You might like
Me and @httpsonly launched perimeter security scanner. We've automated recon, crawling, scanning and more. Talk to us scanfactory.io/en/ to get a free demo for your company
I haven't been watching security scene for the last year, now I want to catch up! Could you guys kindly send me the articles which you find interesting/noteworth in terms of security? 🙏
That's some new side of transparency. Have seen your really great and open work at mail.ru and now in Acronis. Mad respects
Yeah! Now our security advisories could be found here - security-advisory.acronis.com. It’s even possible to filter by @Hacker0x01 username in case if there any related reports// great work @feeltheajf_!
This is bizzare
🙈🙉🙊Citrix has removed the acknowledgement of our researcher Mikhail Klyuchnikov who discovered and reported CVE-2019-19781 - the Citrix ADC RCE! @Citrix we will be pleased to hear your response. Current: support.citrix.com/article/CTX267… Mar 2021: web.archive.org/web/2021032109…
The man is a beast! Make sure you do check his latest research and subscribe to his account
Slides from my talk "HTTP Request Smuggling via higher HTTP versions" at #phdays10! Several previously undisclosed flaws in real open-source software are discussed near the end. slideshare.net/neexemil/http-…
slideshare.net
HTTP Request Smuggling via higher HTTP versions
Me and @d0znpp wrote an article on http2smugl (my tool that detects HTTP request smuggling that happens during HTTP2 termination) with detailed usage examples and #bugbountytips lab.wallarm.com/http2smugl-htt…
http2smugl: HTTP2 request smuggling security testing tool lab.wallarm.com/http2smugl-htt…
I'm releasing my tool that detects HTTP Request Smuggling opportunities that arise during HTTP/2 -> HTTP/1.1 conversion by the "frontend" servers: github.com/neex/http2smugl. Comments & suggestions much appreciated. @albinowax what do you think about that?
New attack! Our researcher Arseniy Sharoglazov has discovered a method to connect to LDAP via #MSExchange from the Internet and access the whole Active Directory database. Read the research: swarm.ptsecurity.com/attacking-ms-e…
New article by Mikhail Klyuchnikov: RCE in F5 Big-IP (CVE-2020-5902) swarm.ptsecurity.com/rce-in-f5-big-…
PT SWARM is absolutely a fantastic idea! Also Arseniy is one of the best and most humble authors on infosec right now. Be sure to check his blog too: mohemiv.com
Positive Technologies @ptswarm team has started a blog about penetration testing. Articles about a server-side code execution in F5 Big-IP, Oracle WebLogic, MS Exchange and Sophos XG Firewall are about to be published. I hope you'll enjoy it!
Omg, my mind blown during the first 25 seconds!
Have you ever wondered how to use the browser's devtools to find more valid bugs? Here's the latest @0xReconless video that shows you secret DevTools tricks for bug bounty hunting! youtube.com/watch?v=Y1S5s3…
youtube.com
YouTube
Improve Your Hacking Skills Using Devtools | Bug Bounty Tips
Made a context menu launcher for IDA which automatically chooses 32 or 64-bit version based on `file` output run in WSL: gist.github.com/vient/db5af9a8… Usage: right click on file, Open with IDA. Set your IDA_DIR env or change it in ida_launcher.bat
SSRF + CRLF + HTTP Pipeline + Docker API = RCE… How dangerous is Request Splitting, a vulnerability in Golang or how we found the RCE in Portainer and hacked Uber link.medium.com/dSWQ6ewPL6
I hate when companies limit bandwidth based on your geo. 1.6Gig from Russia takes 56min or 10min through VPN in Germany
Slides for "Attacking Secondary Contexts in Web Applications" - docs.google.com/presentation/d…
United States Trends
- 1. #JoyForum N/A
- 2. #2025MAMAVOTE 128K posts
- 3. Good Thursday 16.9K posts
- 4. #MC필릭스의_냉터뷰 9,804 posts
- 5. MC FELIX FRIDGE INTERVIEW 10.7K posts
- 6. #FridgeInterview_MCFelix 10.1K posts
- 7. Deport Harry Sisson 11.2K posts
- 8. Mila 17.9K posts
- 9. Brevis ZK 138K posts
- 10. Ninja Gaiden 9,218 posts
- 11. Deloitte 8,431 posts
- 12. DuPont 2,026 posts
- 13. #PokemonZA 2,415 posts
- 14. BNB Chain 21.5K posts
- 15. Pelosi 143K posts
- 16. Angel Reese 55.5K posts
- 17. Gabe Vincent 4,396 posts
- 18. Domain For Sale 19.6K posts
- 19. John Fetterman 26.8K posts
- 20. Big Mac 8,267 posts
You might like
-
Tanner
@itscachemoney -
Joel Margolis (teknogeek)
@0xteknogeek -
Jasmin Landry
@JR0ch17 -
Jonathan Bouman
@JonathanBouman -
Sébastien Morin
@SebMorin1 -
Samuel
@saamux -
streaak
@streaak -
pwnmachine 👾
@princechaddha -
Wh11teW0lf
@Wh11teW0lf -
ramsexy
@plmaltais -
Ian Bouchard
@Corb3nik -
Mahmoud Gamal
@Zombiehelp54 -
Tabahi
@_tabahi -
Michael Stepankin
@artsploit -
Jess
@Hogarth45_
Something went wrong.
Something went wrong.