@Phantasm_Lab
@Phantasm_Lab
2.54K subscribers
712 photos
34 videos
671 files
2.71K links
- Red x Blue Security
- Bug Bounty πŸ’· πŸ’΅
- Exploitable tools
- Programming Languages
- Malware Analysis

πŸ‡ΊπŸ‡Έ πŸ‡§πŸ‡· πŸ‡ͺπŸ‡Έ

since 2017 Β©


Parceiros:
@TIdaDepressaoOficial @acervoprivado @ReneGadesx @G4t3w4y
Download Telegram
About
Blog
Apps
Platform
Join
@Phantasm_Lab
2.54K subscribers
@Phantasm_Lab
Forwarded from @Phantasm_Lab
Mobile Application Hackers by Dominic Chell.epub
6.4 MB
65 views
@Phantasm_Lab
Channel photo updated
@Phantasm_Lab
Phantasm Lab English Group

 Rules of House

- Programming Languages
- Bug Bounty πŸ’· πŸ’΅
- Open Source & Free Software
- Exploitable tools
- sysADM
- Linux X Windows
- RED X BLUE security

https://t.me/joinchat/HSfwBUe_xM6NuC5FCjKVWQ

🦠 @Phantasm_Lab
930 viewsedited  
@Phantasm_Lab
Forwarded from Gateway
#Hacking #KGB #Hack
https://media.ccc.de/v/36c3-11031-the_kgb_hack_30_years_later
media.ccc.de
The KGB Hack: 30 Years Later
This spring marked the 30th anniversary of the public uncovering of the so-called KGB Hack, bringing with it a number of new articles rem...
95 views
@Phantasm_Lab
First look at a simple PoC crash - Exploiting FFmpeg ft. Paul Cher

This is the first part of exploiting ffmpeg. A huge thank you to Paul Cher for the excellent work on recording the process and sharing his research. I merely edited it together.

https://www.youtube.com/watch?v=drPyKgt1MMg

🦠 @Phantasm_Lab
YouTube
First look at a simple PoC crash - Exploiting FFmpeg ft. Paul Cher
This is the first part of exploiting ffmpeg. A huge thank you to Paul Cher for the excellent work on recording the process and sharing his research. I merely edited it together.

Vulnerable Version: https://github.com/FFmpeg/FFmpeg/tree/d903b4e3ad4a81b3d…
790 views
@Phantasm_Lab
Analysis of CVE-2016-10190 - Exploiting FFmpeg ft. Paul Cher

Deeper look at CVE-2016-10190. A Heap overflow caused by a negative HTTP chunksize.

https://www.youtube.com/watch?v=Lpt7WIqXOgM

🦠 @Phantasm_Lab
YouTube
Analysis of CVE-2016-10190 - Exploiting FFmpeg ft. Paul Cher
Deeper look at CVE-2016-10190. A Heap overflow caused by a negative HTTP chunksize.

Vulnerable Version: https://github.com/FFmpeg/FFmpeg/tree/d903b4e3ad4a81b3dd79f12c2f3b9cb16e511173
Paul on Twitter: https://twitter.com/__paulch
LiveOverflow Podcast: ht…
770 views
@Phantasm_Lab
RTMP Heap Overflow CVE-2016-10191 - Exploiting FFmpeg ft. Paul Cher

Paul shows us another exploit for FFmpeg. The vulnerability is located in the RTMP protocol. While working with the binary format of the protocol requires a lot of work, the exploit itself is very easy.

https://www.youtube.com/watch?v=hRei9xXRAGE

🦠 @Phantasm_Lab
YouTube
RTMP Heap Overflow CVE-2016-10191 - Exploiting FFmpeg ft. Paul Cher
Paul shows us another exploit for FFmpeg. The vulnerability is located in the RTMP protocol. While working with the binary format of the protocol requires a lot of work, the exploit itself is very easy.

