World Of Security
@world_of_security
4.64K subscribers
39 photos
9 videos
21 files
599 links
Contactus:
@nashenas_tm
@cyberknight0_0
Download Telegram
About
Blog
Apps
Platform
Join
World Of Security
4.64K subscribers
World Of Security
How To Bypass Cloudflare in 2023

https://scrapeops.io/web-scraping-playbook/how-to-bypass-cloudflare/
scrapeops.io
How To Bypass Cloudflare in 2026 | ScrapeOps
Learn how to bypass Cloudflare's anti-bot protection so you can reliably scrape Cloudflare protected websites.
👍4
1.38K views
World Of Security
Mobile Hacking Cheatsheets:
https://lnkd.in/e-8p8GE6
lnkd.in
LinkedIn
This link will take you to a page that’s not on LinkedIn
2
1.27K views
World Of Security
https://iamaakashrathee.medium.com/ssrf-methodology-by-aakash-rathee-f175665e2ea
Medium
SSRF methodology by Aakash Rathee
Hi, I’m Aakash Rathee, a Security Engineer III at Esper. I work on a variety of security topics, including Application Security, Cloud…
🔥2
1.44K views
World Of Security
https://portswigger.net/research/ambushed-by-angularjs-a-hidden-csp-bypass-in-piwik-pro
👍2
1.37K views
World Of Security
Latest Nuclei Release v2.9.3 (bugfix release)!

https://github.com/projectdiscovery/nuclei/releases/tag/v2.9.3
GitHub
Release v2.9.3 (bugfix release) · projectdiscovery/nuclei
What's Changed

Added support to expose DNS response as dsl field by @ShubhamRasal in #3613
Added support to filter templates based on classification by @iamargus95 in #3606
Added check to make...
👍6
1.42K views
World Of Security
Bypass IIS Authorisation with this One Weird Trick - Three RCEs and Two Auth Bypasses in Sitecore 9.3

https://blog.assetnote.io/2023/05/10/sitecore-round-two/
👍1
1.05K views
World Of Security
https://infosecwriteups.com/discovery-of-an-xss-on-opera-f029f6522ec5
Medium
Discovery of an XSS on Opera
Discovering XSS in large companies is one of my hobbies. Today I want to talk about Opera XSS which took 15 minutes. The power of finding…
👍2
1.14K views
World Of Security
https://docs.google.com/document/d/1v1TkWZtrhzRLy0bYXBcdLUedXGb9njTNIJXa3u9akHM/edit#
Google Docs
SSRF bible. Cheatsheet
SSRF bible. Cheatsheet Revision 1.03 26 Jan 2017 Authors: @Wallarm @d0znpp research team Wallarm.com|lab.wallarm.com Try our new product. Wallarm FAST: security tests from traffic https://wallarm.com/wallarm-fast/ Table of contents Table of contents Basics…
👍2
1.17K views
World Of Security
Microsoft patches bypass for recently fixed Outlook zero-click bug.

https://www.bleepingcomputer.com/news/microsoft/microsoft-patches-bypass-for-recently-fixed-outlook-zero-click-bug/
BleepingComputer
Microsoft patches bypass for recently fixed Outlook zero-click bug
Microsoft fixed a security vulnerability this week that could be used by remote attackers to bypass recent patches for a critical Outlook zero-day security flaw abused in the wild.
👍3
1.19K views
World Of Security
https://www.youtube.com/watch?v=fLrRLmKZTvE&t=58s
YouTube
Global AppSec Dublin: Preventing Subdomain Takeover /w OWASP Domain Protect - Paul Schwarzenberger
-

Managed by the OWASP® Foundation
https://owasp.org/
1👍1
1.02K views
World Of Security
https://corben.io/blog/hacking-kucoin
Corben Leo
A $1,000,000 bounty? The KuCoin User Information Leak
A vulnerability in KuCoin & why HackenProof & KuCoin're not trustworthy.
👍2
1.02K views
World Of Security
https://infosecwriteups.com/dos-via-cache-poisoning-38f3a87f997c
Medium
DOS via cache poisoning
Today I’m going to talk about cache, denial of service, and a vulnerability I recently found in a very large company.
👍2
1.24K views
World Of Security
https://bugprove.com/knowledge-hub/cve-2023-31070-broadcom-bcm-47xx-sdk-emf-slab-out-of-bounds-write/
Bugprove
CVE-2023-31070 Broadcom BCM47xx SDK EMF slab-out-of-bounds write
Exploring the Impact of CVE-2023-31070: A Deep Dive into Broadcom BCM47xx SDK, found by Attila Szasz with BugProve's engine.
👍1🔥1
1.41K views
World Of Security
Salt Labs exposes a new vulnerability in popular OAuth framework, used in hundreds of online services

https://salt.security/blog/a-new-oauth-vulnerability-that-may-impact-hundreds-of-online-services
salt.security
New OAuth Vulnerability Impacts Hundreds of Online Services
OAuth vulnerability earns CVE-2023-28131. Salt exposes a new vulnerability in the popular OAuth framework, used in hundreds of online services.
👍4
1.52K views
World Of Security
https://www.youtube.com/shorts/lu4x_EGCGNw
YouTube
Guessing app's PIN protection using Flipper Zero as BadUSB
👍2
1.34K views
World Of Security
https://www.realinfosec.net/cybersecurity-academy/understanding-and-mitigating-xxe-vulnerabilities-via-file-uploads/
👍4
1.17K views
World Of Security
https://www.youtube.com/watch?v=rM61brpBV48
👍3
1.05K views
World Of Security
https://github.com/r57-labs/chaos
GitHub
GitHub - r57-labs/chaos: Origin IP scanning utility developed with ChatGPT
Origin IP scanning utility developed with ChatGPT. Contribute to r57-labs/chaos development by creating an account on GitHub.
👍4
955 views
World Of Security
https://infosecwriteups.com/understanding-prototype-pollution-and-its-exploitation-part-1-eb70802b02a5
Medium
Understanding Prototype Pollution and its Exploitation — Part 1
Understanding what are JavaScript Prototypes (Part 1)
👍4
1.05K views
World Of Security
Reversing Flutter-based Android Malware “Fluhorse”
https://www.fortinet.com/blog/threat-research/fortinet-reverses-flutter-based-android-malware-fluhorse
Fortinet Blog
Fortinet Reverses Flutter-based Android Malware “Fluhorse”
Gain insights into the Fluhorse malware campaign as we've managed to fully reverse engineer the malicious Flutter applications. Learn more.…
👍2
1.1K views
World Of Security
A very good XSS writeup for CTF set by 'intigriti' team.

https://infosecwriteups.com/xss-intigriti-challenge-dae2dba1cb4c
Medium
XSS Intigriti challenge 0523
Let me explain how did I overcome this XSS challenge set up by the bug bounty platform Intigriti. It may be a source of inspiration for…
👍1
1.06K views