Tiếng Việt
English Indonesia Türkçe Deutsch Español Português Pусский Français Italiano Nederlands Polski العربية ไทย Tiếng Việt 繁體中文 简体中文 日本語 한국어
GHSecurityLab's profile picture. GitHub Security Lab’s mission is to inspire and enable the community to secure the open source software we all depend on.

GitHub Security Lab

@GHSecurityLab

GitHub Security Lab’s mission is to inspire and enable the community to secure the open source software we all depend on.

1KBài đăng 26KNgười theo dõi 15Đang theo dõi
Bạn có thể thích
Ghim
GHSecurityLab's profile picture.
GitHub Security Lab
@GHSecurityLab
14 thg 2

Find the GitHub Security Lab now on LinkedIn, Mastodon and Bluesky! 👇

7
5
8
3
3K
GitHub Security Lab đã đăng lại
artsploit's profile picture.
Michael Stepankin
 @artsploit
22 thg 1

Last year, I committed to uncovering critical vulnerabilities in Maven repositories. Now it’s time to share the findings: RCE in Sonatype Nexus, Cache Poisoning in JFrog Artifactory, and more! Read it all below 🧵

artsploit's tweet image. Last year, I committed to uncovering critical vulnerabilities in Maven repositories. Now it’s time to share the findings: RCE in Sonatype Nexus, Cache Poisoning in JFrog Artifactory, and more! Read it all below 🧵
8
84
303
158
29K
GHSecurityLab's profile picture.
GitHub Security Lab
@GHSecurityLab
9 thg 1

How to secure your GitHub Actions workflows with CodeQL. Dive into this actionable supply chain security research from @pwntester . This work resulted in dozens of high impact supply chain findings and, most importantly, added CodeQL support for your GitHub workflows!…

GHSecurityLab's tweet image. How to secure your GitHub Actions workflows with CodeQL. Dive into this actionable supply chain security research from @pwntester . This work resulted in dozens of high impact supply chain findings and, most importantly, added CodeQL support for your GitHub workflows!…
6
15
54
12
6K
GitHub Security Lab đã đăng lại
bliutech's profile picture.
Benson Liu
 @bliutech
30 thg 12

Ever wanted to learn fuzzing?!?! 🐛 Me and some other folks at @pbrucla recently ran a project where we taught folks about the basics of fuzzing with Honggfuzz. 👀 Some fun activities inspired by the Fuzzing101 repo from the folks at @GHSecurityLab! 🤗 github.com/pbrucla/fuzzin…

bliutech's tweet card. 🐛 UCLA ACM Cyber's Fuzzing Lab. Contribute to pbrucla/fuzzing-lab development by creating an account on GitHub.
GitHub - pbrucla/fuzzing-lab: 🐛 UCLA ACM Cyber's Fuzzing Lab
Nguồn: github.com
3
54
246
184
13K
GHSecurityLab's profile picture.
GitHub Security Lab
@GHSecurityLab
23 thg 12

🎉 Excited to announce the launch of CodeQL Community Packs for Security teams and researchers! 🚀 Supercharge your code analysis with new Query, Model, and Library packs, to find more vulnerabilities, accelerate codebases audit, and secure code effortlessly.…

GHSecurityLab's tweet card. We are excited to introduce the new CodeQL Community Packs, a comprehensive set of queries and models designed to enhance your code analysis capabilities. These packs are tailored to augment…
Announcing CodeQL Community Packs
Nguồn: github.blog
1
12
38
15
5K
GHSecurityLab's profile picture.
GitHub Security Lab
@GHSecurityLab
19 thg 12

GHSL-2024-075_GHSL-2024-076: Stored Cross-Site Scripting (XSS) and Remote Code Execution (RCE) via Velocity Template Evaluation in Sonatype Nexus 2 securitylab.github.com/advisories/GHS…

GHSecurityLab's tweet card. Sonatype Nexus 2 is affected by multiple high severity vulnerabilities, including Stored Cross-Site Scripting (XSS) and Remote Code Execution (RCE) via Velocity Template Evaluation.
GHSL-2024-075_GHSL-2024-076: Stored Cross-Site Scripting (XSS) and Remote Code Execution (RCE) via...
Nguồn: securitylab.github.com
0
1
11
2
1K
GHSecurityLab's profile picture.
GitHub Security Lab
@GHSecurityLab
19 thg 12

