HackerOne – Telegram
HackerOne
@HackerOne
11K subscribers
644 photos
31 videos
79 files
2.74K links
Community : @Sec0x01
@Bug0x
Download Telegram
About
Blog
Apps
Platform
Join
HackerOne
11K subscribers
HackerOne
https://github.com/RedSection/Red-Team-Challenge-Questions
GitHub
GitHub - RedSection/Red-Team-Challenge-Questions: We publish our challenge questions for everyone.
We publish our challenge questions for everyone. Contribute to RedSection/Red-Team-Challenge-Questions development by creating an account on GitHub.
2.56K viewsAmir Kiani
HackerOne
https://github.com/cobbr/SharpSploit
GitHub
GitHub - cobbr/SharpSploit: SharpSploit is a .NET post-exploitation library written in C#
SharpSploit is a .NET post-exploitation library written in C# - cobbr/SharpSploit
2.37K viewsAmir Kiani
HackerOne
https://github.com/projectdiscovery/nuclei-templates
GitHub
GitHub - projectdiscovery/nuclei-templates: Community curated list of templates for the nuclei engine to find security vulnerabilities.
Community curated list of templates for the nuclei engine to find security vulnerabilities. - projectdiscovery/nuclei-templates
2.55K viewsAmir Kiani
HackerOne
https://www.revshells.com/
Revshells
Online - Reverse Shell Generator
Online Reverse Shell generator with Local Storage functionality, URI & Base64 Encoding, MSFVenom Generator, and Raw Mode. Great for CTFs.
3.19K viewsAmir Kiani
HackerOne
https://github.com/mirsamantajbakhsh/OnionTunnel
GitHub
GitHub - mirsamantajbakhsh/OnionTunnel: Onion Tunnel: Proxy Every Hidden Service on localhost
Onion Tunnel: Proxy Every Hidden Service on localhost - mirsamantajbakhsh/OnionTunnel
2.87K viewsMir Saman Tajbakhsh
HackerOne
Reproducing n-day vulnerabilities and writing N-day based fuzzer with Qiling | https://devilinside.me/blogs/reproducing-ndays-qiling
devilinside.me
UNLEASH THE BEAST | THE FUTURE
Expect memes, food for thoughts, tech guidelines and trash talk daily.
2.97K viewsAdeL
HackerOne
3.19K views
HackerOne
3.41K viewsAmir Kiani
HackerOne
[webapps] phpPgAdmin 7.13.0 - COPY FROM PROGRAM Command Execution (Authenticated)
https://www.exploit-db.com/exploits/49736
Exploit Database
phpPgAdmin 7.13.0 - COPY FROM PROGRAM Command Execution (Authenticated)
phpPgAdmin 7.13.0 - COPY FROM PROGRAM Command Execution (Authenticated).. webapps exploit for Multiple platform
2.7K viewsAdeL
HackerOne
https://anee.me/janet-v1-1-repl-sandbox-bypass-f8bbe141a4f1
Medium
Janet v1.1 REPL Sandbox Bypass
Janet is a functional and imperative programming language. The entire language (core library, interpreter, compiler, assembler, PEG) is…
3.09K viewsAmir Kiani
HackerOne
Android-PIN-Bruteforce
https://github.com/urbanadventurer/Android-PIN-Bruteforce
GitHub
GitHub - urbanadventurer/Android-PIN-Bruteforce: Unlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your…
Unlock an Android phone (or device) by bruteforcing the lockscreen PIN. Turn your Kali Nethunter phone into a bruteforce PIN cracker for Android devices! (no root, no adb) - urbanadventurer/Android...
3.01K viewsAmir Kiani
HackerOne
Exploiting Windows RPC to bypass CFG mitigation: analysis of CVE-2021-26411 in-the-wild sample

The general method of browser render process exploit is: after exploiting the vulnerability to obtain user mode arbitrary memory read/write primitive, the vtable of DOM/js object is tampered to hijack the code execution flow. Then VirtualProtect is called by ROP chain to modify the shellcode memory to PAGE_EXECUTE_READWRITE, and the code execution flow is jumped to shellcode by ROP chain finally. After Windows 8.1, Microsoft introduced CFG (Control Flow Guard)[1] mitigation to verify the indirect function call, which mitigates the exploitation of tampering with vtable to get code execution.

