Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @g33kyshivam
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @g33kyshivam
-
Shivam Goyal proslijedio/la je Tweet
Exploiting Insecure Firebase Database! https://blog.securitybreached.org/2020/02/04/exploiting-insecure-firebase-database-bugbounty/ …pic.twitter.com/EXmrMSv9tg
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Shivam Goyal proslijedio/la je Tweet
When testing for SSRF using a black list, take internal IP addresses and when encoding them, dont encode entire IP. Encode 1 octet of the IP address, or 2 or 3. For Instance: AWS Metadata - 0251.254.169.254 (this got the $160,000 payout in Oct 2018)
#bugbountytip#bugbountyPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Shivam Goyal proslijedio/la je Tweet
When testing for SSRF, change the HTTP version from 1.1 to HTTP/0.9 and remove the host header completely. This has worked to bypass several SSRF fixes in the past.
#bugbountytip#bugbountytip#bugbountyHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Shivam Goyal proslijedio/la je Tweet
Hey bug hunters! Want a look at some of the top vulnerabilities ever found on
@Dropbox ? They just released the last blog post I wrote before leaving. Enjoy!#bugbountytipshttps://blogs.dropbox.com/tech/2020/02/dropbox-bug-bounty-program-has-paid-out-over-1000000/ …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Shivam Goyal proslijedio/la je Tweet
Going to do something off brand: this is my relationship advice thread.
What I wish knew when I was 20.Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Shivam Goyal proslijedio/la je Tweet
Hurry up, guys!!! The last four days to Submit Call for Nominations and chance to win Xbox, Hak5 gear, PentesterLab Pro Subscription, unique Swags. Submit your bugs for Nomination here https://docs.google.com/forms/d/1vgE0yhCZq8E6hjfOryzjvwuAaPr7YuyI2gTxa7eSqWU/ …
#bugbounty#infosec@Owaspseasidespic.twitter.com/ZcwUOueXX6
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Shivam Goyal proslijedio/la je Tweet
Today, we are launching
#BugBusiness, a series of interviews with#BugBounty hunters. In our first edition, we are discussing logic flaws and@securitytxt with@EdOverflow !
Who would you like to see interviewed next? Leave a comment!
http://go.intigriti.com/bugbusiness-1 Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Shivam Goyal proslijedio/la je Tweet
WooT! There is always a way. New
#bugbounty#pentest short write up! Chain the bugs till you get what you want.#bugbountytip#bugbountytips#hacking Some steps were not mentionned. RT, Like and Comments are appreciated. For any pentest work DM me:)
pic.twitter.com/nlAv4pMPhx
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Shivam Goyal proslijedio/la je Tweet
Instead of flaunting your knowledge and being a know it all use that energy to teach others and encourage others to join the field. Because putting others down just because they don't know something is pretty stupid.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Shivam Goyal proslijedio/la je Tweet
This month I learnt how to analyse the JavaScript of a React Native application while bounty hunting. I wanted to share what I found out with everyone else.https://blog.assetnote.io/bug-bounty/2020/02/01/expanding-attack-surface-react-native/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Shivam Goyal proslijedio/la je Tweet
If a subdomain returns a default/under construction or dead page, it may still be worth to run it through
@hacker_'s getallurl +@TomNomNom's concurl tools to request all URLs & identify any URLs with different response. See image for commands.#BugBounty#bugbountytippic.twitter.com/YNXB7uamRY
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Shivam Goyal proslijedio/la je Tweet
Important update : CTF will start 1 p.m onwards today. We will start sending the invites from 12:30 p.m . Let us know in case you don't receive it. Get your team ready for some fun!
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Shivam Goyal proslijedio/la je Tweet
A simple tool to detect wildcards domain based on Amass's wildcards detector. https://github.com/theblackturtle/wildcheck … P/s:
@jeff_foley Thanks for created an awesome tool!#bugbounty#golang#bugbountytip#bugbountytipsHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Shivam Goyal proslijedio/la je Tweet
Just released a quick tool, wordlistgen, I put together for taking a list of URLs/paths from stdin and parsing components (subdomains, paths, query strings & values) to easily/quickly make contextual content discovery wordlists for
#bugbountyhttps://github.com/ameenmaali/wordlistgen …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Shivam Goyal proslijedio/la je Tweet
Are you ready for the CTF@Seasides tomorrow
@12 P.M . We have got amazing Registeration for the CTF, so brace yourself and hack it@hackthebox_eu . Amazing prizes to be won like Xbox.#ctf#owaspseasides#hack#bugbounty#Conferencepic.twitter.com/w7ITr3bAKO
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Shivam Goyal proslijedio/la je Tweet
I published another blog today. This is a story about an interesting SQL Injection I found. “A Not-So-Blind RCE with SQL Injection” by Prashant Kumarhttps://link.medium.com/sC7JJUxgG3
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Shivam Goyal proslijedio/la je Tweet
This report is also an example i.e sending an array of the email addresseshttps://hackerone.com/reports/322985
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Shivam Goyal proslijedio/la je Tweet
PlaystoreDownloader : A command line tool to download Android applications directly from the Google Play Store : https://github.com/ClaudiuGeorgiu/PlaystoreDownloader … (not affiliated with Google in any way)pic.twitter.com/h2WfXYe3bH
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Shivam Goyal proslijedio/la je Tweet
Need help from
#infosec people here, about a new tool I am writing to detect any malware attempting to access C2 servers or others breaking into a reverse shell/webshell for#Linux desktops https://github.com/kushaldas/unoon/wiki … Want to know how all one can bypass this? Please RT for more reachPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Shivam Goyal proslijedio/la je Tweet
Some
#bugbounty hunters made over €50.000 in bug bounties with this simple trick.
Thanks for the #BugBountyTip,@rez0__!pic.twitter.com/z9sPFJTNqV
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.