HackerOne – Telegram
HackerOne
@HackerOne
11K subscribers
644 photos
31 videos
79 files
2.74K links
Community : @Sec0x01
@Bug0x
Download Telegram
About
Blog
Apps
Platform
Join
HackerOne
11K subscribers
HackerOne
#CVE-2024-3400 #RCE #Palo_Alto_OS

https://github.com/W01fh4cker/CVE-2024-3400-RCE

https://github.com/h4x0r-dz/CVE-2024-3400
GitHub
GitHub - W01fh4cker/CVE-2024-3400-RCE-Scan: CVE-2024-3400-RCE
CVE-2024-3400-RCE. Contribute to W01fh4cker/CVE-2024-3400-RCE-Scan development by creating an account on GitHub.
👍52🙏2
3.36K viewsAmir Kiani
HackerOne
CVE-2024-2448:
Authenticated Command Injection In Progress Kemp LoadMaster
https://rhinosecuritylabs.com/research/cve-2024-2448-kemp-loadmaster
Rhino Security Labs
CVE-2024-2448: Authenticated Command Injection In Progress Kemp LoadMaster
This blog covers 2 vulnerabilities discovered by Rhino Security Labs in Kemp LoadMaster load balancers: CVE-2024-2448 and CVE-2024-2449.
👍75🙏2
3.6K viewsAmir Kiani
HackerOne
https://badoption.eu/blog/2023/06/21/dumpit.html
BadOption.eu
Obfuscated LSASS dump command
Obfuscated LSASS dumper command A quick walkthrough for a obfuscated PowerShell LSASS dump command via comsvcs.dll. tl;dr Malicious command detection for PowerShell is not easy. Pretty hard to tell, what the following command is going to do, huh? &$env:?…
1🙏1👌1
3.41K viewsAmir Kiani
HackerOne
Exploit Development

