noperator

@noperator

Tech Lead

github.com/noperator
Vrijeme pridruživanja: listopad 2009.
2 fotografije ili videozapisa Fotografije i videozapisi

Tweetovi

Blokirali ste korisnika/cu @noperator

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @noperator

  1. Prikvačeni tweet
    9. sij

    Got a working reverse shell exploit for CVE-2019-19781, pre-auth RCE in / Gateway/ADC SSL VPN

    7 proslijeđenih tweetova 46 korisnika označava da im se sviđa
    Poništi
  2. 26. sij

    If you haven't voted for my post yet, please do! Poll ends in a few hours. Thanks so much :)

    My blog post been nominated for inclusion in PortSwigger’s list of Top 10 Web Hacking Techniques of 2019! If you don’t mind, would you please vote for “Remote Code Execution via Insecure Deserialization in Telerik UI” at the following poll?
    Prikaži ovu nit
    1 proslijeđeni tweet 2 korisnika označavaju da im se sviđa
    Poništi
  3. 24. sij

    #2 by , , and #3 by and

    3 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  4. 24. sij

    Voting closes in two days :) Since the poll requires ranking at least three entries, I'd suggest submitting: 1. Remote Code Execution via Insecure Deserialization in Telerik UI 2. Exploring Continuous Integration Services as a Bug Bounty Hunter 3. Pre-Auth RCE On Leading SSL VPNs

    1 reply 2 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  5. 24. sij

    My blog post been nominated for inclusion in PortSwigger’s list of Top 10 Web Hacking Techniques of 2019! If you don’t mind, would you please vote for “Remote Code Execution via Insecure Deserialization in Telerik UI” at the following poll?

    1 reply 5 proslijeđenih tweetova 14 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  6. proslijedio/la je Tweet
    21. sij

    This past December, Barrett Darnell () competed in the Tournament of Champions as part of the winning team. Find out how to get the most out of your and put what you learn into practice by following his example:

    6 proslijeđenih tweetova 9 korisnika označava da im se sviđa
    Poništi
  7. proslijedio/la je Tweet
    18. sij

    My analysis of Remote Desktop Gateway RCE bugs CVE-2020-0609 & CVE-2020-0610 is up.

    RDP to RCE: When Fragmentation Goes Wrong AKA: What we know about CVE-2020-0609 and CVE-2020-0610.
    9 replies 166 proslijeđenih tweetova 457 korisnika označava da im se sviđa
    Poništi
  8. proslijedio/la je Tweet
    12. sij

    What the internet looks like with CVE-2019-19781, meanwhile is that guy silently eating his kabab and watching...

    0:56
    The guy silently eating his kebab and chips is without a doubt the scariest guy in there. He doesn’t tense up, and he stays vigilant but uninvolved. This is the look of a person who knows he can end all of this if he needs to. Legit.
    15 proslijeđenih tweetova 33 korisnika označavaju da im se sviđa
    Poništi
  9. 11. sij

    just updated their security bulletin for CVE-2019-1978. No firmware updates until 20 Jan, at the earliest.

    2 korisnika označavaju da im se sviđa
    Poništi
  10. proslijedio/la je Tweet
    9. sij

    Some of the biggest and most costly breaches in recent memory caused by 20 year old security bugs in security products by security vendors: - Fortigate SSL VPN. - Citrix ADC (SSL VPN). - Pulse Secure (SSL VPN). In each case they all lacked basic security mitigations.

    25 replies 245 proslijeđenih tweetova 694 korisnika označavaju da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  11. proslijedio/la je Tweet
    29. pro 2019.

    Are you in IT security yet not allowed to patch vulnerable systems? Do you have five bosses, each of which must approve changes? Enter Undocumented Admin! Friendly white-hat hackers who gently access your vulnerable systems and patch them for you Signup

    432 proslijeđena tweeta 1.348 korisnika označava da im se sviđa
    Prikaži ovu nit
    Prikaži ovu nit
    Poništi
  12. proslijedio/la je Tweet
    16. pro 2019.

    Awesome event! Tournament of Champions.

    7 proslijeđenih tweetova 23 korisnika označavaju da im se sviđa
    Poništi
  13. 15. pro 2019.

    Oh no, someone dropped all the flags for ToC.
    1 korisnik označava da mu se sviđa
    Poništi
  14. 13. pro 2019.

    Just published a PoC exploit for CVE-2019-18935 (), RCE via insecure deserialization affecting Telerik UI. See full write-up below. Thanks to for discovering this issue, and for collaborating on exploit dev.

    The CVE-2019-18935 is a severe insecure deserialization vulnerability affecting UI. Understand its impact + learn to safely patch your software in this post from : (With thanks to + )
    107 proslijeđenih tweetova 222 korisnika označavaju da im se sviđa
    Poništi
  15. proslijedio/la je Tweet
    13. pro 2019.

    Wooooot, Rob Ragan and Alex DeFreese talk about agile frameworks in the context of pentesting. ..and I got an honorable mention along with \o/ 🎉🍾

    FIN7 understood how an agile framework enabled efficiency + visibility in their cybercrime group. While their motives were nefarious, their methods were surprisingly professional. More in our latest article from + :
    6 proslijeđenih tweetova 9 korisnika označava da im se sviđa
    Poništi
  16. proslijedio/la je Tweet
    10. pro 2019.

    This advisory highlights critical + high-risk issues in the healthcare software – . Please update to the latest version ASAP:

    8 proslijeđenih tweetova 10 korisnika označava da im se sviđa
    Poništi
  17. 3. pro 2019.

    might be the first infosec joke at which I've actually laughed out loud

    Flight Attendant: is there a doctor on board? Parent: *nudging* That should've been you Me: Not now, this is serious Parent: Not asking for a hacker to help, are they? Me: AAAAAAAA\x00\xd0X?\xfc\x7fBBBBj\x0bX\x99Rfh-p\x89\xe1Rjhh/bash/bin\x89\xe3RQS\x89\xe1\xcd\x80 Parent:~#
    1 korisnik označava da mu se sviđa
    Poništi
  18. proslijedio/la je Tweet
    2. stu 2019.
    Odgovor korisniku/ci

    alright so on today's vulnerability talk, I'm going to showcase a remote code execution by breaking into your home, and using your computer

    3 proslijeđena tweeta 28 korisnika označava da im se sviđa
    Poništi
  19. 23. lis 2019.

    need to buy a PS4 so I can teach my kids about

    1:15
    It takes 60 seconds to talk to your kids about and make them
    1 korisnik označava da mu se sviđa
    Poništi
  20. proslijedio/la je Tweet
    21. lis 2019.

    On Twitter, if you blink at the wrong moment you'll miss some great web security research. We recently launched a quality-over-quantity subreddit to help address this:

    5 replies 287 proslijeđenih tweetova 825 korisnika označava da im se sviđa
    Poništi

@noperator još nije objavio nijedan Tweet.

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·