|
soaphorn seuo
@
soaphornseuo
|
|
Bug Bounty Hunter
|
|
|
3.001
Tweetovi
|
4.521
Pratim
|
1.261
Osobe koje vas prate
|
| Tweetovi |
| soaphorn seuo proslijedio/la je tweet | ||
|
hacktronic
@hacktronic2
|
3 h |
|
|
||
| soaphorn seuo proslijedio/la je tweet | ||
|
ϻг_ϻε
@steventseeley
|
5. velj |
|
The problem as a researcher with building course content is that you want to go down every rabbit hole you identify as you're writing the content. So. Much. Attack. Surface.
|
||
|
|
||
| soaphorn seuo proslijedio/la je tweet | ||
|
Dmitry Vyukov
@dvyukov
|
5. velj |
|
syzbot joins the "#wireguard added to #linux kernel" celebration party with UAF write that corrupts linked list:
syzkaller.appspot.com/bug?id=788d546…
and a deadlock:
syzkaller.appspot.com/bug?id=846e8b9…
@zx2c4
|
||
|
|
||
| soaphorn seuo proslijedio/la je tweet | ||
|
Max
@0xw2w
|
5. velj |
|
I am now a full-time bug bounty hunter(primarily at @Hacker0x01). If you have a bug bounty program, I'll be glad if you drop me an invite,- /w2w. I'll do my best to find as many bugs as possible. I'm mostly interested in OAuth, 2FA, authority matrix and authentication in general!
|
||
|
|
||
| soaphorn seuo proslijedio/la je tweet | ||
|
Paulos Yibelo
@PaulosYibelo
|
6. velj |
|
If you have a 0-day vulnerability in product affecting millions of servers on Shodan, how do you go on about which of those IPs have #bugbounty programs? I have terrible Shodan fu skills.
@Random_Robbie @MrTuxracer
|
||
|
|
||
| soaphorn seuo proslijedio/la je tweet | ||
|
Johnathan Norman
@spoofyroot
|
6. velj |
|
We own GitHub but you know use this.. twitter.com/ericlaw/status…
|
||
|
|
||
| soaphorn seuo proslijedio/la je tweet | ||
|
Dave dwizzzle Weston
@dwizzzleMSFT
|
5. velj |
|
Just posted my talk "Keeping Windows Secure" touching on security assurance process and vuln research in Windows from @BlueHatIL 2019: github.com/dwizzzle/Prese…
|
||
|
|
||
| soaphorn seuo proslijedio/la je tweet | ||
|
Georgios Baltas
@gebaltas
|
5. velj |
|
This is what I've been working on recently. Together with the hardlink mitigation, they will mitigate >100 vulnerabilities we've received in the past year. Stay tuned. twitter.com/dwizzzleMSFT/s… pic.twitter.com/kmPqfhJvhb
|
||
|
|
||
| soaphorn seuo proslijedio/la je tweet | ||
|
Oryan De Paz @ BlueHatIL
@OryanDP
|
20. lis 2018. |
|
Recently I fell in love with something new, and now it's time to share it with the world! 🌈
Here are 5 reasons why you should start doing CTFs! :)
medium.com/@oryandp/why-y…
|
||
|
|
||
| soaphorn seuo proslijedio/la je tweet | ||
|
SandboxEscaper
@SandboxBear
|
5. velj |
|
Dark times. But don't forget, the bugs are still there. It does not fix the fact that high privilege processes don't always use least privileges on file operations. It's not the end. As long as there are bugs, there is hope. 🐻 twitter.com/buherator/stat…
|
||
|
|
||
| soaphorn seuo proslijedio/la je tweet | ||
|
buherator
@buherator
|
5. velj |
|
Hardlink/Junction mitigations, finally! twitter.com/DannyOdler/sta…
|
||
|
|
||
| soaphorn seuo proslijedio/la je tweet | ||
|
Grant Hernandez
@Digital_Cold
|
7. stu |
|
How complicated is cellular baseband firmware?
At least this complicated: over 150K debugging messages across 932 directories and 2,775 files!
Rebuilding the source code skeleton from Samsung S10's Shannon S5000 baseband debugging messages.
github.com/grant-h/shanno…
|
||
|
|
||
| soaphorn seuo proslijedio/la je tweet | ||
|
Kostya Serebryany
@kayseesee
|
4. velj |
|
I had a privilege to work with Vlad for 2.5 years. You won't regret hiring him in any capacity. twitter.com/vlad902/status…
|
||
|
|
||
| soaphorn seuo proslijedio/la je tweet | ||
|
Philippe Harewood
@phwd
|
4. velj |
|
CVE-2019-18426
From Persistent-XSS in Whatsapp to Reading from the File System on Mac/Windows with a potential for RCE
Bounty: $12,500
#bugbounty
perimeterx.com/tech-blog/2020…
|
||
|
|
||
| soaphorn seuo proslijedio/la je tweet | ||
|
William Bowling
@wcbowling
|
25. lip |
|
Here's my writeup for Secure Boot from #GoogleCTF, was a fun one 😀 devcraft.io/2019/06/25/sec…
|
||
|
|
||
| soaphorn seuo proslijedio/la je tweet | ||
|
William Bowling
@wcbowling
|
24. lip |
|
Congrats to the winners of #GoogleCTF, was a great competition! Here’s my writeup for JIT (we got first blood 😀) devcraft.io/2019/06/24/jit…
|
||
|
|
||
| soaphorn seuo proslijedio/la je tweet | ||
|
William Bowling
@wcbowling
|
4. velj |
|
So yes, the latest sudo bug (CVE-2019-18634) is fairly trivial to exploit giving any user root access. Tested on Ubuntu and a stock Mint install. Upgrade sudo or ensure pwfeedback is disabled! #CVE #poc #sudo pic.twitter.com/CWE75DGNeK
|
||
|
|
||
| soaphorn seuo proslijedio/la je tweet | ||
|
Pranav Hivarekar
@HivarekarPranav
|
4. velj |
|
Top findings from @Dropbox 's #bugbounty program. 1 million USD+ paid until.
blogs.dropbox.com/tech/2020/02/d…
|
||
|
|
||
| soaphorn seuo proslijedio/la je tweet | ||
|
fuzzit
@fuzzitdev
|
3. velj |
|
Thanks @godaysio for great conference! pic.twitter.com/j0km23nqvh
|
||
|
|
||
| soaphorn seuo proslijedio/la je tweet | ||
|
James Kettle
@albinowax
|
3. velj |
|
I miss chrome://cache bugs.chromium.org/p/chromium/iss…. At least Firefox's about:cache still exists.
|
||
|
|
||