Writeup on how I made $40,000 breaking the new Chromium Edge using essentially two XSS flaws.
https://t.co/VZ3QGbxDF5
https://t.co/VZ3QGbxDF5
Leucosite
Microsoft Edge (Chromium) - EoP to RCE
With some luck and a couple of XSS bugs I was able to break the new Edge
Reverse Engineering with Ghidra - Part 0 (Main Windows & CrackMe) : https://t.co/AZaneRmO34
Part 1 (Data, Functions & Scripts) : https://t.co/wl7JIuFgxw
Part 1 (Data, Functions & Scripts) : https://t.co/wl7JIuFgxw
Powershell for exploitation and post exploitation : https://t.co/jpxupp5wPW
Peerlyst
Powershell for exploitation and post exploitation
Image credit: Powershell Magazine
Introduction
This time I’ll be taking a look at the Windows Powershell, and how it can be used during the exploitation and post exploitation phases of a penetration test. I’ll also be looking at the relationship b...
Introduction
This time I’ll be taking a look at the Windows Powershell, and how it can be used during the exploitation and post exploitation phases of a penetration test. I’ll also be looking at the relationship b...
django PoC for CVE-2019-19844
Affected supported versions
Django master branch
Django 3.0
Django 2.2
Django 1.11
https://t.co/SfvOh6xnFd
Affected supported versions
Django master branch
Django 3.0
Django 2.2
Django 1.11
https://t.co/SfvOh6xnFd
GitHub
GitHub - ryu22e/django_cve_2019_19844_poc: PoC for CVE-2019-19844(https://www.djangoproject.com/weblog/2019/dec/18/security-releases/)
PoC for CVE-2019-19844(https://www.djangoproject.com/weblog/2019/dec/18/security-releases/) - ryu22e/django_cve_2019_19844_poc
Resources about network security (including: Proxy/GFW/ReverseProxy/Tunnel/VPN/Tor/I2P, and MiTM/PortKnocking/NetworkSniff/NetworkAnalysis/etc) More than 1700 open source tools for now : https://t.co/eeHXUVnaVv
GitHub
awesome-network-stuff/Readme_en.md at master · alphaSeclab/awesome-network-stuff
Resources about network security, including: Proxy/GFW/ReverseProxy/Tunnel/VPN/Tor/I2P, and MiTM/PortKnocking/NetworkSniff/NetworkAnalysis/etc。More than 1700 open source tools for now. Post incomin...
Mobile Application Pentesting :
Part 1:-
https://t.co/2JNzRqGiC9
Part 2:-
https://t.co/CjwHrnbLzX
Part 3:-
https://t.co/95qTKLXB2u
Part 4:-
https://t.co/DYon15FDwr
Part 5:-
https://t.co/ED3ZHZm9w0
Part 6:-
https://t.co/fsgF4ZcReE
Part 1:-
https://t.co/2JNzRqGiC9
Part 2:-
https://t.co/CjwHrnbLzX
Part 3:-
https://t.co/95qTKLXB2u
Part 4:-
https://t.co/DYon15FDwr
Part 5:-
https://t.co/ED3ZHZm9w0
Part 6:-
https://t.co/fsgF4ZcReE
How to build a TCP proxy (Part 1) : Intro : https://t.co/BuiM18u66w
Fake DNS Server (Part 2) : https://t.co/K6pGHupmTq
Proxy Server (Part 3) : https://t.co/Lcp11C8VLB
Fake Certificate Authority (Part 4) : https://t.co/jG6sb1RHUp
Fake DNS Server (Part 2) : https://t.co/K6pGHupmTq
Proxy Server (Part 3) : https://t.co/Lcp11C8VLB
Fake Certificate Authority (Part 4) : https://t.co/jG6sb1RHUp
Robert Heaton
How to build a TCP proxy #1: Intro | Robert Heaton
It was a weird and smoky afternoon in San Francisco. My downstairs neighbors had apparently never heard of vaporizers, and the Sierra Nevada was on fire. I had planned to spend the rest of the day attacking the user-location features of popular dating apps.…
Best firefox addons for Hacking:
-HackBar
-Cookies Manager+
-User-Agent Switcher
-Tamper Data
-FoxyProxy Standard
-Wappalyzer:
-HttpRequester
-RESTClient:
-Tampermonkey
-XSS Me
-SQL Inject Me
-iMacros
-FirePHP
-HackBar
-Cookies Manager+
-User-Agent Switcher
-Tamper Data
-FoxyProxy Standard
-Wappalyzer:
-HttpRequester
-RESTClient:
-Tampermonkey
-XSS Me
-SQL Inject Me
-iMacros
-FirePHP
Just posted Low-Hanging Apples: Hunting Credentials and Secrets in iOS Apps https://t.co/GNQ6sY4IeA
spaceraccoon.dev
Low-Hanging Apples: Hunting Credentials and Secrets in iOS Apps — spaceraccoon.dev
Motivation Diving straight into reverse-engineering iOS apps can be daunting and time-consuming. While wading into the binary can pay of...
lsassy 1.0.0 is finally out !
🔸 Remotely dump lsass with built-in Windows tools only, procdump is no longer necessary
🔸 Remotely parse lsass dumps to extract credentials
🔸 Link to Bloodhound to detect compromised users with path to Domain Admin
https://t.co/NxIFkc2DUk
🔸 Remotely dump lsass with built-in Windows tools only, procdump is no longer necessary
🔸 Remotely parse lsass dumps to extract credentials
🔸 Link to Bloodhound to detect compromised users with path to Domain Admin
https://t.co/NxIFkc2DUk
GitHub
GitHub - Hackndo/lsassy: Extract credentials from lsass remotely
Extract credentials from lsass remotely. Contribute to Hackndo/lsassy development by creating an account on GitHub.
CVE-2019-10758 post-auth Remote Code Execution in mongo-express < 0.54.0 via endpoints that uses the
however there are lots of no-auth mongo-express ...
shodan: https://t.co/9J4qhXL1Im
poc: https://t.co/mtChbxVDrw
toBSON methodhowever there are lots of no-auth mongo-express ...
shodan: https://t.co/9J4qhXL1Im
poc: https://t.co/mtChbxVDrw
GitHub
GitHub - masahiro331/CVE-2019-10758
Contribute to masahiro331/CVE-2019-10758 development by creating an account on GitHub.
Resources-for-Beginner-Bug-Bounty-Hunters : A list of resources for those interested in getting started in bug bounties https://t.co/OiU5febmIl
GitHub
nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters
A list of resources for those interested in getting started in bug bounties - nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters
Awesome mobile security - one place to find all android and ios security related stuffs like labs, talks, papers, courses, and tools : https://t.co/4pyUYjAeoe
GitHub
vaib25vicky/awesome-mobile-security
An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it. - vaib25vicky/a...
One of the scarier bugs: with Microsoft’s go-ahead & after many hours spent, I’m excited to finally publish this writeup and PoC! https://t.co/suHzsgtfd9
allysonomalley.com
Saying Goodbye to my Favorite 5 Minute P1
In this post, I’m going to reveal the fastest, easiest P1 that I’ve ever reported – multiple times! It’s the sort of oversight that seems so simple to avoid, but surprisingl…