent(.)com/vulnersCom/nmap-vulners/master/vulners.nse -O /usr/share/nmap/scripts/vulners.nse && nmap --script-updatedb All done, now you can do a scan with nmap -sV --script vulners <target>pic.twitter.com/sOTHb0Y6Ln
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ayush Pathak proslijedio/la je Tweet
I just made my "Corsy" public
It scans for all known misconfigurations in CORS implementations (currently 10+ checks).
Github: https://github.com/s0md3v/Corsy pic.twitter.com/0FH44M7kGb
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Resources to learn about CORS and its exploitation http://blog.portswigger.net/2016/10/exploiting-cors-misconfigurations-for.html … https://portswigger.net/web-security/cors … https://www.geekboy.ninja/blog/exploiting-misconfigured-cors-cross-origin-resource-sharing/ … https://dzone.com/articles/basics-of-cors … https://flaviocopes.com/cors/ https://www.corben.io/tricky-CORS/ https://www.corben.io/advanced-cors-techniques/ …https://www.youtube.com/watch?v=tH-HG4b4GYQ …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Girl are you fb hacking, coz boys are attracted towards you.
#BadBugBountyPickupLinesHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Girl are you 404. Because i can't find you.
#BadBugBountyPickupLinesHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ayush Pathak proslijedio/la je Tweet
There are no shortcuts in
#BugBounty. I've spent thousands of hours and still consider myself a skid most of the time. Whoever is impatient in their eagerness for success will have a tough time reaching it, if ever.Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ayush Pathak proslijedio/la je Tweet
Sometimes we have to do the impossible. SQL'Injection Attempt from Remote Site With this method: XSS, SQL'i, CSRF attacks can be done. Failure to filter the data from the remote source leaves open doors for such attacks.
#bugbountytips#BugBountyTip#bugbounty#whitehatpic.twitter.com/bb29oBdpGLHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ayush Pathak proslijedio/la je Tweet
I get asked how I manage a full time job, content, steam, hacking on top of my personal life. I’m going to answer this once and only once: if you have time to waste on YouTube/Reddit you have time to learn how to hack. I go to bed an hour later and wake up an hour earlier
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ayush Pathak proslijedio/la je Tweet
I have written an article on Recon,taken inputs from more than 30 other resources,collected all of their important points together.Thanks to
@nahamsec,@EdOverflow,@zseano@TomNomNom@0xpatrik@ehsahil https://medium.com/@maverickNerd/recon-everything-48aafbb8987 … Long article,but I tried to give all instructionsPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ayush Pathak proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
I just achieved my first rank up on
@codewars codewars! I'm now 7 kyū!pic.twitter.com/oDwjEWkhQhHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ayush Pathak proslijedio/la je Tweet
Good Night
#bugbountytips "http://hackerb0y.com " "password" "http://hackerb0y.com " "database" "http://hackerb0y.com " "secret" "http://hackerb0y.com " "api_key"#bugbounty#infosecpic.twitter.com/FXQkARgpzQ
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I just completed
@Pentesterlab's Serialize Badge!!! Finally!!!! <3Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ayush Pathak proslijedio/la je Tweet
All the unserialize() related posts: Intro: https://medium.com/swlh/diving-into-unserialize-3586c1ec97e … pop chains: https://medium.com/@vickieli/diving-into-unserialize-pop-chains-35bc1141b69a … exploitation: https://medium.com/swlh/diving-into-unserialize-more-than-rce-d48d371db7da … magic methods: https://medium.com/swlh/diving-into-unserialize-magic-methods-386d41c1b16a … phar deserialization:https://medium.com/@vickieli/diving-into-unserialize-phar-deserialization-98b1254380e9 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.