Tweetovi
- Tweetovi, trenutna stranica.
- Tweetovi i odgovori
- Medijski sadržaj
Blokirali ste korisnika/cu @th3_alchem1st
Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @th3_alchem1st
-
τhé-ÄlchĘm1sτ proslijedio/la je Tweet
Here is the link to the SpecterOps Adversary Tactics: PowerShell course material: https://github.com/specterops/at-ps … Enjoy! For information about our current training offerings, information can be found here: https://specterops.io/how-we-help/training-offerings … (4/4)
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
τhé-ÄlchĘm1sτ proslijedio/la je Tweet
Windows Defender Bypassing For Meterpreter by
@myhackerhouse -https://hacker.house/lab/windows-defender-bypassing-for-meterpreter/ …Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
τhé-ÄlchĘm1sτ proslijedio/la je Tweet
looking for some new dirs to bruteforce?https://github.com/random-robbie/bruteforce-lists …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
τhé-ÄlchĘm1sτ proslijedio/la je Tweet
Interesting list of 876 bug bounty programs by company: bounty/programs-list.csv at 3bed32ee073a0a673a33da8feb8f3af324aefc75 · yesnet0/bounty · GitHub https://github.com/yesnet0/bounty/blob/3bed32ee073a0a673a33da8feb8f3af324aefc75/programs-list.csv …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
τhé-ÄlchĘm1sτ proslijedio/la je Tweet
So you believe UUID's are a sufficient protection against IDOR's? Think again!
Thanks for the #BugBountyTip,@securintipic.twitter.com/zx5Xn7iDrE
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
τhé-ÄlchĘm1sτ proslijedio/la je Tweet
COMMENTARY ON CVE-2020-0601: I have been speaking to several players on this on background and there are a few things they want to highlight / clarify based on the public discourse so far.
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
τhé-ÄlchĘm1sτ proslijedio/la je Tweet
I have 0 CVEs. I've found many many bugs, but I don't need a CVE to prove anything. If you seemingly think a CVE makes you l337, you need to rethink.pic.twitter.com/tLMSD4BmNH
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
τhé-ÄlchĘm1sτ proslijedio/la je Tweet
the newly released OWASP API top 10 actually looks quite relevant and up to date https://www.owasp.org/index.php/OWASP_API_Security_Project …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
τhé-ÄlchĘm1sτ proslijedio/la je Tweet
Modern Windows Attacks and Defense Labhttps://github.com/jaredhaight/WindowsAttackAndDefenseLab/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
τhé-ÄlchĘm1sτ proslijedio/la je Tweet
#SSRF Write-ups https://ngailong.wordpress.com/2019/12/19/google-vrp-ssrf-in-google-cloud-platform-stackdriver … https://link.medium.com/yGqiCKIoA2 https://link.medium.com/zxEYgRFOX2 https://geleta.eu/2019/my-first-ssrf-using-dns-rebinfing/ … https://jin0ne.blogspot.com/2019/11/bugbounty-simple-ssrf.html … https://jin0ne.blogspot.com/2019/11/bugbounty-simple-ssrf.html … https://link.medium.com/CU6NUXOOX2#bugbounty,#bugbountytipsHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
τhé-ÄlchĘm1sτ proslijedio/la je Tweet
I've recently been fuzzing the PHP interpreter, and took a UaF bug all the way from crashing-sample to weaponized code execution. Here is the first of several blog posts I plan to write about the process. https://blog.jmpesp.org/2020/01/fuzzing-php-with-domato.html …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
τhé-ÄlchĘm1sτ proslijedio/la je Tweet
New year gift
Set up a free server to exploit blind vulnerabilities!
1. https://ssh.cloud.google.com/cloudshell/editor …
2. sudo apt-get install apache2 pagekite
3. add "ServerName localhost" to /etc/apache2/apache2.conf
4. 80->8080 in /etc/apache2/ports.conf
5. pagekite 8080 http://xyz.pagekite.me pic.twitter.com/j7UovMdYCr
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
τhé-ÄlchĘm1sτ proslijedio/la je Tweet
You can discover the domains of a company using the Kostebek tool's trademark symbol search.
#bugbountytips https://github.com/esecuritylab/kostebek …pic.twitter.com/BC72VRNhJb
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
τhé-ÄlchĘm1sτ proslijedio/la je Tweet
v2 of my free Intro to Android App Reverse Engineering workshop is here!
I've added 3 new exercises, walk-through videos for all 7 exercises, a new module on obfuscation, & exercises on vuln hunting rather than just malware. I hope it helps!
http://maddiestone.github.io/AndroidAppRE pic.twitter.com/0iPNoJ3p7y
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
τhé-ÄlchĘm1sτ proslijedio/la je Tweet
oneliner to open a bunch of hosts/urls
#bugbountytips firefox `cat urls.txt | awk '{if(index($1,"http")){print $1}else{print "http://"$1;print "https://"$1}}' | tr "\n" " "` (tr optional) https://pastebin.com/HTDQR8r3 pic.twitter.com/y5o7R12Qsa
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
τhé-ÄlchĘm1sτ proslijedio/la je Tweet
Want to do some lazy bug bounty hunting today? Get the ASN of a company by using this (in this case, Tesla): whois -h http://whois.cymru.com $(dig +short http://tesla.com ) Then use the ASN filter in Shodan to scroll through their IP space. https://shodan.io/search?query=asn%3Aas394161 …
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
τhé-ÄlchĘm1sτ proslijedio/la je Tweet
I just made my "Corsy" public
It scans for all known misconfigurations in CORS implementations (currently 10+ checks).
Github: https://github.com/s0md3v/Corsy pic.twitter.com/0FH44M7kGb
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
τhé-ÄlchĘm1sτ proslijedio/la je Tweet
DNS rebinding SSRF leading to aws keys leakagehttps://geleta.eu/2019/my-first-ssrf-using-dns-rebinfing/ …
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
τhé-ÄlchĘm1sτ proslijedio/la je Tweet
Performing Race Condition tests w/ Burp Suite, coupon redeem example: 1. Use Null Payloads 2. Use same number of threads to requests (x15 here) & 0 throttle 3. Disable the baseline request (it's will be sent first w/ delay invalidating your coupon)
#bugbounty#burpsuitetippic.twitter.com/JpOpdYGROg
Hvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi -
τhé-ÄlchĘm1sτ proslijedio/la je Tweet
My tool goes public! Having a scope it can help you scan ports, dirsearch and brute creds. Displaying the data in a handy way. A great assistant at a more methodical assessement on bugbounty and pentest https://github.com/c0rvax/project-black …pic.twitter.com/iVuimRT1ZE
Prikaži ovu nitHvala. Twitter će to iskoristiti za poboljšanje vaše vremenske crte. PoništiPoništi
Čini se da učitavanje traje već neko vrijeme.
Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.