NEW BOT Телеграм, страница - 129263719

HackerOne

11K subscribers

644 photos

31 videos

79 files

2.74K links

Community : @Sec0x01
@Bug0x

Download Telegram

About

Blog

Apps

Platform

11K subscribers

https://www.youtube.com/watch?v=ss5iFcK5zxE

Portuguese Track - SVG + OG = LFI - by Rafael ChOckO

Portuguese Track - SVG + OG = LFI - by Rafael ChOckO

Red Team Village Website: https://redteamvillage.io
Discord: https://redteamvillage.io/discord
Twitter: https://redteamvillage.io/twitter

2.38K viewsAmir Kiani, 20:44

https://github.com/swagkarna/Rafel-Rat

2.42K viewsAmir Kiani, 22:36

Owner of telegram channel: Freedom Fox has been arrested by Russian authorities.

https://securityaffairs.co/wordpress/118464/cyber-crime/pavel-sitnikov-arrested.html

Security Affairs

Russian hacker Pavel Sitnikov arrested for distributing malware

The popular Russian hacker Pavel Sitnikov was arrested by Russian authorities on charges of distributing malware via his Telegram channel.

2.82K viewsDmitriy, 16:00

Attacking Active Directory
https://zer1t0.gitlab.io/posts/attacking_ad/

2.52K viewsAmir Kiani, edited 02:00

https://redcodelabs.io/

2.4K viewsAmir Kiani, edited 02:04

From Binary Patch to Proof-of-concept: a VMware ESXi vmxnet3 Case Study https://zerodayengineering.com/research/vmware-esxi-vmxnet3-from-patch-to-poc.html

2.4K viewsAdeL, 07:12

Zerodium offers 100k$ for a RCE in Pidgin

2.7K viewsAdeL, 20:15

https://reconshell.com/squalr-game-hacking-tool-written-in-c/

2.38K viewsAmir Kiani, 02:21

https://m0chan.github.io/2019/07/31/How-To-Attack-Kerberos-101.html

m0chan Blog - Info Sec, CTF & Hacking

How To Attack Kerberos 101

I want to start with article by saying I set out to learn Kerberos in greater detail and I figured that writing this would help cement my existing knowledge and give me reason to learn along the way, I am no Kerberos expert I am simply learning as I go along…

2.25K viewsAmir Kiani, 21:24

https://www.hackerone.com/blog/hack-hard-have-fun-increase-security

HACK HARD. HAVE FUN. INCREASE SECURITY

Amazon's Live Hacking Event with HackerOneAt Amazon, ensuring security is essential for earning customers’ trust. As part of Amazon’s ongoing public Vulnerability Research Program (VRP), Amazon expanded its support of security and education programs to tap…

2.1K viewsAmir Kiani, 05:06

https://youtu.be/-WkprZv2QCQ

Honeypots | SANS ICS Concepts

Most people think that Honeypots are used to understand how attackers attack systems and networks. This is only one aspect of honeypots. Honeypots are actually an excellent method for intrusion detection and, when properly implemented, significantly reduce…

2.09K viewsAdeL, 07:03

Exploiting custom protocol handlers for cross-browser tracking in Tor, Safari, Chrome and Firefox
https://fingerprintjs.com/blog/external-protocol-flooding/

Cross-browser tracking vulnerability in Tor, Safari, Chrome, and Firefox

Unveiling a scheme flooding vulnerability across major browsers. Learn how it threatens anonymous browsing.

2.29K viewsAdeL, 12:36

https://github.com/jfmaes/SharpZipRunner

GitHub - jfmaes/SharpZipRunner: Executes position independent shellcode from an encrypted zip

Executes position independent shellcode from an encrypted zip - GitHub - jfmaes/SharpZipRunner: Executes position independent shellcode from an encrypted zip

2.29K viewsAmir Kiani, 06:53

2.4K viewsAmir Kiani, 04:17

Rules from Fireeye's capa-rules converted to YARA

https://github.com/ruppde/yara_rules/tree/main/capa2yara

yara_rules/capa2yara at main · ruppde/yara_rules

Yara rules. Contribute to ruppde/yara_rules development by creating an account on GitHub.

2.4K viewsAdeL, 11:07

https://hackerone.com/reports/727330

Slack disclosed on HackerOne: Header modification results in...

I found *files.slack.com* domain will honor the **X-Forwarded-Host** header, instead of host header. Although file.slack.com has host validation to return 500 Internal server error when host is not...

2.3K viewsAmir Kiani, 09:51

Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller itself, and execute remote procedure calls on their behalf

https://github.com/BC-SECURITY/Invoke-ZeroLogon

GitHub - BC-SECURITY/Invoke-ZeroLogon: Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller…

Invoke-ZeroLogon allows attackers to impersonate any computer, including the domain controller itself, and execute remote procedure calls on their behalf. - BC-SECURITY/Invoke-ZeroLogon

2.6K viewsAdeL, 11:35

https://medium.com/r3d-buck3t/bypass-ip-restrictions-with-burp-suite-fb4c72ec8e9c

Bypass IP Restrictions with Burp Suite

Automatically add headers to all Burp requests to bypass basic WAF rules

3.09K viewsAmir Kiani, 22:29

https://alpaca-attack.com/

2.93K viewsAmir Kiani, 08:08

http://www.diva-portal.org/smash/record.jsf?pid=diva2%3A757354&dswid=-4085

Evaluation of Current Practical Attacks Against RFID Technology

DiVA portal is a finding tool for research publications and student theses written at the following 50 universities and research institutions.

2.56K viewsAmir Kiani, 10:43

2.79K viewsMmD, 18:56