pry0cc

@pry0cc

Founder / President of 0x00sec, Lead Offensive Security Engineer @ NaviSec Delta Just trying to contribute my bit to the community.

United Kingdom
Joined February 2015
Born January 1, 1970

Tweets

You blocked @pry0cc

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @pry0cc

  1. Retweeted
    Mar 15
    Replying to and

    I forked meg an added support for using burp collaborator links in payloads. You can add {tracker} to URL's and that'll get replaced by the hostname of the target + a collaborator link.

    Undo
  2. Retweeted
    Mar 15
    Replying to and

    Also wrote this blog which details how you can use collaborator outside of burpsuite, which is useful for long running tasks where you don't want to keep burp open.

    Undo
  3. 23 hours ago
    Undo
  4. Retweeted
    Feb 8

    - getallurls is a tool made by - anti-burl is a tool made by - is a tool made by - Burp & Burp collaborator by of course

    Show this thread
    Undo
  5. Retweeted
    Feb 8

    Sometimes you got to keep it simple in . Just got an , steps (credits below): 1 Run getallurls for all assets & merge results 2 `cat results | grep "url="| anti-burl | tee ssrf.txt` 3 Review & cleanup list 4 Fuzz all "url-like" params w/ Burp collab &

    Show this thread
    Undo
  6. Retweeted
    Mar 13

    Hey! Do you want some of the best pentesting training about for a killer price? DM me for special rates for for 20 licences and up. Negotiation is open. Please retweet for this killer one-time offer!

    Undo
  7. Retweeted
    Feb 9

    Also works for open redirects. You can also use `grep "=http"` or `grep "=/"` to grab endpoints, regardless of the parameter's name

    Undo
  8. Mar 13

    Hey! Do you want some of the best pentesting training about for a killer price? DM me for special rates for for 20 licences and up. Negotiation is open. Please retweet for this killer one-time offer!

    Undo
  9. Retweeted
    Mar 13

    Found weird bug 1. While registering with username , got error username already taken, so I use another username. 2. Go to edit profile , change username to already registered username , success! 3. Existing users account with that username deleted.

    Show this thread
    Undo
  10. Mar 13

    Ok - Serious question. Anonymous poll, only for those who have gotten domain admin in an engagement before. What feels better?

    Undo
  11. Mar 12

    Got a badass night of hacking, pies and laughs with my boys & I'm excited!

    Undo
  12. Retweeted
    Mar 11

    Searching the entirety of Project Sonar for DNS info in under 1 second, running on shitty old hardware. Just comparing results with Amass/Subfinder etc, blog to follow. Can discover alternative TLDs too. Definitely the fastest subdomain enumeration i've used.

    Show this thread
    Undo
  13. Mar 12

    This is such an underrated project. The possibilities of adding more data sets and indexing those, and building a central database of shared data for instant querying. Imagine indexing all the subdomain data from the same sources as amass & subfinder, for instant query.

    Undo
  14. Mar 11

    Project Crobat is really the fastest DNS enumeration method yet Being fully opensourced in the near future :) Supports full wildcard on domain index too. Search by {domain}.* and pull all subdomains.

    Undo
  15. Retweeted
    Feb 28
    Replying to

    Snark aside. Fuck, I can't believe I'm doing this. It has it's place. Specifically on the DoD 8570 list which .mil leadership must take, and it covers enough that someone can talk about security without sounding like an idiot. So, if they learned hard, they should celebrate.

    Undo
  16. Retweeted
    Feb 6
    Undo

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·