Forwarded from Yekolo Temari (የቆሎ ተማሪ)
After #3 thrilling days of #RedTeam and #BlueTeam #CTF, our champions emerged!
GeezSec | FunSociety | Okiru
Huge shoutout to all #30+ teams who participated, what a showdown! Your passion and skills made this an unforgettable event. Until next time, keep pushing the limits!
#cybersecurity #hacking #ctf #redteam #blueteam #alx #yekolotemari
GeezSec | FunSociety | Okiru
Huge shoutout to all #30+ teams who participated, what a showdown! Your passion and skills made this an unforgettable event. Until next time, keep pushing the limits!
#cybersecurity #hacking #ctf #redteam #blueteam #alx #yekolotemari
🎉16👏2
Forwarded from Ge'ez Tech® ግዕዝ ቴክ
#Tips
Do you know about subdomain takeover? it is a simple bug taking over the CNAMEs linked to the subdomain.
Example:
Another Simple example lets see "Social Media takeover"(not sure if i can call it like this). Bicha think like websites have a contact us section with their instagram/telegram accounts listed. then some day that company changed their telegram username. but if the site still list the old account, when u click it and says "account not found". then you can create telegram account with that username. then when users go to the site and wanted to contact the company and click on that telegram BOOM! i will be their support to trick and take their username and password😁😁😂
any ways, that is subdomain takeover. i saw some account not founds and it click on ma brain.
Stay Safe
#geeztech @geeztechgroup
Do you know about subdomain takeover? it is a simple bug taking over the CNAMEs linked to the subdomain.
Example:
blog.geezsecurity.com might have CNAME with some blogging site like geezsec.hash.blog (or github) then if the geezsec.hash.blog is removed by the admin but the configuration(CNAME) is not fixed yet And if i can Create account with the geezsec.hash.blog, when ppls access blog.geezsec.com they will be on the new geezsec.hash.blog made by the attacker, that is subdomain takeover.Another Simple example lets see "Social Media takeover"(not sure if i can call it like this). Bicha think like websites have a contact us section with their instagram/telegram accounts listed. then some day that company changed their telegram username. but if the site still list the old account, when u click it and says "account not found". then you can create telegram account with that username. then when users go to the site and wanted to contact the company and click on that telegram BOOM! i will be their support to trick and take their username and password😁😁😂
any ways, that is subdomain takeover. i saw some account not founds and it click on ma brain.
Stay Safe
#geeztech @geeztechgroup
🔥6❤1
Forwarded from CSEC ASTU (𝖐𝖎𝖉𝖔 .𝓪)
Happening Now 🔥
Cyber Division Session 4 — Using Web Proxies by
@CSEC_ASTU
Cyber Division Session 4 — Using Web Proxies by
Ammar Sabit
Hackers, coders, and defenders ,the cyber arena is on! 🚀💻
@CSEC_ASTU
Forwarded from CSEC ASTU (𝑘𝑖𝑑𝑜 .𝑎)
🔥 Happening Now🔥
Web Fuzzing , CSEC ASTU Cyber division
@CSEC_ASTU
#cyber #cyberdivision #CSECASTU #JoinTheCommunity #SESSION
Web Fuzzing , CSEC ASTU Cyber division
The future cyber experts are here, finding bugs and making the web safer one test at a time! 🚀
@CSEC_ASTU
#cyber #cyberdivision #CSECASTU #JoinTheCommunity #SESSION
🥰1
Forwarded from CSEC ASTU (𝑘𝑖𝑑𝑜 .𝑎)
Happening Now 🔥
Cyber Division Session 6 - SQL Injection Fundamentals by
@CSEC_ASTU
#cyber #cyberdivision #CSECASTU #JoinTheCommunity #SESSION
Cyber Division Session 6 - SQL Injection Fundamentals by
Sirajudin Seid
@CSEC_ASTU
#cyber #cyberdivision #CSECASTU #JoinTheCommunity #SESSION
🔥4
Forwarded from CSEC ASTU (𝑘𝑖𝑑𝑜 .𝑎)
🔥 Happing Now 🔥
Cyber Division
By Yabets Workaferahu
@CSEC_ASTU
#Cseastu #learning #cyberteam #server
Cyber Division
Server side template injection
By Yabets Workaferahu
@CSEC_ASTU
#Cseastu #learning #cyberteam #server
🔥4