GHSL-2024-072_GHSL-2024-074: Stored Cross-Site Scripting (XSS), Arbitrary File Upload, and Arbitrary File Read/Write via Path Traversal in Reposilite - CVE-2024-36115, CVE-2024-36116, CVE-2024-36117 securitylab.github.com/advisories/GHS…

GHSecurityLab's tweet card. Reposilite is affected by multiple high severity vulnerabilities, including Stored Cross-Site Scripting (XSS) allowing unauthenticated users to steal the victim’s password from the browser’s local...
GHSL-2024-072_GHSL-2024-074: Stored Cross-Site Scripting (XSS), Arbitrary File Upload, and Arbitr...
Nguồn: securitylab.github.com
0
1
4
0
836
GitHub Security Lab đã đăng lại
github's profile picture.
GitHub
@github
18 thg 12

A new free tier of GitHub Copilot in @code. ✅ 2,000 code completions per month 💬 50 chat messages per month 💫 Models like Claude 3.5 Sonnet or GPT-4o ♥️ More fun for you Check it out today! Oh yeah, and we passed 150M developers on GitHub 💅 github.blog/news-insights/…

github's tweet card. Come and join 150M developers on GitHub that can now code with Copilot for free in VS Code.
Announcing 150M developers and a new free tier for GitHub Copilot in VS Code
Nguồn: github.blog
110
630
3K
411
3.1M
GHSecurityLab's profile picture.
GitHub Security Lab
@GHSecurityLab
18 thg 12

🎉 You can now enable code scanning in your GitHub Actions workflow files! ✅ By opting-in to this feature, you can enhance the security of repositories using GitHub Actions. github.blog/changelog/2024…

GHSecurityLab's tweet card. You can now enable code scanning in your GitHub Actions workflow files. By opting-in to this feature, you can enhance the security of repositories using GitHub Actions. Actions analysis support…
Find and fix Actions workflows vulnerabilities with CodeQL (Public Preview) - GitHub Changelog
Nguồn: github.blog
0
7
18
1
5K
LiveOverflow's profile picture. wannabe hacker... he/him 🌱 grow your hacking skills @hextreeio

LiveOverflow 🔴

@LiveOverflow
0xor0ne's profile picture. | CyberSecurity | Reverse Engineering | C and Rust | Exploit | Linux kernel | PhD | My Tweets, My Opinions :) |

0xor0ne

@0xor0ne
PwnFunction's profile picture. alt @matmul

Suraj

@PwnFunction
testanull's profile picture. Kẻ soi mói, Re-searcher @dfsec_com

Janggggg

@testanull
clintgibler's profile picture. 🗡️ Head of Security Research @semgrep 📚 Creator of https://t.co/xwtIAI0CuJ newsletter

Clint Gibler

@clintgibler
gregxsunday's profile picture. Grzegorz Niedziela - a hacker who documents his hacking journey by creating and curating the best content about bug bounty and offensive security.

Bug Bounty Reports Explained

@gregxsunday
steventseeley's profile picture. Artist disguised as a logician. Pwn2Own Winner. Spiritual Alchemy. Divine Science.

ϻг_ϻε

@steventseeley
harshbothra_'s profile picture. Freelance Pentester & Consultant • Cobalt Core Lead & Pentester • Author • Speaker • Blogger • SecurityExplained • Project Bheem • Learn365 • Views are personal

Harsh Bothra

@harshbothra_
snyff's profile picture. Founder/CEO/Trainer/Researcher/CVE archeologist @PentesterLab. Security engineer. Bugs are my own, not of my employer...

