Julio

@juliocesarfort

I like computers, punk rock and ska. Opinions are mine & my cat's and do not reflect the views of my employer.

Eastern Europe
Vrijeme pridruživanja: ožujak 2009.

Tweetovi

Blokirali ste korisnika/cu @juliocesarfort

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @juliocesarfort

  1. proslijedio/la je Tweet
    1. velj

    I was tired of outdated XSS cheat sheets that don't touch on frameworks, html5, filter bypasses and other important stuff, so I made my own. I hope you find it as useful as I do. :)

    Poništi
  2. prije 12 sati
    Poništi
  3. proslijedio/la je Tweet

    Thread Cyber-monitaramento e armazenamento de dados de usuários da ID Estudantil.

    Prikaži ovu nit
    Poništi
  4. proslijedio/la je Tweet
    30. sij

    I declassified Paul Baran’s 1963 predictions on near-term threats and challenges created by computer networks. Here’s the cybersecurity stuff, or, “sophisticated fouling techniques for complex networks” (anyone heard of the backdoor example he mentions? )

    Prikaži ovu nit
    Poništi
  5. proslijedio/la je Tweet
    29. sij

    Fake VeraCrypt website at [https://][vera-crypt][.][com] serving modified installers that are signed by EV code signing certificate from Calmic Software Ltd. Google present this url to some users through an Ad associated with keyword VeraCrypt. Any advice on how to report this?

    Poništi
  6. proslijedio/la je Tweet
    29. sij

    Huge congrats to Theo and the team for single handedly reviving retro-hacking! After resurrecting the /bin/login legacy they gifted us another oldie, SMTP command injection —

    Poništi
  7. proslijedio/la je Tweet
    29. sij

    Any advisory that contains the line “to overcome this limitation we drew inspiration from the Morris worm” in 2020 is pure gold. Team Qualys continues their retro onslaught vs OpenBSD.

    Prikaži ovu nit
    Poništi
  8. 26. sij
    Poništi
  9. proslijedio/la je Tweet
    26. sij

    The claim in the FTI forensics report on Bezos’ iPhone that, “due to end-to-end encryption employed by WhatsApp, it is virtually impossible to decrypt the contents of the downloader [.enc file]...” bugged me so much that I coded up how to do it:

    Prikaži ovu nit
    Poništi
  10. proslijedio/la je Tweet
    24. sij

    Today I realized young hackers don’t know about THC/ADM/teso/etc. I also realized there are no modern hacking crews, except perhaps for CTF teams. That’s probably to be expected but it’s also kinda sad, dunno…

    Poništi
  11. 24. sij

    4 years ago 4 guys decided to start a cyber security consulting firm with little idea of what running a business was about. now we're here 4 years later, with a great team of over 20 spread across 3 countries. somehow it worked! let's hope for more exciting years to come!

    Poništi
  12. proslijedio/la je Tweet
    23. sij

    The Bezos forensic report is not very good. The forensic analysis should be done by who at least have the relevant experience. The MP4 file should contain the exploit (if it is CVE-2019-11931). The exploit trigger should be visible with ffmpeg

    Prikaži ovu nit
    Poništi
  13. proslijedio/la je Tweet

    This is a clear attack on the freedom of the press in Brazil and a massive injustice that must be condemned and immediately reversed by the relevant authorities.

    Prikaži ovu nit
    Poništi
  14. proslijedio/la je Tweet
    18. sij

    Story time – I’m hanging out at Schönefeld Airport waiting for the flight back from CCC. Wife calls, we chat for a few mins and the call disconnects. I dismiss it with a “oh well, crazy cell tower.” 3 mins later, wife calls frantically: “ARE YOU OKAY?!” 🤔

    Prikaži ovu nit
    Poništi
  15. proslijedio/la je Tweet
    17. sij

    Want to make service removal really fun? Create a service with a unicode name. The service will run but won't show in sc.exe, services.msc, or taskmgr.exe and will sometimes cause a critical error while trying to find it with PowerShell/WMI. Unicode wins again.🤦‍♂️

    Prikaži ovu nit
    Poništi
  16. proslijedio/la je Tweet

    Liberalismo à brasileira: vender órgãos pode. Dar o cu, de jeito nenhum

    Poništi
  17. 16. sij

    dutch cat by the bar, oblivious to the noise and the crowd.

    Poništi
  18. proslijedio/la je Tweet
    14. sij

    I'm disappointed to see no one called CVE-2020-0601 Let's Decrypt. Anyway, bed.

    Poništi
  19. proslijedio/la je Tweet
    14. sij

    CVE-2020-0601 looks pretty bad if it affects all TLS x509 validation. Thats a career making bug so I feel bad for the anonymous person who found it (you are awesome!). Cool that reported it, but no one said they can‘t use it in some foreign unpatched domains.

    Poništi
  20. proslijedio/la je Tweet
    13. sij

    “Hacker cons are becoming too political” Please read some hacker history. Please revisit talk titles from the first 5 Congresses. Hacking has always been political—tech is political.

    Prikaži ovu nit
    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·