Twitter | Search | |
Orange Tsai
This is 🍊
425
Tweets
354
Following
9,409
Followers
Tweets
Orange Tsai Feb 15
Replying to @owtdecaf
ANONYMOUS_READ=True at minimum. But if this chained with the bug , it can work on the ANONYMOUS_READ=False setting
Reply Retweet Like
Orange Tsai Feb 15
Great job! However, this is not complete and still need the job and CONFIGURE permission, I will release the full exploit chain on next week(2/19) :P
Reply Retweet Like
Orange Tsai Feb 12
Replying to @Sekurak
I will publish the detail on next week(2/19)!
Reply Retweet Like
Orange Tsai Feb 2
Replying to @hayakudesu
A Ramen a day keeps the weight scale away
Reply Retweet Like
Orange Tsai Feb 2
Replying to @4rt3mis1 @Mel_0d6y
老司機求帶
Reply Retweet Like
Orange Tsai Feb 1
Hahaha
Reply Retweet Like
Orange Tsai Feb 1
See you there 😎
Reply Retweet Like
Orange Tsai Jan 28
Replying to @ykco_z
oh, s/sploit/spoil/g XDDD
Reply Retweet Like
Orange Tsai Jan 28
Replying to @ykco_z
Cool. Please don't sploit until my Hacking Jenkins part 2 released :P
Reply Retweet Like
Orange Tsai retweeted
Aleksei Tiurin Jan 22
My article about reverse proxy related attacks based on my research presented at (SpeakerDeck: SlideShare: ) And the first bunch of results -
Reply Retweet Like
Orange Tsai Jan 16
Replying to @Random_Robbie
The output is a valid JSON, so the Henkins will not raise the error and showing the SSRFed response :(
Reply Retweet Like
Orange Tsai Jan 16
Replying to @steventseeley
The username and password can be anything :)
Reply Retweet Like
Orange Tsai Jan 16
Hacking Jenkins Part 1 - Play with Dynamic Routing! The part 2 is an interesting RCE, and will be published in February :P
Reply Retweet Like
Orange Tsai Dec 22
Very cute badge in final
Reply Retweet Like
Orange Tsai Dec 21
Replying to @Ericl33tNyamu
There is no bounty T____T. Just for fun and save the world 😬
Reply Retweet Like
Orange Tsai Dec 20
Replying to @hksecking
Just disable the manager interface in the quickest way :P
Reply Retweet Like
Orange Tsai Dec 20
Replying to @bitcoinctf
Hi, I have opened my DM!
Reply Retweet Like
Orange Tsai Dec 19
Have Just reported an interesting pre-auth(with Overall/Read) RCE to Jenkins! (But if this chained with the bug CVE-2018-1000861 I reported before, it could execute arbitrary code without any ACL restrictions) Will post a blog soon after all the responsible disclosure process :P
Reply Retweet Like
Orange Tsai Dec 11
After weeks of diving into a single 500mb idb file. Finally chained a pre-auth RCE in a popular SSL VPN! 🙌 Go on to the next bigger one!
Reply Retweet Like
Orange Tsai Nov 28
Looking forward to that!!!
Reply Retweet Like