NEW BOT Телеграм, страница - 938079826

HackerOne

11K subscribers

644 photos

31 videos

79 files

2.74K links

Community : @Sec0x01
@Bug0x

Download Telegram

About

Blog

Apps

Platform

11K subscribers

https://www.youtube.com/watch?v=xU9m4RlyqNc

Clone Credit Card With A Cassette Tape

Ever wonder how a credit card works? Well it is just a magnetic strip like a cassette tape. There have been pocket sized credit sized card cloners forever but I just wanted to point out how basic the technology is. I don’t really care if they upgrade the…

2.4K viewsAmir, 20:19

https://medium.com/tenable-techblog/stealing-downloads-from-slack-users-be6829a55f63

Stealing Downloads from Slack Users

I’m going to go over an interesting feature abuse that could have been used to steal and even manipulate downloads from Slack users using the Slack desktop app on Windows. The vulnerability was…

2.78K viewsAmir, 08:50

6.52K viewsAmir, 09:02

https://www.ambionics.io/blog/drupal8-rce

Exploiting Drupal8's REST RCE

Exploitation and mitigation bypasses for the new Drupal 8 RCE (SA-CORE-2019-003, CVE-2019-6340), targeting the REST module.

2.15K viewsAmir, 22:46

https://www.hackerone.com/zerodaily/2019-05-29

2019-05-29 | OSINT 101, SnapLion, XSS Hunter gone postal | HackerOne

Wednesday, May 29 TOP STORY One simple IDOR. Krebs First American Financial Corp. breach bomb last Friday smartly dropped before a long holiday weekend as all other journalists were probably on vacay for the weekend or at least not in the state of mind to…

1.92K viewsAmir, 16:55

2.01K viewsAmir, 16:57

Proof of concept for CVE-2019-0708
https://github.com/Ekultek/BlueKeep

GitHub - Ekultek/BlueKeep: Proof of concept for CVE-2019-0708

Proof of concept for CVE-2019-0708. Contribute to Ekultek/BlueKeep development by creating an account on GitHub.

2.3K viewsAmir, 14:53

DPI technique in action:

https://github.com/SadeghHayeri/GreenTunnel

GitHub - SadeghHayeri/GreenTunnel: GreenTunnel is an anti-censorship utility designed to bypass the DPI system that is put in place…

GreenTunnel is an anti-censorship utility designed to bypass the DPI system that is put in place by various ISPs to block access to certain websites. - SadeghHayeri/GreenTunnel

2.9K viewsMir Saman Tajbakhsh, 07:22

Watch Live Video from Android's Spy Camera.

https://github.com/mirsamantajbakhsh/LiveHiddenCamera/

GitHub - mirsamantajbakhsh/LiveHiddenCamera: Live Hidden Camera is a library which record live video and audio from Android device…

Live Hidden Camera is a library which record live video and audio from Android device without displaying a preview. - mirsamantajbakhsh/LiveHiddenCamera

2.49K viewsMir Saman Tajbakhsh, 14:30

Forwarded from Mir Saman Tajbakhsh

https://darksearch.io/

https://twitter.com/binitamshah/status/1137751379655692288?s=09

201 viewsMir Saman Tajbakhsh, 03:50

https://telegra.ph/Cisco-RV130W-10344-Remote-Stack-Overflow---udalyonnoe-perepolnenie-steka-i-vypolnenie-komand-na-routere-06-10

Cisco RV130W 1.0.3.44 Remote Stack Overflow - удалённое переполнение стека и выполнение команд на роутере

t.me/webware Доброго времени суток, форумчане. Сегодня мы разберём свежий эксплойт для переполнения буфера Cisco rv130w версии 1.0.3.44. Кто не знает что такое переполнение буфера: переполнение буфера - явление, возникающее, когда компьютерная программа записывает…

2.09K viewsپدرخوانده, 10:23

Mobile phishing toolkit remotely controlled by an app
https://github.com/UndeadSec/SocialFishMobile

GitHub - UndeadSec/SocialFishMobile: :iphone: An app to remote control SocialFish.

:iphone: :fish: An app to remote control SocialFish. - GitHub - UndeadSec/SocialFishMobile: :iphone: An app to remote control SocialFish.

2.36K viewsپدرخوانده, 10:41

https://medium.com/intigriti/how-spending-our-saturday-hacking-earned-us-20k-60990c4678d4

How spending our Saturday hacking earned us €20.000

Intigriti organised a hacking event in which we found an oracle bug worth more than €20.000 in bounties.

2.25K viewsAmir, 22:24

Running iOS in QEMU to an interactive bash shell (1): tutorial

https://alephsecurity.com/2019/06/17/xnu-qemu-arm64-1/

Running iOS in QEMU to an interactive bash shell (1): tutorial

2.09K viewsپدرخوانده, 14:41

https://threatpost.ru/mozilla-patches-firefox-zero-day-attacked-itw/33147/

1.97K viewsپدرخوانده, 07:18

https://www.zdnet.com/google-amp/article/russian-apt-hacked-iranian-apts-infrastructure-back-in-2017/

Russian APT hacked Iranian APT's infrastructure back in 2017

Turla APT hacked Iran's APT34 group and used its C&C servers to re-infect APT34 victims with its own malware.

1.9K viewsپدرخوانده, 07:47

https://github.com/sophoslabs/CVE-2019-0888/blob/master/cve-2019-0888-poc.html

CVE-2019-0888/cve-2019-0888-poc.html at master · sophoslabs/CVE-2019-0888

PoC for CVE-2019-0888 - Use-After-Free in Windows ActiveX Data Objects (ADO) - CVE-2019-0888/cve-2019-0888-poc.html at master · sophoslabs/CVE-2019-0888

2.01K viewsپدرخوانده, 17:22

https://medium.com/@satboy.fb/art-of-unrestricted-file-upload-exploitation-92ed28796d0

The Art of Unrestricted File Upload Exploitation

Hey Whatsup! This is Satyendra an Infosec noob, I hope you are doing well. I’m presenting here my little research on Unrestricted file…

2.28K viewsAmir, 21:55

https://www.nccgroup.trust/uk/our-research/technical-advisory-bypassing-workflows-protection-mechanisms-remote-code-execution-on-sharepoint/

2.06K viewsAmir, 16:35

2.19K viewsAmir, 13:12

Forwarded from CTF Community | Hints

Broadcom is one of the major vendors of wireless devices worldwide. Since these chips are so widespread they constitute a high value target to attackers and any vulnerability found in them should be considered to pose high risk. In this blog post I provide an account of my internship at Quarkslab which included obtaining, reversing and fuzzing the firmware, and finding a few new vulnerabilities.

https://blog.quarkslab.com/reverse-engineering-broadcom-wireless-chipsets.html

#PWN

Reverse-engineering Broadcom wireless chipsets - Quarkslab's blog

Broadcom is one of the major vendors of wireless devices worldwide. Since these chips are so widespread they constitute a high value target to attackers and any vulnerability found in them should be considered to pose high risk. In this blog post I provide…

136 viewsپدرخوانده, 07:39