Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @sirdarckcat
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @sirdarckcat
-
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
-
Eduardo Vela proslijedio/la je Tweet
Read what the
@googleChrome and other@GoogleVRPs have been up to in 2019! https://security.googleblog.com/2020/01/vulnerability-reward-program-2019-year.html …pic.twitter.com/7NaXq01Ywa
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Eduardo Vela proslijedio/la je Tweet
I always had a hard time finding
@GoogleVRP writeups beacuse they were all over the place in different blog posts, so I made this. If you know of something that is not in there, you are more than welcome to contribute!
#BugBonty#infosec#GoogleVRPhttps://github.com/xdavidhu/awesome-google-vrp-writeups …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Eduardo Vela proslijedio/la je Tweet
We are thrilled to introduce our Review Committee member
@sirdarckcat . Thank you Eduardo Vela for taking the time out from your busy schedule and to be part of our review committee.#bugbounty#infosec#informationsecurity#bugbountyvillage#owaspseasides2020@Owaspseasidespic.twitter.com/42fYHymxss
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Quick survey, how many of you would like this? It could even work both ways, so we could also use it to select Grants recipients.https://twitter.com/raushan_rajj/status/1215208002212388864 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
#TodayILearn -@TheBeatles recorded "She Loves You" and "I Want To Hold Your Hand" in German. Not bad!@johnlennon@ringostarrmusic@GeorgeHarrison@PaulMcCartneyhttps://play.google.com/music/playlist/AMaBXylEryAczqQ6rHCb98GXhj0n06hlLcySjeWNN8lsRL5GPteiWXTi4HmTeHbtLPhMAREtY1bF6978Sr32uhDK69wXh4wObQ%3D%3D …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
But maybe there's some value that it provides to you all?
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Internally we actually don't look at that information. Our top bug hunters, beginners and first time bug hunters look exactly the same in our tools (on purpose! we don't want to bias ourselves against good first time reporters).
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Context is, our current hall of fame allows users to showed some statistics, but few users enabled it. What is the value you see in it?
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Dear Bug Hunters: do you guys like to have a public "signal" or "reputation" number associated to your identity? Do you find value in it yourselves?
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Eduardo Vela proslijedio/la je Tweet
At Google Project Zero, the team spends a *lot* of time discussing and evaluating vulnerability disclosure policies and their consequences. It's a complex and controversial topic! Here's P0's policy changes for 2020 (with our rationale for the changes): https://googleprojectzero.blogspot.com/2020/01/policy-and-disclosure-2020-edition.html …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Eduardo Vela proslijedio/la je Tweet
Just so it doesn't get buried in a thread, I made a new slack for CTF organizers. DM me (or ping me any other way you can find) for the invite link, only requirement is you must have run a CTF somewhere before. May open up wider later, but want high SNR.
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Tempted to make a public version of the training I did for my team about security@-response
. Not sure where I would present it, though.. It's more process/management focused more than technical. Any suggestions?Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Eduardo Vela proslijedio/la je Tweet
Oh, that isn’t good at all. Preventing people submitting bug reports flies in the face of what these bounty programs are meant to offer researchers. :-/
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Let's make 2020 the decade without bans!https://twitter.com/k8em0/status/1212086240817766402 …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Eduardo Vela proslijedio/la je Tweet
Drop the mic! No! Drop your connection!
A small blog, yes blog and not Vlog
about XSS in Google.
https://sasi2103.blogspot.com/2019/12/drop-mic-no-drop-connection.html …
//cc:@GoogleVRP@sirdarckcatHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
2020
#BugBountyGoals - Pay 6,000,613 USD in rewards - Celebrate 10 year@GoogleVRP anniversary - Meet more Bug Hunters!Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
Please share any feedback
. I know the doc is super long, I'm sorry. I'll try to make it a better format. /endPrikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
The document also mentions other considerations regarding decisions teams have to make on the fly, and similar (scoring, challenge reuse, 0days, etc).
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
I hope this can help us avoid building accidentally guessy tasks, and maybe if the tasks suck, that will be because they are boring, but at least they won't be guessy.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.
vulnerabilities,
web security research,
leading Google's product security response team. I'm not mad. I'm mentally divergent. (personal account)