RandomHt
@pythoncike
security research,red team memeber,code reviewer
You might like
发现一款 Chrome 插件,用于将网页文档以原样式保存到本地浏览器数据库,不用担心隐私泄漏,不依赖网络,支持关键词快速搜索和检索功能,节约磁盘空间同时减少浏览器内存的使用。github.com/wvit/web-docum…
New Blog! Exploiting XSS with Javascript/JPEG polyglot. #xss #infosec #javascript medium.com/@Medusa0xf/exp…
A small gift from my side to all bug bounty hunters. My 8 hour long burp suite focused course for free. share to someone who need it. #bugbountytips #bugbounty #infosec (rt & share + enjoy) udemy.com/course/bug-bou…
Talk about 2 POC of DirtyPipe(CVE-2022-0847) Original POC: dirtypipe.cm4all.com is able to overwrite arbitrary file with offset like ./exp /etc/passwd 5 ":0:0:rootx" Improved POC: haxx.in/files/dirtypip… is able to overwrite a SUID program like ./exp /usr/bin/su
Top 25 Browser Extensions for Pentesters and Bugbounty Hunters (2022) p1boom.com/2022/02/top25-… Did i miss something? #bugbounty #bugbountytips #infosec #Pentesting
Found an XSS filter that allows SVG-based tags? Try the 'use' element, you can import a SVG via a data url and execute JavaScript automatically! portswigger.net/web-security/c…
Most popular key word in #Linux with definitions that’s help u to learn more about who to use it in linux platform. #CyberSecurity #cybercrime #الامن_السيبراني
In this tweet, I will explain to you How to find Leaking AWS Keys.
#update St8out - Extra one-liner for reconnaissance gist.github.com/dwisiswant0/5f… Workflow: metabigor > findomain & amass > filter-resolved > subjack > dig > nmap > webanalyze > dirsearch > LinkFinder > cors-blimey > gowitness > Arjun > meg > gf #bugbountytips
I added a script to generate the PDF & archive for my #OSCP Exam Report Template in Markdown, as I saw a lot of people where creating their own scripts. github.com/noraj/OSCP-Exa…
If you didn't know, you can use Sn1per to retrieve a targets ASN, full subnet list and IP's via 'recon' mode. These can easily be fed into Sn1per using 'discover' mode to scan full subnets and enumerate all hosts. 😎 xerosecurity.com #bugbounty #netsec #infosec #offsec
Are you ready to takeover subdomains? ;) I have developed a tool to scan subdomain takeover vulnerabilities. Found 300+ vulnerable subdomains on Twitter,Yahoo,Pinterest,Periscope,Spotify,HarvardUni,StanfordUni,BerkeleyUni,YaleUni,PrincetonUni... Its free! hackking.net/subdomain-take…
Confirmed. Everyone is affected. Or you are not on the Internet.
I have a major #Databreach announcement tomorrow - 1.2 BILLION people exposed from a single organization. More details soon. @lilyhnewman @troyhunt @MayhemDayOne @DataViperIO
United States Trends
- 1. Powell 39.5K posts
- 2. #NationalCatDay 4,033 posts
- 3. FOMC 49.5K posts
- 4. Huda 29.9K posts
- 5. Azure 16.8K posts
- 6. The Fed 82.6K posts
- 7. Jennifer Welch 11.8K posts
- 8. Hutch 1,527 posts
- 9. NBA Street 2,660 posts
- 10. #SaveSudan 1,591 posts
- 11. #Spooktacular25 N/A
- 12. HAZBINTOOZ 1,481 posts
- 13. #SellingSunset N/A
- 14. #SpaceMarine2 2,134 posts
- 15. Olandria 50.1K posts
- 16. Jake Browning N/A
- 17. Kat Abughazaleh 1,568 posts
- 18. Jay Z 10.6K posts
- 19. South Korea 172K posts
- 20. Miran 13K posts
Something went wrong.
Something went wrong.