https://0xninjacyclone.github.io/posts/exploitdev_1_intro/

https://0xninjacyclone.github.io/posts/exploitdev_2_stack/

https://0xninjacyclone.github.io/posts/exploitdev_3_heap/

https://0xninjacyclone.github.io/posts/exploitdev_4_binfiles/

https://0xninjacyclone.github.io/posts/exploitdev_5_winpe/

https://0xninjacyclone.github.io/posts/exploitdev_6_elf/

https://0xninjacyclone.github.io/posts/exploitdev_7_strfmt/

https://0xninjacyclone.github.io/posts/exploitdev_8_bor/
👍54🔥4
3.59K viewsAmir Kiani
HackerOne
https://sha256algorithm.com/
Sha256Algorithm
Sha256 Algorithm Explained
Sha256 algorithm explained online step by step visually
👍101🙏1
3.42K viewsAmir Kiani
HackerOne
https://twitter.com/Katan0x/status/1785354774864400732
X (formerly Twitter)
Katan0x (@Katan0x) on X
In my recent red team project, i faced an MFA product securing RDP, ADFS, and Exchange. It seemed secure until I found vulnerabilities, including one that exposed TOTP QR codes for any user.
#Cybersecurity #RedTeam #PenetrationTesting
👍52🔥2
3.39K viewsEhsan
HackerOne
https://medium.com/@red.whisperer/5-methods-i-use-to-discover-apis-6d646baa3ffb
Medium
5 Methods I Use To Discover APIs
While working on a target, some of the most interesting parts to test is its API. APIs are dynamics, they get updated more often then…
👍32👌2
3.18K viewsAmir Kiani
HackerOne
https://medium.com/@h4x0r_dz/23000-for-authentication-bypass-file-upload-arbitrary-file-overwrite-2578b730a5f8
Medium
23000$ for Authentication Bypass & File Upload & Arbitrary File Overwrite
How I found Authentication Bypass >> File upload vulnerability >> Arbitrary File Overwrite and how I managed I found the path of the file…
👍5🙏21
3.28K viewsAmir Kiani
HackerOne
https://www.youtube.com/watch?v=suABtb8_2Zk
YouTube
How To Reverse Engineering Denuvo V4 by Voksi - HD
VIdeo of Voksi showing us how he can reverse engineering Denuvo V4 (in HD)
👍54👌3
3.67K viewsAmir Kiani
HackerOne
#fun
#helldivers2
#sony
😁8🤯2🤩1
3.65K viewsAmir Kiani
HackerOne
New Scam Method for fragment Numbers
👍54😁1👌1
3.69K viewsAmir Kiani
HackerOne
https://github.com/AiGptCode/WordPress-Auto-Admin-Account-and-Reverse-Shell-cve-2024-27956
GitHub
GitHub - AiGptCode/WordPress-Auto-Admin-Account-and-Reverse-Shell-cve-2024-27956: WordPress Auto Admin Account Creation and Reverse…
WordPress Auto Admin Account Creation and Reverse Shell cve-2024-27956 automates the process of creating a new administrator account in a WordPress site and executing a reverse shell on the target ...
👍42👌1
3.73K viewsAmir Kiani
HackerOne
https://github.com/truonghuuphuc/CVE-2024-27956
GitHub
GitHub - truonghuuphuc/CVE-2024-27956: CVE-2024-27956 WordPress Automatic < 3.92.1 - Unauthenticated SQL Injection
CVE-2024-27956 WordPress Automatic < 3.92.1 - Unauthenticated SQL Injection - truonghuuphuc/CVE-2024-27956
1👍1👌1
3.99K viewsAmir Kiani
HackerOne
https://www.telemetryapp.io
Telemetry
Telemetry provides the most advanced search and analytics capabilities for telegram data
👍21👌1
3.99K viewsMmD
HackerOne
https://www.synacktiv.com/advisories/windows-10-plugscheduler-elevation-of-privilege
Synacktiv
Windows 10 PLUGScheduler Elevation of Privilege
1👎1🙏1
4.1K viewsAmir Kiani
HackerOne
https://github.com/Sir-MmD/M-Switch
GitHub
GitHub - Sir-MmD/M-Switch: Mirror Switch Tool
Mirror Switch Tool. Contribute to Sir-MmD/M-Switch development by creating an account on GitHub.
🔥8❤‍🔥42👍2👌2
6K viewsAmir Kiani
HackerOne
👍26😁9😢5❤‍🔥4
3.44K viewsAmir Kiani
HackerOne
https://labs.watchtowr.com/no-way-php-strikes-again-cve-2024-4577/
watchTowr Labs
No Way, PHP Strikes Again! (CVE-2024-4577)
Orange Tsai tweeted a few hours ago about “One of [his] PHP vulnerabilities, which affects XAMPP by default”, and we were curious to say the least. XAMPP is a very popular way for administrators and developers to rapidly deploy Apache, PHP, and a bunch of…
👍32🔥2
3.47K viewsEhsan
HackerOne
https://therecord.media/kaspersky-apple-bug-bounty-declined
therecord.media
Apple refused to pay bug bounty to Russian cybersecurity firm Kaspersky Lab
Kaspersky Lab disclosed four zero-day vulnerabilities in iPhone software last year that were allegedly leveraged in a cyber-espionage campaign. The company said Apple declined to pay a reward.
👍7🤬61
3.22K viewsAmir Kiani
HackerOne
Disable-TamperProtection

A POC to disable TamperProtection and other Defender / MDE components

It is possible to abuse SYSTEM / TrustedInstaller privileges to tamper or delete WdFilter settings (ALTITUDE regkey) and unload the kernel minidriver to disable Tamper protection and other Defender components. This also affects Microsoft's Defender for Endpoint (MDE), blinding MDE of telemetry and activity performed on a target.

An example, to use the POC is as follows:
   1 — Unload WdFilter
   2 — Disable Tamper Protection
   3 — Disable Defender / MDE components
   4 — Reinstate / restore the WdFilter


Blog: Breaking through Defender's Gates - Disabling Tamper Protection and other Defender components

POC Demo: https://youtu.be/MI6aVDHRix8

This vulnerability, during testing was found to affect the following versions of Windows:
   • Windows Server 2022 until BuildLabEx Version: 20348.1.amd64fre.fe_release.210507-1500 (April 2024 update)
   • Windows Server 2019
   • Windows 10 until BuildLabEx Version: 19041.1.amd64fre.vb_release.191206-1406 (April 2024 update)
   • Windows 11 until BuildLabEx Version: 22621.1.amd64fre.ni_release.220506-1250 (Sep 2023 update).
GitHub
GitHub - AlteredSecurity/Disable-TamperProtection: A POC to disable TamperProtection and other Defender / MDE components
A POC to disable TamperProtection and other Defender / MDE components - AlteredSecurity/Disable-TamperProtection
4👍1👌1
4.13K viewsAmir Kiani