Session Hijacking Cheat Sheet, Attack Examples & Protection
https://www.checkmarx.com/knowledge/knowledgebase/session-hijacking
🕴 @Phantasm_Lab
As the name suggests, Session Hijacking involves the exploitation of the web session control mechanism. The attacker basically exploits vulnerable connections and steals HTTP cookies to gain unauthorized access to sensitive information/data stored in web servers.https://www.checkmarx.com/knowledge/knowledgebase/session-hijacking
🕴 @Phantasm_Lab
Checkmarx
Session Hijacking | Checkmarx Application Security
Session Hijacking is the exploitation of the web session control mechanism, where the hacker exploits vulnerable connections and steals HTTP cookies to gain unauthorized access to sensitive information/data stored in web servers. This kind of attack, also…
Forwarded from @Phantasm_Lab ([L]uŧh1er)
#Pirate #Bay #AFK
https://youtu.be/yDt_uAqkxRY
🕴 @Phantasm_Lab
🕴 @PartidoPirataBrasil
Legenda traduzida em colaboração com voluntários do Partido Pirata Brasil.https://youtu.be/yDt_uAqkxRY
🕴 @Phantasm_Lab
🕴 @PartidoPirataBrasil
YouTube
The Pirate Bay AFK - Completo HD - Legendado PT-BR (2013)
Seja um pirata, junte-se a nós! Ahoooy!!!
Legenda traduzida em colaboração com voluntários do Partido Pirata do Brasil:
http://partidopirata.org/
https://www.facebook.com/PartidoPirata.BR
https://www.facebook.com/groups/partidopiratabrasil/
Para ativar…
Legenda traduzida em colaboração com voluntários do Partido Pirata do Brasil:
http://partidopirata.org/
https://www.facebook.com/PartidoPirata.BR
https://www.facebook.com/groups/partidopiratabrasil/
Para ativar…
#Perfil #HackerOne #Series
Alyssa Herrera
https://hackerone.com/alyssa_herrera
🕴🏽 @Phantasm_Lab
Alyssa Herrera
Reputation: 1441 Impact: 14.20https://hackerone.com/alyssa_herrera
🕴🏽 @Phantasm_Lab
HackerOne
HackerOne profile - alyssa_herrera
@Alyssa_Herrera_ - https://alyssaherrera.net
Forwarded from @Phantasm_Lab ([L]uŧh1er)
H2HC 10 - Palestra: Sandboxing is the shit - Jonathan Brossard
https://www.youtube.com/watch?v=1vgKym3fASg
🕴🏽 @Phantasm_Lab
https://www.youtube.com/watch?v=1vgKym3fASg
🕴🏽 @Phantasm_Lab
YouTube
Sandboxing is the shit - Jonathan Brossard - H2HC 2013
#Perfil #HackerOne #Series
Link
https://hackerone.com/linkks
🕴🏽 @Phantasm_Lab
Link
Reputation: 3463 Impact: 14.90
Bugs found: 307 Thanks received: 46https://hackerone.com/linkks
🕴🏽 @Phantasm_Lab
ACME TLS-SNI-01/02 challenge vulnerable when combined with shared hosting providers
https://hackerone.com/reports/304378
🕴🏽 @Phantasm_Lab
Frans Rosén (fransrosen)The ACME TLS-SNI-01 (and TLS-SNI-02) specification assumed wrong in terms of how current major cloud providers routed and validated domains. This was reported earlier this week to Let's Encrypt, and they decided to disable the method. Today Let's Encrypt decided to sunset both TLS-SNI-01 and TLS-SNI-02 due to the vulnerability I found. https://hackerone.com/reports/304378
🕴🏽 @Phantasm_Lab
HackerOne
Internet Bug Bounty disclosed on HackerOne: ACME TLS-SNI-01/02...
The [ACME TLS-SNI-01](https://tools.ietf.org/html/draft-ietf-acme-acme-01#section-7.3) (and [TLS-SNI-02](https://tools.ietf.org/html/draft-ietf-acme-acme-09#section-8.4)) specification assumed...
Forwarded from @Phantasm_Lab
The Hacker Wars takes you to the front lines of the high-stakes battle over the fate of the Internet, freedom and privacy.
🕴🏼 @Phantasm_Lab
🕴🏼 @Phantasm_Lab
Forwarded from @Phantasm_Lab
The Hacker Wars leva você até a linha de frente da batalha de alto risco sobre o destino da Internet, liberdade e privacidade.
🕴🏼 @Phantasm_Lab
🕴🏼 @Phantasm_Lab