Louis Nyffenegger

@snyff
momika233's profile picture. Anda boleh melakukan segala-galanya dari syurga ke bumi, wanita kecil!! If you have any questions, please contact me https://t.co/MkzsavUU9V

张惠倩

@momika233
CrazymanArmy's profile picture. CTFer / APT hunter / RedTeam / BlueTeam the member of @r3kapig the leader of @ShadowChasing1 CVE-2022-30190 find job opportunities opinions are own not group

crazyman_army

@CrazymanArmy
haxor31337's profile picture. 29 y/o Bug Bounty Hunter and Red Teamer at Viettel Cyber Security. Brand Ambassador @Hacker0x01 - Researcher Spotlight @Bugcrowd

Tuan Anh Nguyen⚡️ 🇻🇳

@haxor31337
alexjplaskett's profile picture. Security Researcher | Pwn2Own 2018, 2021, 2022, 2024 | Posts about 0day, OS, mobile and embedded security.

Alex Plaskett

@alexjplaskett
5aelo's profile picture. Working on Project Zero, Big Sleep, and V8 Security. Personal account. Also @saelo@chaos.social and https://t.co/aVitnPjBie

Samuel Groß

@5aelo
ky1ebot's profile picture. CTF player @Shellphish | PhD Student @ASU | @angrdothorse dev | Author of how2heap | Vulnerability Research Hobbyist | @kylebot@infosec.exchange

kylebot

@ky1ebot
_jsoo_'s profile picture. Founder https://t.co/dU7gVAkwY9

Jacob Soo

@_jsoo_
spaceraccoonsec's profile picture. Here to learn! Infosec@Open Government Products | White Hat && SecOps

spaceraccoon | Eugene Lim

@spaceraccoonsec
maddiestone's profile picture. Security Researcher. Previously Google Project Zero and TAG | 0days all day. Love all things bytes, assembly, and glitter. she/her.

Maddie Stone

@maddiestone
pyn3rd's profile picture. Security Researcher&Red Team&Cloud Security. BlackHat&HITB&CanSecWest Speaker.

pyn3rd

@pyn3rd
Agarri_FR's profile picture. Web hacker and Burp Suite Pro trainer Refer to https://t.co/D5tRH7U2hg for trainings Follow @MasteringBurp for free tips and tricks

Nicolas Grégoire

@Agarri_FR
NiloyHakim_'s profile picture. Learn. Build. Repeat. Self-Taught Developer | Startup Dreamer 🚀 #MERNStack #ReactJS #WebDev

Niloy Hakim

@NiloyHakim_
MRostamipoor's profile picture. PhD Candidate @sbucompsc

Maryam Rostamipoor

@MRostamipoor
Vsld0x's profile picture.

Vsld

@Vsld0x
JoseLuis71_'s profile picture. :(){ :|:& };: 💣

Jose71

@JoseLuis71_
Graham__space's profile picture. This is my personal tech/portfolio blog: https://t.co/5JpRIFl1CH Checkout my github: https://t.co/GmZpwXsEwh

Graham_space

@Graham__space
CengizKus60's profile picture. Mütevazi ve çekici bir erkeğim

Cengiz Kuş

@CengizKus60
recklessidee1's profile picture. The Dunning-Kruger effect. Studying for the perfect swing.

Unamed Zamora

@recklessidee1
8l8pro's profile picture. 🟢 Technically consultant 🌐 https://t.co/bSJ18Otwix 🔗 https://t.co/KfMcJqbnq6

8l8 Pro

@8l8pro
SilentAegis_'s profile picture.

Chill Guy

@SilentAegis_
DylanWantenDev's profile picture. Hello, world!

Dylan

@DylanWantenDev
mohdazrial's profile picture.

Mohd Azrial Bin Mohd Saini

@mohdazrial
BadukLab's profile picture.

Hanju Lee

@BadukLab
anneramire_'s profile picture. HR Business Partner fostering a thriving organizational culture

Anne Ramirez

@anneramire_
MoniceRecords's profile picture.

Monice Records

@MoniceRecords
GuerreroLu10979's profile picture.

Salvador Luna guerrero

@GuerreroLu10979
SumairaAadatGal's profile picture.

Sumaira Aadat Gal

@SumairaAadatGal
barrylinux's profile picture.

Barry

@barrylinux
rayyankazma's profile picture.

rayan

@rayyankazma
bengbooom's profile picture. Yes yes

boomboom

@bengbooom
vortex_code_dev's profile picture.

