HackerOne – Telegram

HackerOne

9.8K subscribers

633 photos

30 videos

76 files

2.69K links

Community : @Sec0x01
@Bug0x
Admin : @Offensive

Download Telegram

About

Blog

Apps

Platform

9.8K subscribers

https://cybergeeks.tech/dissecting-apt21-samples-using-a-step-by-step-approach/

2.11K viewsAdeL, 19:14

https://googleprojectzero.blogspot.com/2020/12/an-ios-zero-click-radio-proximity.html

An iOS zero-click radio proximity exploit odyssey

Posted by Ian Beer, Project Zero NOTE: This specific issue was fixed before the launch of Privacy-Preserving Contact Tracing in iOS 13.5 in...

2.15K viewsAmir Kiani, 09:43

Designing The Adversary Simulation Lab

https://www.mdsec.co.uk/2020/04/designing-the-adversary-simulation-lab/

Designing The Adversary Simulation Lab - MDSec

As some of you will know, we have recently entered into the Red Team training space. Before deciding to create our course now known as “Adversary Simulation and Red Team...

2K viewsAdeL, 18:43

🇮🇱: Hackers who breached Israeli insurance firm demand $1m to keep data private.

https://www.timesofisrael.com/hackers-who-breached-israeli-insurance-firm-demand-1m-to-keep-data-private/amp/

The Times of Israel

Hackers who breached Israeli insurance firm demand $1m to keep data private

Group warns sum will double every 24 hours, and say they'll sell the documents if ransom money not paid within 3 days

2.14K viewsAdeL, 22:53

Researchers Discover New Obfuscation-As-a-Service Platform
https://www.darkreading.com/cloud/researchers-discover-new-obfuscation-as-a-service-platform/d/d-id/1339609

via Dark Reading

Researchers Discover New Obfuscation-As-a-Service Platform

Researchers detail how a Android APK obfuscation service automates detection evasion for highly malicious apps.

2.27K viewsAdeL, 22:54

@cybersecarticles
Free course

1.95K viewsAmir Kiani, 17:06

https://github.com/pry0cc/axiom

GitHub - pry0cc/axiom: The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools…

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more! - pry0cc/axiom

2.11K viewsAmir Kiani, 07:53

https://portswigger.net/research/cracking-recaptcha-turbo-intruder-style

PortSwigger Research

Cracking reCAPTCHA, Turbo Intruder style

Tired of proving you're not a robot? In this post, I'll show how you can partially bypass Google reCAPTCHA by using a new Turbo Intruder feature to trigger a race condition. This vulnerability was rep

2.21K viewsAmir Kiani, 09:28

https://hackerone.com/reports/873614

PlayStation disclosed on HackerOne: Websites Can Run Arbitrary Code...

1.89K viewsAmir Kiani, 17:48

https://docs.google.com/document/d/1-l1dagQ643nH8chDl2VwRwdJxZZ6D3M1K07pvLfAbSI/edit

#RoadMap

Security & Hacking related books

Basic OS & Networking: The Linux Command Line 2nd ed. Linux Bible 10th Ed. (Must-read for beginners as a reference book) Network+ Study guide. (Must-read for beginners.) Security+ Study guide. Basic intro to security. MCSA Windows 10 Study Guide MCSA Networking…

2.1K viewsAmir Kiani, edited 17:53

https://www.usenix.org/conference/woot13/workshop-program/presentation/kholia

2.06K viewsAmir Kiani, 18:03

https://bugs.chromium.org/p/project-zero/issues/list?q=localhost%20owner%3Ataviso%40google.com&can=1

2.07K viewsAmir Kiani, 18:05

The #CERT Coordination Center (CERT/CC) has released information on 33 vulnerabilities, known as AMNESIA:33, affecting multiple embedded open-source Transmission Control Protocol/Internet Protocol (#TCP/IP) stacks. A remote attacker could #exploit some of these vulnerabilities to take control of an affected system.

https://us-cert.cisa.gov/ics/advisories/icsa-20-343-01

1.97K viewsAdeL, 18:59

https://medium.com/@win3zz/how-i-made-31500-by-submitting-a-bug-to-facebook-d31bb046e204

How I made $31500 by submitting a bug to Facebook

How did I found SSRF in Facebook — the story of my first bug bounty

2.04K viewsAmir Kiani, 21:12

https://github.com/EmpireProject/Empire

GitHub - EmpireProject/Empire: Empire is a PowerShell and Python post-exploitation agent.

Empire is a PowerShell and Python post-exploitation agent. - EmpireProject/Empire

1.89K viewsAmir Kiani, 05:07

https://github.com/rmusser01/Infosec_Reference/blob/master/Draft/Rants%26Writeups/Hacking%20Team%20Writeup.md

Infosec_Reference/Draft/Rants&Writeups/Hacking Team Writeup.md at master · rmusser01/Infosec_Reference

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version. - rmusser01/Infosec_Reference

1.93K viewsAmir Kiani, 05:20

https://github.com/rmusser01/Infosec_Reference/tree/master/Draft/Rants%26Writeups

Infosec_Reference/Draft/Rants&Writeups at master · rmusser01/Infosec_Reference

An Information Security Reference That Doesn't Suck; https://rmusser.net/git/admin-2/Infosec_Reference for non-MS Git hosted version. - rmusser01/Infosec_Reference

2.03K viewsAmir Kiani, 05:20

Hacker OPSEC
grugq.github.io
#OpSec

2.14K viewsAmir Kiani, 05:29

https://grugq.github.io/presentations/Keynote_The_Grugq_-_OPSEC_for_Russians.pdf

2.45K viewsAmir Kiani, 05:31

#threatleak

https://us-cert.cisa.gov/ncas/current-activity/2020/12/08/theft-fireeye-red-team-tools

2.73K viewsAdeL, 11:20