| Tweetovi |
| Justry proslijedio/la je tweet | ||
|
Nicolas Krassas
@Dinosn
|
5. velj |
|
Introduction to mobile network intrusions from a mobile phone
medium.com/mobile-stacks-…
|
||
|
|
||
| Justry proslijedio/la je tweet | ||
|
XXL-MAN 📺
@TheXXLMAN
|
2. velj |
|
Recopilación de Payloads #hacking
Command Injection:
github.com/payloadbox/com…
XSS Payloads:
github.com/payloadbox/xss…
XXE Payload List:
github.com/payloadbox/xxe…
SQLI Payload List:
github.com/payloadbox/sql…
RFI/LFI:
github.com/payloadbox/rfi…
Open Redirect:
github.com/payloadbox/ope…
|
||
|
|
||
| Justry proslijedio/la je tweet | ||
|
Mark Simos
@MarkSimos
|
2. velj |
|
Need a #ZeroTrust Reference Architecture? Check out this one showing how @Microsoft technology enables this strategy/access model.
Slide 14 of CISO Workshop Module 3
@ajohnsocyber @MalwareJake @_sarahyo @RavivTamir @JohnLaTwC #Cybersecurity
docs.microsoft.com/en-us/microsof… pic.twitter.com/t2eChLzW8r
|
||
|
|
||
| Justry proslijedio/la je tweet | ||
|
SANS ISC
@sans_isc
|
3. velj |
|
Analysis of a triple-encrypted AZORult downloader i5c.us/3b2v4Jc pic.twitter.com/WawmyF13e1
|
||
|
|
||
| Justry proslijedio/la je tweet | ||
|
XSS Payloads
@XssPayloads
|
3. velj |
|
Creating payloads without "'`()[]\%; by @terjanq... that's useful...
twitter.com/terjanq/status…
|
||
|
|
||
| Justry proslijedio/la je tweet | ||
|
Xentropy
@SamuelAnttila
|
1. velj |
|
I was tired of outdated XSS cheat sheets that don't touch on frameworks, html5, filter bypasses and other important stuff, so I made my own. I hope you find it as useful as I do. :)
netsec.expert/2020/02/01/xss…
#bugbountytips pic.twitter.com/Mdygq1PI9Z
|
||
|
|
||
| Justry proslijedio/la je tweet | ||
|
Yarden Shafir
@yarden_shafir
|
2. velj |
|
Can your EDR detect symbolic link callback rootkits? Because ours sure as heck can't.
@aionescu and I wrote about these!
windows-internals.com/dkom-now-with-…
|
||
|
|
||
| Justry proslijedio/la je tweet | ||
|
Ameen
@ameenmaali
|
31. sij |
|
Just released a quick tool, wordlistgen, I put together for taking a list of URLs/paths from stdin and parsing components (subdomains, paths, query strings & values) to easily/quickly make contextual content discovery wordlists for #bugbounty github.com/ameenmaali/wor…
|
||
|
|
||
| Justry proslijedio/la je tweet | ||
|
Daniel Ruf
@DanielRufde
|
2. velj |
|
website-checks 1.18.0 released
* more stable
* improved error handling
* Docker support (thanks Isaak)
* better testing (GHA)
* retry failed requests
* new ssldecoder instance
Get it at github.com/DanielRuf/webs…
#quality #security #a11y #website #TLS #report #performance #Node
|
||
|
|
||
| Justry proslijedio/la je tweet | ||
|
Nicolas Krassas
@Dinosn
|
2. velj |
|
GDA Android Reversing Tool - A New Decompiler Written Entirely In C++, So It Does Not Rely On The Java Platform, Which Is Succinct, Portable And Fast, And Supports APK, DEX, ODEX, Oat kitploit.com/2020/02/gda-an…
|
||
|
|
||
| Justry proslijedio/la je tweet | ||
|
Nicolas Krassas
@Dinosn
|
31. sij |
|
Analyzing the Linux Kernel in Userland with AFL and KLEE
blog.grimm-co.com/post/analyzing…
|
||
|
|
||
| Justry proslijedio/la je tweet | ||
|
Binni Shah
@binitamshah
|
1. velj |
|
Hardware Debugging for Reverse Engineers (Part 1) : SWD, OpenOCD and Xbox One Controllers : wrongbaud.github.io/stm-xbox-jtag/ cc @wrongbaud pic.twitter.com/mrMwe3U2xW
|
||
|
|
||
| Justry proslijedio/la je tweet | ||
|
Binni Shah
@binitamshah
|
31. sij |
|
PHP 0day : PHP 7.0-7.4 disable_functions bypass : github.com/mm0r1/exploits…
Some more Exploits : github.com/mm0r1/exploits
|
||
|
|
||
| Justry proslijedio/la je tweet | ||
|
Joshua Saxe
@joshua_saxe
|
29. sij |
|
1\ I've written a little compiler to ship ML models as standalone Yara rules, and done proof of concept detectors for Macho-O, RTF files, and powershell scripts. So far I have decision trees, random forests, and logistic regression (LR) working. github.com/inv-ds-researc… pic.twitter.com/sfuXEkHeNO
|
||
|
|
||
| Justry proslijedio/la je tweet | ||
|
Binni Shah
@binitamshah
|
30. sij |
|
TCP/IP Connection Primer : levelup.gitconnected.com/linux-kernel-t… pic.twitter.com/6vbxuS66C2
|
||
|
|
||
| Justry proslijedio/la je tweet | ||
|
MicrosVuln
@microsvuln
|
11. pro |
|
Finding Vulnerabilities in Closed Source Windows Software by Applying Fuzzing
apriorit.com/dev-blog/640-q…
#winafl #fuzzing #vulnerability
|
||
|
|
||
| Justry proslijedio/la je tweet | ||
|
didu
@0xdidu
|
19. pro |
|
Here is the material for my "Reverse Engineering Intel x86/x64 binaries 101" class (using IDA): github.com/0xdidu/Reverse…
Hoping to spread the RE fever :)
|
||
|
|
||
| Justry proslijedio/la je tweet | ||
|
MicrosVuln
@microsvuln
|
10. sij |
|
Nightmare is an intro to binary exploitation / reverse engineering course based around ctf challenges (binaries + writeups by hacking topics) github.com/guyinatuxedo/n…
#reverse #exploitation
|
||
|
|
||
| Justry proslijedio/la je tweet | ||
|
MicrosVuln
@microsvuln
|
15. stu |
|
Awesome-AFL : A curated list of different AFL forks and AFL inspired #fuzzers with detailed equivalent academic papers with AFL-fuzzing tutorials
github.com/Microsvuln/Awe…
#awesome #AFL #fuzzers
#Fuzzer #Awesome_AFL #AFL_forks #AFL_fuzzing_Tutorials
|
||
|
|
||
| Justry proslijedio/la je tweet | ||
|
HD Moore
@hdmoore
|
27. sij |
|
Flamingo is a new open source tool from @Atredis for capturing credentials sprayed by IT and security products: atredis.com/blog/2020/1/26…
(h/t to @4lex for HTTP NTLM support!) pic.twitter.com/V2jKi3Enpg
|
||
|
|
||