Vortex Code Developer

@vortex_code_dev
nathanlaws_'s profile picture. Mobile App Developer creating seamless experiences on the go Deep dive into #AI and #MachineLearning

Nathan Lawson

@nathanlaws_
_elainesilv_'s profile picture. Holder of many opinions, sharer of very few (publicly)

Elaine Silva

@_elainesilv_
lucassanto___'s profile picture. Passionate about Specific sport, e g , soccer, basketball, cricket and its community

Lucas Santos

@lucassanto___
FiVe_Alpha5y's profile picture. Alpha Hunter https://t.co/rNWiutudze

FiVe_Alpha

@FiVe_Alpha5y
normalcoder_'s profile picture. 开发者,PD 在 https://t.co/hCBnsSy5XA ,中文开源布道传播,个人维护有 https://t.co/n1uB9wBX1T 和 https://t.co/u6tUEoylZw

诺墨

@normalcoder_
ryoskrmt's profile picture.

r

@ryoskrmt
YutekDev's profile picture. Yutek is a dynamic startup dedicated to empowering small businesses and self-employed professionals with cutting-edge software and web development.

Yutek

@YutekDev
_brookehoov's profile picture. Platform Engineer building the foundational tech that powers applications Exploring #CloudComputing at scale

Brooke Hoover

@_brookehoov
JohnMaggs223045's profile picture.

John Maggs

@JohnMaggs223045
karrashash's profile picture. Product & Growth Manager | IT Manager

Karashash Rakhmanberdy

@karrashash
Hemanth2022pee's profile picture. AI Researcher

Kandimalla Hemanth

@Hemanth2022pee
dawnhayden_'s profile picture. Recruiter sourcing top talent for leading tech companies #Hiring

Dawn Hayden

@dawnhayden_
CognatiV3's profile picture.

adam kirchhofer

@CognatiV3
ryanall's profile picture.

Ryan A

@ryanall
sssanjayah's profile picture. VII-XXI-MCMXCII Sunset, Pencil Sketching, Nu-Metal & learning DevSecOps --- TO BUILD A HOME ---

Sanjay Hona

@sssanjayah
watdipak07's profile picture. cs @iitdelhi

Deepak Singh

@watdipak07
sky_champ's profile picture. Remember the five simple rules to be happy: Free your heart from hatred. Free your mind from worries. Live simply. Give more. Expect less.

Limit less.....Sky

@sky_champ
themaxwellcross's profile picture. Writing about Cybersecurity, AI, and the Systems Behind Modern Defense. Author of 30 Days of Red Team ⚔️ | Teaching hackers & defenders how to think.

Maxwell Cross

@themaxwellcross
Ntsibanzi's profile picture.

Muziwandile Sibeko

@Ntsibanzi
h3llbl4ckk's profile picture.

h3llbl4ckk

@h3llbl4ckk
KagisoThabiwa's profile picture. Concept Builder | Founder of SAGEWORKS_AI | Building BINFLOW — the Time-Labeled Intelligence Framework for AI, Humans & Everything Between. | I build ideas

Peace Thabiwa

@KagisoThabiwa
stevensoftich's profile picture. Posting All News and Info

Quantavious ⛾

@stevensoftich
HongIkChoi's profile picture. I think. I write. I Iearn, earn, and return.

Max

@HongIkChoi
shuhey1220's profile picture.

shuhey / シュウヘイ

@shuhey1220
MohamedBou18763's profile picture.

Mohamed bouddi

@MohamedBou18763
Maciejrybak4's profile picture. Jestem bo jestem

Maciej rybak

@Maciejrybak4
ZwePaingHtut1's profile picture.

Zwe Paing Htut

@ZwePaingHtut1
AnitaAnita69402's profile picture. Pppppp

Plat BP

@AnitaAnita69402
manutai02's profile picture.

manutai02 Strickland

@manutai02
JasonWZB's profile picture.

0xJason

@JasonWZB

United States Xu hướng

Bạn có thể thích

Something went wrong.


Something went wrong.