NEW BOT Телеграм, страница - 396206983

HackerOne

11K subscribers

644 photos

31 videos

79 files

2.74K links

Community : @Sec0x01
@Bug0x

Download Telegram

About

Blog

Apps

Platform

11K subscribers

https://www.rotlogix.com/blog/2018/6/10/reverse-engineering-android-unity-games-part-one

1.26K viewsMir Saman Tajbakhsh, 07:42

https://m.youtube.com/watch?v=8yFAkuZJ3tI

1.28K viewsAwdel, 21:23

https://github.com/ekultek/zeus-scanner

GitHub - Ekultek/Zeus-Scanner: Advanced reconnaissance utility

Advanced reconnaissance utility. Contribute to Ekultek/Zeus-Scanner development by creating an account on GitHub.

1.45K viewsMir Saman Tajbakhsh, 14:36

Forwarded from Rayanfam (Sina)

Blog post about anti-anti-vm techniques 😊

https://rayanfam.com/topics/defeating-malware-anti-vm-techniques-cpuid-based-instructions/

Defeating malware’s Anti-VM techniques (CPUID-Based Instructions)

We write about Windows Internals, Hypervisors, Linux, and Networks.

75 viewsAwdel, 08:53

New 'Lazy FP State Restore' Vulnerability Found in All Modern Intel CPUs
https://thehackernews.com/2018/06/intel-processor-vulnerability.html

The Hacker News

New 'Lazy FP State Restore' Vulnerability Found in All Modern Intel CPUs

New 'Lazy FP State Restore' vulnerability (CVE-2018-3665) has been discovered in Sandy Bridge and newer Intel processors

1.36K viewsAwdel, 13:42

Proposed Security Patch: Replacement of use of SHA-1 in the SRP Client Proof with SHA-256
http://tracker.firebirdsql.org/browse/CORE-5788

1.11K viewsAwdel, 11:07

https://www.exploit-db.com/exploits/44896/

1.15K viewsAmir, 18:51

Network Firewalls acts as a fortification to keep the internal corporate network secure. Many people often think as it is protecting a device from incoming traffic. Most outbound connections are insecure without egress traffic filtering. If Egress Traffic Filtering failed then attackers bypass firewall to command and control the external network Egress filter out traffic […]
The post EgressBuster – Compromise Victim via Command & Control using Firewall (https://gbhackers.com/bypass-firewall-command-control/) appeared first on GBHackers On Security (https://gbhackers.com/).

GBHackers Security | #1 Globally Trusted Cyber Security News Platform

Bypass Firewall and permits command and control to the external network

Attackers can use these techniques to bypass Firewall collect and forward sensitive information from your network or to attack or spam other networks.

1.31K viewsAwdel, 13:46

http://file.allitebooks.com/20150521/Android%20Security%20Internals.pdf

1.32K viewsMir Saman Tajbakhsh, 20:11

http://www.allitebooks.com/android-security-internals/

1.69K viewsMir Saman Tajbakhsh, 20:12

https://github.com/derv82/wifite2

GitHub - derv82/wifite2: Rewrite of the popular wireless network auditor, "wifite"

Rewrite of the popular wireless network auditor, "wifite" - derv82/wifite2

1.41K viewsMir Saman Tajbakhsh, 20:28

1.32K viewsAmir, 16:30

https://hackernoon.com/10-common-security-gotchas-in-python-and-how-to-avoid-them-e19fbe265e03

10 common security gotchas in Python and how to avoid them

Writing secure code is hard. When you learn a language, a module or a framework, you learn how it <strong><em>supposed to be used</em></strong>. When thinking about security, you need to think about <strong><em>how it can be misused</em></strong>. Python…

1.09K viewsAmir, 07:52

https://medium.com/@brannondorsey/attacking-private-networks-from-the-internet-with-dns-rebinding-ea7098a2d325

Attacking Private Networks from the Internet with DNS Rebinding

TL;DR Following the wrong link could allow remote attackers to control your WiFi router, Google Home, Roku, Sonos speakers, home…

1.21K viewsAmir, 10:43

1.15K viewsAmir, 11:55

1.15K viewsAmir, 12:14

Forwarded from Bug Bounty (Amir)

https://medium.com/@cachemoney/using-a-github-app-to-escalate-to-an-organization-owner-for-a-10-000-bounty-4ec307168631

Using a GitHub app to escalate to an organization owner for a $10,000 bounty

I’m going to walk through a simple yet high-impact privilege escalation I landed on while poking around…

72 viewsAmir, 19:56

Forwarded from Bug Bounty (Amir)

https://blog.vulnspy.com/2018/06/21/phpMyAdmin-4-8-x-Authorited-CLI-to-RCE/

phpMyAdmin 4.8.x LFI to RCE (Authorization Required)

Author: @Ambulong Security Team ChaMd5 disclose a Local File Inclusion vulnerability in phpMyAdmin latest version 4.8.1. And the exploiting of this vulnerability may lead to Remote Code Execution. In

78 viewsAmir, 19:56

1.4K viewsAmir, 16:22

https://github.com/threat9/routersploit

GitHub - threat9/routersploit: Exploitation Framework for Embedded Devices

Exploitation Framework for Embedded Devices. Contribute to threat9/routersploit development by creating an account on GitHub.

1.28K viewsMir Saman Tajbakhsh, 08:07

SleuthQL - Burp History Parsing Tool To Discover Potential SQL Injection Points
https://github.com/RhinoSecurityLabs/SleuthQL

GitHub - RhinoSecurityLabs/SleuthQL: Python3 Burp History parsing tool to discover potential SQL injection points. To be used in…

Python3 Burp History parsing tool to discover potential SQL injection points. To be used in tandem with SQLmap. - RhinoSecurityLabs/SleuthQL

1.41K viewsMir Saman Tajbakhsh, 08:08