TheCS_Student
@TheCS_Student
Software developer during the day and cyber-security pentester at night.
You might like
I’ve had people asking for a solid year about this but had to keep my mouth shut. Here is your answer about OMG Cables and new 🍎 phone
Just found a little gem online medium.com/@0xprahadeesh/… #OSINT
🚩It's almost time for our mid-year capture the flag! offs.ec/43mrHru The tournament is open to individuals of all skill levels. 🧠 Exploit vulnerabilities, analyze code, decrypt messages, and overcome obstacles to obtain flags and demonstrate your skills.
The MOVEit Transfer exploitation is not just SQL injection(👀) We uncovered the very last stage of the attack chain to drop human2.aspx ultimately ends up gaining remote code execution ‼ We fully recreated the attack chain with a demo achieving a reverse shell & ransomware!
👉 Let ChatGPT visit a website and have your email stolen. Plugins, Prompt Injection and Cross Plug-in Request Forgery. Not sharing “shell code” but… 🤯 Why no human in the loop? @openai Would mitigate the CPRF at least #OPENAI #ChatGPT #plugins #infosec #ai #humanintheloop
Powershell tips to make you a ✨better✨ 😈 hacker and person 👼 Might make this my deskmat ha
Doing a little challenge from picoCTF. Relative Paths vs Absolute Paths Challenge -> "Forbidden Paths" from @picoCTF youtu.be/jgW127teLDY #cybersecurity #Pentesting #Hacking #webdevelopment
Above is a good example for this @wdormann: 13 detections for the .lnk inside, but the .vhd has 0...
🔒 Beware! A new phishing technique called "file archiver in the browser" has emerged. It cleverly imitates legitimate file archiver software, like WinRAR, right in your web browser using a .ZIP domain. Read details: thehackernews.com/2023/05/dont-c… #infosec #cybersecurity #hacking
🔐 Navigating the digital world requires constant vigilance - now more than ever. Recent times have seen the release of .ZIP domains, this means a higher risk of phishing attacks and malware spread, making the web a potentially treacherous terrain. 🎣💻🐛
Pretty clever, will try it
Clever ‘File Archiver In The Browser’ phishing trick uses ZIP domains - @LawrenceAbrams bleepingcomputer.com/news/security/…
🔥🔥30 New Azure Queries for BloodHound🔥🔥 github.com/LuemmelSec/Cus… Gather general and valuable Information Attack Paths from OnPrem -> Cloud Identify High Value Targets and Attack Paths inside Azure Lots of them were build following @inversecos Azure Attack course @XintraOrg
Doing a little challenge from picoCTF. Challenge -> "Inspect HTML" from @picoCTF Nothing really special, just cleaning challenges.
Doing a little challenge from picoCTF. This one plays with HTTP Headers such as User-Agent Challenge -> "picobrowser" from @picoCTF youtu.be/Prw70T-YrpI #cybersecuritytips #infosec #Pentesting #picoctf
Absolute vs. Relative Paths: Unveiling Security Vulnerabilities! In the world of software development, the choice between absolute and relative paths has a significant impact on application security. 🚧💻 #AbsolutePaths #RelativePaths #SecurityLoopholes #SecureCoding
Doing a little challenge from picoCTF. Never store is_admin in the cookies 😄 Challenge -> "Power Cookie" from @picoCTF youtu.be/1I0ATenz_ew
I am definitely buying a couple of these for engagements. .zip domains are the new danger for almost everyone, before you click on a “zip” file in your email, make sure it’s not a link :) Stay safe folks #CyberSecurity #pentest #CyberSecurityAwareness
Google's .zip, .mov Domains Give Social Engineers a Shiny New Tool: bit.ly/3MRXZVc by @roblemos
JWT CRACKING New little video from @picoctf showing JWT vulnerabilities Challenge: "JaWT Scratchpad" Video -> youtu.be/DUWB38YFlBk #cybersecurity #pentest #web #infosec
Another day, another CTF
It is time 🔥 Registrations for #BusinessCTF2023 are now open! This year, escaping the planet is the only way to survive... Register now: bit.ly/42PiG9s #HackTheBox #CTF #CaptureTheFlag
United States Trends
- 1. #BaddiesUSA 59.2K posts
- 2. Rams 29.2K posts
- 3. #LAShortnSweet 21.2K posts
- 4. Scotty 9,710 posts
- 5. Cowboys 100K posts
- 6. Chip Kelly 8,597 posts
- 7. Eagles 140K posts
- 8. #TROLLBOY 1,958 posts
- 9. #ITWelcomeToDerry 15.2K posts
- 10. Raiders 67.4K posts
- 11. Stafford 15K posts
- 12. sabrina 61.1K posts
- 13. Stacey 25.6K posts
- 14. Bucs 12.2K posts
- 15. TOP CALL 3,289 posts
- 16. #RHOP 12K posts
- 17. Baker 20.9K posts
- 18. Ahna 7,069 posts
- 19. billie 18.9K posts
- 20. Vin Diesel 1,210 posts
Something went wrong.
Something went wrong.