|
Ed
@
EdOverflow
::1
|
|
Web developer & security researcher.
|
|
|
1.018
Tweetovi
|
160
Pratim
|
10.745
Osobe koje vas prate
|
| Tweetovi |
| Ed proslijedio/la je tweet | ||
|
Eduardo Vela
@sirdarckcat
|
13 h |
|
Hey @EdOverflow - the NSA uses security.txt
captcha.nsa.gov/.well-known/se… twitter.com/mikko/status/1…
|
||
|
|
||
| Ed proslijedio/la je tweet | ||
|
INTIGRITI
@intigriti
|
17 h |
|
Today, we are launching #BugBusiness, a series of interviews with #BugBounty hunters. In our first edition, we are discussing logic flaws and @securitytxt with @EdOverflow ! 🐸
Who would you like to see interviewed next? Leave a comment! 👇
go.intigriti.com/bugbusiness-1
|
||
|
|
||
| Ed proslijedio/la je tweet | ||
|
FD
@filedescriptor
|
31. sij |
|
@ngalongc, @EdOverflow, and I are starting a new security blog.
In our first write-up, we will discuss the impact of "SameSite by default" and how it affects web app sec. Feel free to request future topics you would like us to cover.
blog.reconless.com/samesite-by-de… pic.twitter.com/5R23YmpksT
|
||
|
|
||
|
Ed
@EdOverflow
|
30. sij |
|
There are issue tickets for this now in case anyone wants to share their thoughts and ideas:
- github.com/securitytxt/se…
- github.com/securitytxt/se…
|
||
|
|
||
|
Ed
@EdOverflow
|
29. sij |
|
@ everyone pic.twitter.com/MsAtzsNdxi
|
||
|
|
||
|
Ed
@EdOverflow
|
28. sij |
|
|
||
|
Ed
@EdOverflow
|
23. sij |
|
Social engineering @intigriti.
|
||
|
|
||
|
Ed
@EdOverflow
|
23. sij |
|
Fascinating paper detailing various attack vectors introduced by Safari’s Intelligent Tracking Prevention by
@arturjanc, @kkotowicz, @empijei, and @we1x. Definitely worth a read. arxiv.org/pdf/2001.07421… pic.twitter.com/9uiClnox1f
|
||
|
|
||
|
Ed
@EdOverflow
|
22. sij |
|
Insert Mr. Robot spoilers every time they trigger your WAF.
|
||
|
|
||
| Ed proslijedio/la je tweet | ||
|
Corben Leo
@hacker_
|
15. sij |
|
The research I worked on, Exploring Continuous Integration Services as a Bug Bounty Hunter, was nominated for this! If you enjoyed it and found it useful please consider voting :) twitter.com/PortSwiggerRes…
|
||
|
|
||
|
Ed
@EdOverflow
|
21. sij |
|
Thank you for the great talk, @jerome_delmotte! I learnt a lot about the B2B telecom industry. :)
|
||
|
|
||
|
Ed
@EdOverflow
|
20. sij |
|
Big shout-out to @ant0inet for organising an awesome IT event tonight. :)
|
||
|
|
||
|
Ed
@EdOverflow
|
19. sij |
|
Security flaws have been found in the past (e.g. openbugbounty.org/search/?search… and ethz.ch/en/news-and-ev…). In my opinion, a simple security.txt file (securitytxt.org) as a point of contact could go a long way. :)
|
||
|
|
||
|
Ed
@EdOverflow
|
19. sij |
|
ETH does not sadly. @jackhcable maintains a list of universities with vulnerability disclosure policies: github.com/cablej/hack-yo….
|
||
|
|
||
|
Ed
@EdOverflow
|
12. sij |
|
This is a good book for anyone getting started in the bug bounty industry. Warning you may develop a thick Scottish accent in the process of reading this book too. :P twitter.com/ZephrFish/stat…
|
||
|
|
||
|
Ed
@EdOverflow
|
12. sij |
|
|
||
|
Ed
@EdOverflow
|
10. sij |
|
I use this approach too. :)
twitter.com/EdOverflow/sta…
|
||
|
|
||
|
Ed
@EdOverflow
|
10. sij |
|
•••••••
|
||
|
|
||
|
Ed
@EdOverflow
|
10. sij |
|
Congratulations, Tom! :D
|
||
|
|
||
|
Ed
@EdOverflow
|
9. sij |
|
I remember this very well. You gave me a nice little preview of your work. I learnt a lot from you that day. :) pic.twitter.com/BMKI8ByI3F
|
||
|
|
||