However, the confrontation is not end. Some new methods to bypass CFG mitigation have emerged. For example, in chakra/jnoscript9, the code execution flow is hijacked by tampering with the function return address on the stack; in v8, WebAssembly with executable memory property is used to execute shellcode. In December 2020, Microsoft introduced CET(Control-flow Enforcement Technology)[2] mitigation technology based on Intel Tiger Lake CPU in Windows 10 20H1, which protects the exploitation of tampering with the function return address on the stack. Therefore, how to bypass CFG in a CET mitigation environment has become a new problem for vulnerability exploitation.

https://iamelli0t.github.io/2021/04/10/RPC-Bypass-CFG.html
iamelli0t’s blog
Exploiting Windows RPC to bypass CFG mitigation: analysis of CVE-2021-26411 in-the-wild sample
The general method of browser render process exploit is: after exploiting the vulnerability to obtain user mode arbitrary memory read/write primitive, the vtable of DOM/js object is tampered to hijack the code execution flow. Then VirtualProtect is called…
2.62K viewsAdeL
HackerOne
Iran Calls Natanz Atomic Site Blackout 'Nuclear Terrorism'

https://ift.tt/3mF8sEE
SecurityWeek
Iran Calls Natanz Atomic Site Blackout ‘Nuclear Terrorism’
Iran on Sunday described a blackout at its underground Natanz atomic facility an act of “nuclear terrorism,” raising regional tensions as world powers and Tehran continue to negotiate over its tattered nuclear deal.
2.53K viewsAdeL
HackerOne
Exclusive: #RUMINT Rumor Intelligence from Iran 🇮🇷 via Israel 🇮🇱.

Nuclear facility at Natanz, Iran has suffered major damage by an attack.

Rumor 1: Israel launched a cyber attack at the facility.

Rumor 2: Israel used local assets and used explosives (likely a sabotage) and / or cyber tactics during the attack.

Rumor 3: It was an accident.

However, the facility sustained power damage and no nuclear leak occurred, as per reliable source.
2.81K viewsAdeL
HackerOne
2.54K viewsН Е К И Б Е Р Л Е О
HackerOne
https://swarm.ptsecurity.com/rce-cockpit-cms/
PT SWARM
From 0 to RCE: Cockpit CMS
Our team searched for bugs in the source code of Cockpit, an open-source content management system. Here is the denoscription of Cockpit from its official site: Cockpit is a headless CMS with an API-first approach that puts content first. It is designed to…
2.6K viewsAmir Kiani
HackerOne
https://github.com/r4j0x00/exploits/tree/master/chrome-0day
2.71K viewsAmir Kiani
HackerOne
Remote exploitation of a man-in-the-disk vulnerability in WhatsApp (CVE-2021-24027)
Research: https://census-labs.com/news/2021/04/14/whatsapp-mitd-remote-exploitation-CVE-2021-24027/
PoC: https://github.com/CENSUS/whatsapp-mitd-mitm
Census-Labs
CENSUS | Cybersecurity Engineering
In this article we will have a look at how a simple phishing attack through an Android messaging application could result in the direct leakage of data found in unprotected device storage (/sdcard). Then we will show how the two aforementioned WhatsApp vulnerabilities…
3.11K viewsAmir Kiani
HackerOne
Forwarded from Security Analysis
1-click RCE in Telegram, Nextcloud, VLC, Libre-/OpenOffice, Bitcoin/Dogecoin Wallets, Wireshark and Mumble

https://ift.tt/3gcdx6d
positive.security
Allow arbitrary URLs, expect arbitrary code execution | Positive Security
Insecure URL handling leading to 1-click code execution vulnerabilities in Telegram, Nextcloud (CVE-2021-22879), VLC, LibreOffice (CVE-2021-25631), OpenOffice (CVE-2021-30245), Bitcoin/Dogecoin Wallets, Wireshark (CVE-2021-22191) and Mumble (CVE-2021-27229).
3.06K viewsAdeL
HackerOne
https://www.shielder.it/blog/2021/02/hunting-for-bugs-in-telegrams-animated-stickers-remote-attack-surface/
2.87K viewsAmir Kiani, edited  
HackerOne
Telegram bug bounties: XSS, privacy issues, official bot exploitation and more…

https://davtur19.medium.com/telegram-bug-bounties-xss-privacy-issues-official-bot-exploitation-and-more-5277fa78435
2.97K viewsAdeL