pry0cc

@pry0cc

Founder / President of 0x00sec, Lead Offensive Security Engineer @ NaviSec Delta Just trying to contribute my bit to the community.

United Kingdom
0x00sec.org
Joined February 2015
Born January 1, 1970
1,286 Photos and videos Photos and videos

Tweets

You blocked @pry0cc

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @pry0cc

  1. Retweeted
    Mar 15
    Replying to and

    I forked meg an added support for using burp collaborator links in payloads. You can add {tracker} to URL's and that'll get replaced by the hostname of the target + a collaborator link.

    1 retweet 1 like
    Undo
  2. Retweeted
    Mar 15
    Replying to and

    Also wrote this blog which details how you can use collaborator outside of burpsuite, which is useful for long running tasks where you don't want to keep burp open.

    3 retweets 8 likes
    Undo
  3. 23 hours ago

    This is so underrated.

    Replying to @ngkogkos @pry0cc and 5 others
    Also wrote this blog which details how you can use collaborator outside of burpsuite, which is useful for long running tasks where you don't want to keep burp open.
    2 likes
    Undo
  4. Retweeted
    Feb 8

    - getallurls is a tool made by - anti-burl is a tool made by - is a tool made by - Burp & Burp collaborator by of course

    5 replies 23 retweets 90 likes
    Show this thread
    Show this thread
    Undo
  5. Retweeted
    Feb 8

    Sometimes you got to keep it simple in . Just got an , steps (credits below): 1 Run getallurls for all assets & merge results 2 `cat results | grep "url="| anti-burl | tee ssrf.txt` 3 Review & cleanup list 4 Fuzz all "url-like" params w/ Burp collab &

    10 replies 299 retweets 713 likes
    Show this thread
    Show this thread
    Undo
  6. Retweeted
    Mar 13

    Hey! Do you want some of the best pentesting training about for a killer price? DM me for special rates for for 20 licences and up. Negotiation is open. Please retweet for this killer one-time offer!

    1 reply 12 retweets 17 likes
    Undo
  7. Retweeted
    Feb 9

    Also works for open redirects. You can also use `grep "=http"` or `grep "=/"` to grab endpoints, regardless of the parameter's name

    Sometimes you got to keep it simple in . Just got an , steps (credits below): 1 Run getallurls for all assets & merge results 2 `cat results | grep "url="| anti-burl | tee ssrf.txt` 3 Review & cleanup list 4 Fuzz all "url-like" params w/ Burp collab &
    Show this thread
    2 replies 10 retweets 36 likes
    Undo
  8. Mar 13

    Hey! Do you want some of the best pentesting training about for a killer price? DM me for special rates for for 20 licences and up. Negotiation is open. Please retweet for this killer one-time offer!

    1 reply 12 retweets 17 likes
    Undo
  9. Retweeted
    Mar 13

    Found weird bug 1. While registering with username , got error username already taken, so I use another username. 2. Go to edit profile , change username to already registered username , success! 3. Existing users account with that username deleted.

    17 replies 81 retweets 370 likes
    Show this thread
    Show this thread
    Undo
  10. Mar 13

    Ok - Serious question. Anonymous poll, only for those who have gotten domain admin in an engagement before. What feels better?

    7 replies 1 retweet 5 likes
    Undo
  11. Mar 12

    Got a badass night of hacking, pies and laughs with my boys & I'm excited!

    1 reply 4 likes
    Undo
  12. Retweeted
    Mar 11

    Searching the entirety of Project Sonar for DNS info in under 1 second, running on shitty old hardware. Just comparing results with Amass/Subfinder etc, blog to follow. Can discover alternative TLDs too. Definitely the fastest subdomain enumeration i've used.

    9 replies 23 retweets 93 likes
    Show this thread
    Show this thread
    Undo
  13. Mar 12

    This is such an underrated project. The possibilities of adding more data sets and indexing those, and building a central database of shared data for instant querying. Imagine indexing all the subdomain data from the same sources as amass & subfinder, for instant query.

    Searching the entirety of Project Sonar for DNS info in under 1 second, running on shitty old hardware. Just comparing results with Amass/Subfinder etc, blog to follow. Can discover alternative TLDs too. Definitely the fastest subdomain enumeration i've used.
    Show this thread
    1 reply 5 retweets 39 likes
    Undo
  14. Mar 11

    Project Crobat is really the fastest DNS enumeration method yet Being fully opensourced in the near future :) Supports full wildcard on domain index too. Search by {domain}.* and pull all subdomains.

    2 replies 37 retweets 209 likes
    Undo
  15. Retweeted
    Feb 28
    Replying to

    Snark aside. Fuck, I can't believe I'm doing this. It has it's place. Specifically on the DoD 8570 list which .mil leadership must take, and it covers enough that someone can talk about security without sounding like an idiot. So, if they learned hard, they should celebrate.

    2 replies 1 retweet 7 likes
    Undo
  16. Retweeted
    Feb 6

    trending

    3 retweets 14 likes
    Undo

@pry0cc hasn't Tweeted yet.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·