Twitter | Search | |
Hacker Fantastic
Ghidra opens up JDWP in debug mode listening on port 18001, you can use it to execute code remotely 🤦‍♂️.. to fix change line 150 of support/launch.sh from * to 127.0.0.1
Reply Retweet Like More
March 🧐 5 Mar 19
Replying to @hackerfantastic
Are you serious
Reply Retweet Like
Hacker Fantastic 5 Mar 19
Replying to @_ta0
Yes, I also claim first blood and RCE.
Reply Retweet Like
Gal Shpantzer 5 Mar 19
Replying to @hackerfantastic
The one nsa just released ghidra?
Reply Retweet Like
Hacker Fantastic 5 Mar 19
Replying to @Shpantzer
Yup, run in debug mode for remote code execution on your box.
Reply Retweet Like
Gary Smith 5 Mar 19
Replying to @hackerfantastic
I hear the EcuadorIan embassy puts on a great cooked breakfast... 😂😉
Reply Retweet Like
Hacker Fantastic 5 Mar 19
Replying to @fl1bbl3
I do look fabulous in Orange tho. 🍊
Reply Retweet Like
pry 6 Mar 19
Replying to @hackerfantastic
To all the morons saying “but it’s in debug mode”, listen. Even Android with ADB port 5000 in debug mode uses priv/pub key auth (by default). What devices do you know that start up a debug port TO THE WORLD? 127.0.0.1, ok. But 0.0.0.0? No.
Reply Retweet Like
Melvin Kitnick 6 Mar 19
How many do not have their computers behind nat/firewall tho
Reply Retweet Like
Mikhail Khusid 5 Mar 19
Going to have to agree with on this one. Pretty sure the NSA wasn't using this in environments where RCE was part of the threat model.
Reply Retweet Like
Hacker Fantastic 5 Mar 19
Once they released it to the public they should ensure that such functionality comes with a clear warning or ideally is restricted to the localhost.
Reply Retweet Like