Vulnerable Version: https://github.com/FFmpeg/FFmp…
968 views
@Phantasm_Lab
https://www.udemy.com/course/the-absolute-beginners-guide-to-cybersecurity-part-1/?couponCode=SAIACUITYCOURSE2020
846 views
@Phantasm_Lab
https://www.udemy.com/course/the-absolute-beginners-guide-to-hacking-series-part-2/?couponCode=SAIACUITYJAN2020
892 views
@Phantasm_Lab
Forwarded from SHELL SHOCK
https://www.udemy.com/course/the-absolute-beginners-guide-to-cyber-security-part-3/?couponCode=SAIACUITYCOURSE
64 views
@Phantasm_Lab
OWASP DevSlop Show: Security Code Review

https://youtu.be/rAwxFw25x3E

🦠 @Phantasm_Lab
YouTube
OWASP DevSlop Show: Security Code Review 101 with Paul Ionescu!
Our guest for this episode of the OWASP DevSlop Show is Paul Ionescu; Paul is a Security Architect and OWASP Chapter Leader from Ottawa, Canada. He is the creator and maintainer of the Secure Coding Dojo open source project.

Code review is, hopefully, part…
1.34K views
@Phantasm_Lab
SEC599 - Defeat Advanced Adversaries

https://drive.google.com/open?id=1f143KWI1QasJuM19qnXeQwRQshsvetFO

πŸ“Ÿ @Phantasm_Lab
πŸ“Ÿ @p4riza
902 views
@Phantasm_Lab
Server Side Template Injection

https://youtu.be/BYKxdcc5aTY

πŸ“Ÿ @Phantasm_Lab
865 views
@Phantasm_Lab
Forwarded from SHELL SHOCK
https://www.udemy.com/course/wordpress-instala-y-administra-tu-servidor-con-linux/?couponCode=C27E83592EA980267F6A
81 views
@Phantasm_Lab
Forwarded from SHELL SHOCK
https://www.udemy.com/course/new-web-security-2020
69 views
@Phantasm_Lab
URL Bar Spoofin g Flaw in Safari for iOS 12.3 and iOS 13 Beta | CVE-2019-8727

https://medium.com/bugbountywriteup/url-bar-spoofing-in-safari-for-ios-12-3-and-ios-13-beta-cve-2019-8727-d87490f8ee29

πŸ“¬ @Phantasm_Lab
Medium
URL Bar Spoofing in Safari for iOS 12.3 and iOS 13 Beta | CVE-2019–8727
While working for browser-based attacks on the URL bar, I learned a way where it was still possible to spoof address bar in safari. None…
743 viewsedited  
@Phantasm_Lab
How two dead accounts allowed REMOTE CRASH of any Instagram android user

https://medium.com/bugbountywriteup/how-two-dead-users-allowed-remote-crash-of-any-instagram-android-user-8f20e88b1b59

πŸ“¬ @Phantasm_Lab
Medium
How two dead accounts allowed REMOTE CRASH of any Instagram android user
Facebook bug bounty remote crash bug
777 views
@Phantasm_Lab
How I was able to bypass OTP code requirement in Razer [The story of a critical bug]
https://medium.com/bugbountywriteup/how-i-was-able-to-bypass-otp-token-requirement-in-razer-the-story-of-a-critical-bug-fc63a94ad572
Medium
How I was able to bypass OTP code requirement in Razer [The story of a critical bug]
A story of turning an Informative bug to critical bug
729 views
@Phantasm_Lab
4 Methods to Bypass two factor Authentication - Shahmeer Amir
https://shahmeeramir.com/4-methods-to-bypass-two-factor-authentication-2b0075d9eb5f
Medium
4 Methods to Bypass two factor Authentication
Since the dawn of the World Wide Web, attackers have been involved in discovering techniques to compromise systems. Likewise security…
1.54K views
@Phantasm_Lab
1.96K views
@Phantasm_Lab
2.01K views