yappare

@yappare

Skiddies. All tweets are my own opinion. None related to any organisation.

Kuala Lumpur Federal Territory
c0rni3sm.blogspot.com
Joined November 2010
90 Photos and videos Photos and videos

Tweets

@yappare is blocked

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @yappare.

  1. Pinned Tweet
    Apr 24

    Drag Drop XSS in Google ;)

    33 retweets 49 likes
  2. 12 minutes ago

    Ahaha this thread where noobs talking about is the best "STOP HIDING UR IDENTITY, HACKERS"

    5:33 PM - 28 Jun 2016 · Details
    3 retweets 1 like
  3. 20 minutes ago

    after 4 hours late joined the bounty, 15 minutes later, the program is closed. urghh..

  4. 4 hours ago

    Foxit Reader ConvertToPDF TIFF SamplesPerPixel Parsing Heap Buffer Overflow Remote Code Execution Vulnerability

    7 retweets 7 likes
  5. 5 hours ago

    New blogpost: "MS16-039 – “Windows 10” 64 bits Integer Overflow exploitation by using.." -->

    12:34 PM - 28 Jun 2016 · Details
    19 retweets 23 likes
  6. 7 hours ago

    no UI vector, inspired by vector :D <div style=writing-mode:tb;overflow:scroll onscroll=alert(1)>

    14 retweets 32 likes
  7. 4 hours ago

    g0tmi1k starred Matir/pwnableweb on Github

    2:11 PM - 28 Jun 2016 · Details
    3 retweets 9 likes
  8. 4 hours ago

    WordPress Stream plugin stored XSS -> RCE demo. Uber rewarded $5k, disclosure pending.

    2:06 PM - 28 Jun 2016 · Details
    4 retweets 7 likes
  9. 4 hours ago

    New blog post on the Symantec vulnerabilities we're releasing today, including wormable remote code execution bugs.

    167 retweets 103 likes
  10. 9 hours ago

    Reflections on trusting CSP

    23 retweets 30 likes
  11. 9 hours ago

    Auditing CSP headers with Burp and ZAP

    9 retweets 11 likes
  12. 21 hours ago

    SSRF bible updated a little. Redis tricks with SLAVEOF and MIGRATE added

    20 retweets 20 likes
  13. Jun 27

    "Any pentesters wanna change things up, work from home with a fun rising company?" -> If so, ping for more details.

    22 retweets 18 likes
  14. Jun 27

    This is a solid exampe of chaining bugs / pivoting on a webapp (stored XSS on a site with no user input):

    7:33 AM - 27 Jun 2016 · Details
    26 retweets 41 likes
  15. Jun 26

    No UI vector Edge, MSIE10-11 <div style="-ms-scroll-limit:1px;overflow:scroll;width:1px" onscroll=alert('xss')>

    11:04 AM - 26 Jun 2016 · Details
    49 retweets 97 likes
  16. Jun 26

    This amazing hack unlocks hundreds of secret 'Super Mario Bros.' levels hidden on the cartridge

    9:42 PM - 26 Jun 2016 · Details
    6 retweets 9 likes
  17. Jun 26

    A new vuln related to JNDI, a Java API that allows clients to find data & objects by name. By at

    22 retweets 17 likes
  18. Jun 24

    This is a BRILLIANT IDEA ... all you travellers, conference goers and IR Teams. Take a minute and do this

    9:57 PM - 24 Jun 2016 · Details
    59 retweets 56 likes
  19. Jun 25

    Utilizing Multi-byte Characters To Nullify SQL Injection Sanitizing

    54 retweets 75 likes
  20. Jun 26

    Penetration Testing Tools Cheat Sheet

    43 retweets 77 likes

@yappare hasn't tweeted yet.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·