Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @leoalgare
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @leoalgare
-
Leonel Emiliano proslijedio/la je Tweet
When testing for SSRF, change the HTTP version from 1.1 to HTTP/0.9 and remove the host header completely. This has worked to bypass several SSRF fixes in the past.
#bugbountytip#bugbountytip#bugbountyHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
In January, I submitted 9 vulnerabilities to 4 programs on
@Hacker0x01.#TogetherWeHitHarder https://hackerone.com/last-monthHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Leonel Emiliano proslijedio/la je Tweet
Alguien con experiencia en pentest que quiera pasarse al lado defensivo y aprender crypto? DM
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Yay, I was awarded a $2,300 bounty on
@Hacker0x01! RCE + Blind SSRF https://hackerone.com/delisyd#TogetherWeHitHarderHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Playa del toro, Isla Victoria, Bariloche, Argentina
#Hacker0x01pic.twitter.com/CW93GGdfWC
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Leonel Emiliano proslijedio/la je Tweet
2nd critical of this week.
#BugBountyTip Abuse ouath Sign-up flow: 1) Use phone number instead email in 3rd party to sign-up. 2) Link victim's email to your 3rd party account while singnup on target. 3) Login to vicitim's account using your 3rd party account.pic.twitter.com/4yrK5KXa4v
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Leonel Emiliano proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Leonel Emiliano proslijedio/la je Tweet
if you find 403 Forbidden while testing. Try X-Original-URL and X-Rewrite-URL Headers to bypass restrictions
#Collectedpic.twitter.com/CA3ZYhRy0A
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Leonel Emiliano proslijedio/la je Tweet
So you believe UUID's are a sufficient protection against IDOR's? Think again!
Thanks for the #BugBountyTip,@securintipic.twitter.com/zx5Xn7iDrE
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Leonel Emiliano proslijedio/la je Tweet
There’s two new pre-auth RCE with CVSS score 9.8 in RD Gateway, commonly used to protect RDP servers (adds MFA etc). RD Gateway is a (great, btw) Enterprise solution for protecting those RDP boxes. You probably want to patch these. https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0609 … https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-0610 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Leonel Emiliano proslijedio/la je Tweet
We're very excited to welcome our newest satellites Sophie & Marie to the Satellogic fleet tonight... Stay tuned! Follow the countdown:https://spacelaunchnow.me/launch/long-march-2d-jilin-1-wideband-01-tianqi-4-nusat-7/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Leonel Emiliano proslijedio/la je Tweet
Update CVE-2019-19781 You can exploit the vulnerability without the file http://newbm.pl and only use the file http://rmbm.pl ! You can inject your payload inside the name of the XML file and fire the command execution !

#shitrix#citrixpic.twitter.com/g2P1GAJo1R
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Leonel Emiliano proslijedio/la je Tweet
We have contact from both satellites, and healthy beacons. Congratulations everyone! Ad astra
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I'm having troubles to exploit a get CSRF in safari via xhr. the browser don't send the cookies when I use withcredentials true. I already have checked that the endpoint is vulnerable (allow cors for another domain and also with allowCredentials true)
#bugbountytipsHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Leonel Emiliano proslijedio/la je Tweet
PayPal disclosed a bug submitted by
@alxbrsn: https://hackerone.com/reports/739737 - Bounty: $15,300#hackerone#bugbountypic.twitter.com/3t4H0qBY6Z
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Leonel Emiliano proslijedio/la je Tweet
Australia is on fire right now! What if we all donate 1 or 2 dollars? Maybe we can help save hundreds of animals in danger. To all my friends doing bug bounty, what’s one dollar? 1% of a low risk bug? https://www.wires.org.au/donate/emergency-fund … if you can’t donate, plz RT! Thanks!!pic.twitter.com/hFow0ABNKX
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Leonel Emiliano proslijedio/la je Tweet
It gives me great pleasure to announce the release of the OWASP Foundation API Security Top 10 - 2019 edition. Thank you Inon Shkedy, Paulo Silva, and David Sopas for many MANY hours of work. Download the full publication from here:https://lnkd.in/gM_dJQx
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Leonel Emiliano proslijedio/la je Tweet
New year gift
Set up a free server to exploit blind vulnerabilities!
1. https://ssh.cloud.google.com/cloudshell/editor …
2. sudo apt-get install apache2 pagekite
3. add "ServerName localhost" to /etc/apache2/apache2.conf
4. 80->8080 in /etc/apache2/ports.conf
5. pagekite 8080 http://xyz.pagekite.me pic.twitter.com/j7UovMdYCr
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Leonel Emiliano proslijedio/la je Tweet
Why not step into the next decade with WAF bypasses? Here are some gifts.
- Imperva
<a69/onclick=write()>pew
- DotDefender
<a69/onclick=[0].map(alert)>pew
- Cloudbric
<a69/onclick=[1].findIndex(alert)>pew
Happy 0x32303230.
#infosec#bugbounty#bugbountytipspic.twitter.com/74KGzwMqME
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Check out my 2019 Year In Review on
@Hacker0x01: https://hackerone.com/delisyd/year-in-review …!#TogetherWeHitHarderHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

