Tweetovi

Blokirali ste korisnika/cu @kamalinux

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @kamalinux

  1. Prikvačeni tweet
    9. svi 2019.

    Recently, I received an email from Bugcrowd where I was being congratulated for being one of the Bounty Slayers at Bugcrowd for reporting at least 10 valid vulnerabilities in the first quarter of 2019. Thnx

    Poništi
  2. proslijedio/la je Tweet

    SpiderFoot, the most complete OSINT collection and reconnaissance tool

    Poništi
  3. proslijedio/la je Tweet
    12. stu 2018.

    : Found an SSRF in a Jira instance, now what? Right! like a boss 8) - [Only for Docker deployments] http://[::1]:2375/containers/json - might get you the docker credentials in the form of env variables!

    Prikaži ovu nit
    Poništi
  4. proslijedio/la je Tweet
    4. velj

    I am releasing ESLinter. A extension that extracts JavaScript and lints them with ESLint. It's part of my application security automation workflow. It lints JS as you navigate in Burp. Enjoy.

    Poništi
  5. proslijedio/la je Tweet
    4. velj

    I just published a blog post "Responsible Disclosure: Breaking out of a Sandboxed Editor to perform RCE"

    Poništi
  6. proslijedio/la je Tweet
    4. velj
    Poništi
  7. proslijedio/la je Tweet
    4. velj

    ==API TIPS== To welcome the new year, we published a daily tip on API Security & API Pentesting during the month of January 2020. Check out my new article and explore 31 tips + interesting insights about them.

    Poništi
  8. proslijedio/la je Tweet
    3. velj

    ffuf -w all.txt -u https://deepthought.hhg2g -X POST -d 'FUZZ' -mr '42'

    Poništi
  9. proslijedio/la je Tweet
    4. velj

    Facebook's student grant(free travel+accommodation) for APAC region students Check details -->

    Prikaži ovu nit
    Poništi
  10. proslijedio/la je Tweet
    3. velj

    IF you got yourself a shiny Windows 10 environment & wanna find some malwares running in an elevated context, run a historical sweep for ✔️parent process = “wsreset.exe” ✔️process = !”mmc.exe”,!”reg.exe”

    Poništi
  11. proslijedio/la je Tweet
    3. velj

    BurpSuite 2020.01 Release Review, Change HTTP Message Editor! New post by , ,

    Poništi
  12. proslijedio/la je Tweet
    4. velj
    Prikaži ovu nit
    Poništi
  13. proslijedio/la je Tweet
    Poništi
  14. proslijedio/la je Tweet
    3. velj

    We are announcing our new blog with a post about Teamviewer and storing user passwords encrypted and not hashed allow for easy plaintext retrieval from the Windows registry.

    Poništi
  15. proslijedio/la je Tweet
    3. velj

    Here's my write-up for ’s CTF challenge!

    Poništi
  16. proslijedio/la je Tweet
    3. velj

    XSS filter bypass using stripped </p> tag to obfuscate. P2 Stored XSS $1500 on a private bug bounty program. XSS Payload: <</p>iframe src=javascript:alert()//

    Prikaži ovu nit
    Poništi
  17. proslijedio/la je Tweet
    3. velj

    Takeover story of repo 1.A site having github logo 2. Example: Click on logo it'll show you git repo() 3. In my case , It was 404 Main part 4. Created git account with name of company , So it was like Successful takeover

    Poništi
  18. proslijedio/la je Tweet
    3. velj

    When testing for SSRF, change the HTTP version from 1.1 to HTTP/0.9 and remove the host header completely. This has worked to bypass several SSRF fixes in the past.

    Poništi
  19. proslijedio/la je Tweet
    4. velj

    When testing for SSRF using a black list, take internal IP addresses and when encoding them, dont encode entire IP. Encode 1 octet of the IP address, or 2 or 3. For Instance: AWS Metadata - 0251.254.169.254 (this got the $160,000 payout in Oct 2018)

    Prikaži ovu nit
    Poništi
  20. proslijedio/la je Tweet
    3. velj

    Hey bug hunters! Want a look at some of the top vulnerabilities ever found on ? They just released the last blog post I wrote before leaving. Enjoy!

    Prikaži ovu nit
    Poništi
  21. proslijedio/la je Tweet
    3. velj

    A new search engine from NSA, apparently.

    Prikaži ovu nit
    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·