Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @kamalinux
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @kamalinux
-
Prikvačeni tweet
Recently, I received an email from Bugcrowd where I was being congratulated for being one of the Bounty Slayers at Bugcrowd for reporting at least 10 valid vulnerabilities in the first quarter of 2019. https://www.bugcrowd.com/blog/congratulations-to-our-most-dedicated-researchers-in-q1-2019/ … Thnx
@Bugcrowdpic.twitter.com/4ff6v1BkPO
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Kamal Elsayed proslijedio/la je Tweet
SpiderFoot, the most complete OSINT collection and reconnaissance tool
#infosec#pentest#OSINT#bugbounty https://github.com/smicallef/spiderfoot …pic.twitter.com/Mdc1ITucJ2
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Kamal Elsayed proslijedio/la je Tweet
#BugBountyTip: Found an SSRF#vulnerability in a Jira instance, now what? Right!#RCE like a boss 8) - [Only for Docker deployments] http://[::1]:2375/containers/json - might get you the docker credentials in the form of env variables!#bugbounty#infosec#security#hackingPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Kamal Elsayed proslijedio/la je Tweet
I am releasing ESLinter. A
@Burp_Suite extension that extracts JavaScript and lints them with ESLint. It's part of my application security automation workflow. It lints JS as you navigate in Burp. Enjoy.https://github.com/parsiya/eslinter …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Kamal Elsayed proslijedio/la je Tweet
I just published a blog post "Responsible Disclosure: Breaking out of a Sandboxed Editor to perform RCE" https://jatindhankhar.in/blog/responsible-disclosure-breaking-out-of-a-sandboxed-editor-to-perform-rce/ …pic.twitter.com/E7VBsoJwdY
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Kamal Elsayed proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Kamal Elsayed proslijedio/la je Tweet
==API TIPS== To welcome the new year, we published a daily tip on API Security & API Pentesting during the month of January 2020. Check out my new article and explore 31 tips + interesting insights about them. https://medium.com/@inonst/31-tips-api-security-pentesting-480b5998b765 …
#bugbountytipsHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Kamal Elsayed proslijedio/la je Tweet
ffuf -w all.txt -u https://deepthought.hhg2g -X POST -d 'FUZZ' -mr '42'
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Kamal Elsayed proslijedio/la je Tweet
Facebook's
#bountycon2020 student grant(free travel+accommodation) for APAC region students Check details --> https://www.facebook.com/notes/facebook-bug-bounty/university-students-join-us-at-bountycon/3223617890985748/ …#bugbountyPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Kamal Elsayed proslijedio/la je Tweet
IF you got yourself a shiny Windows 10 environment & wanna find some malwares running in an elevated context, run a historical sweep for
parent process = “wsreset.exe”
process = !”mmc.exe”,!”reg.exe”
#threatintel#threathunting#dfirHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Kamal Elsayed proslijedio/la je Tweet
BurpSuite 2020.01 Release Review, Change HTTP Message Editor! https://ift.tt/2RTbiIp New post by
#hahwul#Burp_Suite,#Hacking,#SecurityHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Kamal Elsayed proslijedio/la je Tweet
Exploiting Insecure Firebase Database! https://blog.securitybreached.org/2020/02/04/exploiting-insecure-firebase-database-bugbounty/ …pic.twitter.com/EXmrMSv9tg
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Kamal Elsayed proslijedio/la je Tweet
#OSINT Awesome OSINT https://github.com/jivoi/awesome-osint … OSINT SubReddit https://reddit.com/r/OSINT/ http://WhotWi.com Spiderfoot https://spiderfoot.net Pymeta https://github.com/m8r0wn/pymeta OSINT Stash https://osint.best My tutorials https://0x00sec.org/t/my-personal-osint-techniques-part-1-of-2-key-layer-contingency-seeding/13033 … https://0x00sec.org/t/my-personal-osint-techniques-volume-2-the-kitchen-sink/13198 …pic.twitter.com/IpqYcWHZM0
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Kamal Elsayed proslijedio/la je Tweet
We are announcing our new blog with a post about Teamviewer and storing user passwords encrypted and not hashed allow for easy plaintext retrieval from the Windows registry.https://whynotsecurity.com/blog/teamviewer/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Kamal Elsayed proslijedio/la je Tweet
Here's my write-up for
#h1415’s CTF challenge! https://lbherrera.github.io/lab/h1415-ctf-writeup.html …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Kamal Elsayed proslijedio/la je Tweet
XSS filter bypass using stripped </p> tag to obfuscate. P2 Stored XSS $1500 on a private bug bounty program. XSS Payload: <</p>iframe src=javascript:alert()//
#xss#bugbountytip#bugbountytips#bugbounty#hacking@brutelogicpic.twitter.com/ltjUpiL4Cu
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Kamal Elsayed proslijedio/la je Tweet
Takeover story of repo 1.A site having github logo 2. Example: Click on logo it'll show you git repo(http://github.com/site/ ) 3. In my case , It was 404 Main part 4. Created git account with name of company , So it was like http://github.com/site/ Successful takeover
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Kamal Elsayed proslijedio/la je Tweet
When testing for SSRF, change the HTTP version from 1.1 to HTTP/0.9 and remove the host header completely. This has worked to bypass several SSRF fixes in the past.
#bugbountytip#bugbountytip#bugbountyHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Kamal Elsayed proslijedio/la je Tweet
When testing for SSRF using a black list, take internal IP addresses and when encoding them, dont encode entire IP. Encode 1 octet of the IP address, or 2 or 3. For Instance: AWS Metadata - 0251.254.169.254 (this got the $160,000 payout in Oct 2018)
#bugbountytip#bugbountyPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Kamal Elsayed proslijedio/la je Tweet
Hey bug hunters! Want a look at some of the top vulnerabilities ever found on
@Dropbox ? They just released the last blog post I wrote before leaving. Enjoy!#bugbountytipshttps://blogs.dropbox.com/tech/2020/02/dropbox-bug-bounty-program-has-paid-out-over-1000000/ …Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Kamal Elsayed proslijedio/la je Tweet
A new search engine from NSA, apparently. https://captcha.nsa.gov/
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.