Mad @bashfile
BadBoy Joined November 2019-
Tweets363
-
Followers40
-
Following822
-
Likes220
I developed a Remote Code Execution PoC exploit for the Exim Use-After-Free that was recently disclosed (as part of @qualys 21Nails advisory). Tested just on Exim 4.92. PoC available: github.com/lockedbyte/CVE…
A few months ago Cellebrite announced that they would begin parsing data from Signal in their extraction tools. It seems they're not doing that very carefully. Exploiting vulnerabilities in Cellebrite's software, from an app's perspective: signal.org/blog/cellebrit…
My fuzzer for the iOS kernel networking stack is now open source! You can read the implementation details here: googleprojectzero.blogspot.com/2021/04/design…
After several weeks of work, it's finally there!🔥 Introducing PPLdump, a tool for dumping PPL processes with a Userland exploit!😈 👉Post 1: itm4n.github.io/lsass-runasppl/ 👉Post 2: blog.scrt.ch/2021/04/22/byp… 👉Tool: github.com/itm4n/PPLdump Credit goes to @tiraniddo for the technique.
Microsoft Office Remote Code Execution Vulnerability(CVE-2021-27059) Internet Explorer Remote Code Execution Vulnerability(CVE-2021-27085) 0day(exploit) in the Wild But no one talk about it😅 msrc.microsoft.com/update-guide/v… msrc.microsoft.com/update-guide/e…
CVE-2021-20226: @_wmliang_ details this #Linux privilege escalation via io_uring originally submitted by @Ga_ryo_. The bug leads to a UAF on any file structure, which can be leveraged for LPE in the kernel. bit.ly/3vbrOEx
CVE-2021-27905: Apache Solr SSRF PoC github.com/Henry4E36/Solr…
New blogpost by @0vercl0k: "Reverse-engineering tcpip.sys: mechanics of a packet of the death (CVE-2021-24086)" doar-e.github.io/blog/2021/04/1…
My exploit for sudo CVE-2021-3156 that ACTUALLY works. Tested on ubuntu 18.04 and 20.04. github.com/r4j0x00/exploi…
[New Blog] Exploiting Windows RPC to bypass CFG mitigation: analysis of CVE-2021-26411 in-the-wild sample iamelli0t.github.io/2021/04/10/RPC…
CVE-2017-7494 Samba since version 3.5.0 and before 4.6.4, 4.5.10 and 4.4.14 is v... vulmon.com/vulnerabilityd… Customizable Vulnerability Alerts: alerts.vulmon.com/?utm_source=tw…
CVE-2021-27274 This vulnerability allows remote attackers to execute arbitrary code on affected installations of NETGEAR ProSAFE Network Management System. Authentication is not required to exploit this vulnerabil... vulmon.com/vulnerabilityd…
Vigil@nce #Vulnerability of ArcGIS Desktop/Pro: three vulnerabilities via Malicious File. vigilance.fr/vulnerability/… Identifiers: #CVE-2021-29096, #CVE-2021-29097, #CVE-2021-29098. #security
OpenSSL critical flaws arstechnica.com/gadgets/2021/0… openssl.org/news/secadv/20… #CVE-2021-3449 nvd.nist.gov/vuln/detail/CV… CVE-2021-3450 nvd.nist.gov/vuln/detail/CV… #OpenSSL #vulnerability #cybsercurity #cybersec #hacking
Apple 0day in-the-wild
1. IDOR on Apple via "X-Dsid" header allows attacker to retrieve name, credit card information, addresses, and various PII of any Apple users via DSID Bounty: $25,000 Could create a "god cookie" which had access to all Apple customers name, address, phone, and billing info.
2. Reflected XSS/CSRF token bypass on SecureTransport 5.4 via URL parameters Bounty: $7,000 and a comfy backpack from Axway :) Could traverse to a "CSRF debug page" which would auto-submit a request with an appended CSRF token. Also vulnerable to (limited) XSS.
Ouslojou @Ouslojou0149
70 Followers 3K Following
Tami Beverly @BeverlyTam28396
1 Followers 174 Following Recruiting webshell engineers to penetrate websites, with a monthly salary of up to $100,000. If interested, please contact https://t.co/qbEeteoWAp
Irlikoor @Irlikoor754
27 Followers 413 Following
saeid alvandi @Saeid9195413
71 Followers 837 Following
Jesús @Jess24736648788
2 Followers 222 Following
John Taylor @JohniTay19
8 Followers 580 Following
Vesal @vesalfiroozi
424 Followers 2K Following SOC Analyst , Cyber security researcher, INV Member, Inventor
Lovisa18.02.18❤️ @Lovisa33315946
5 Followers 140 Following ❤️Bessere Hälfte Danke für alles❤️Ich liebe dich über alles❤️18.02.18❤️
51pwn @Hktalent3135773
924 Followers 4K Following #infosec #RCE #poc #exploit #0day #zero-day #ZDI #Cybersecurity #payload #CVE-2022- #0-Dau #NDay #N-Day
🏳️🌈🏳️... @yungmay0
617 Followers 3K Following Exiting InfoSex. Red team. Christianity is a virus. She dropped that ass on me from gregarious angle, they thought I was Stephen Wallace
Mohamed Abdelhakim Ha... @MohamedHcnEliot
242 Followers 3K Following THE ODD MAN OUT || SOFTWARE ENGINEER
مسعود تاج ف�... @tajfardm
356 Followers 481 Following Founderof @snappdoctor, Advisor to CEO @ghalamchi, co-founder at https://t.co/A7sKVySuPw
Hopic @hviohb6
20 Followers 610 Following
Who am i @whoami_ir98
3K Followers 3K Following نیمچه مهندس کامپیوتر - عاشق 🇩🇪 ---- مجاهد ، ارزشی ، اصلاح طلب ، طرفدار موسوی و سلطنت طلب متعصب ⛔ به جان عرزشی ها که میخوام نباشن من سالمم
Threat Hunting @Mahdi_htm
1K Followers 415 Following Open to negotiate for threat hunting and threat analysis remote services
cb @cyb3rn3tic
57 Followers 435 Following
slimsanta @sl1msanta
29 Followers 79 Following Network Engineer. I like poker, memes, and crypto when it's pumping.
Mohammad Jafari 𓄂�... @h4shur
741 Followers 3K Following Hacker / Security researcher / Programmer / Author | Free み →Defender of Iranian People | page 2 @NETedit0r | https://t.co/0Mp7JA4wLv
guptaankit @ankit769
17 Followers 225 Following
Rajesh Sapkal🇮🇳 @rajeshsapkal
723 Followers 2K Following CISO @ decypher TECHNOLOGIES. Cyber Security Consulting, Cybercrime Investigations, CyberDefence, RedTeam, Darkweb. vCISO, Cyber Threat Intelligence
Bounty Security @BountySecurity
19K Followers 10K Following Offensive Web Application Security Software
erica @erica75068059
48 Followers 494 Following
Esfandiari @esf_meysam
83 Followers 225 Following خبير في الاستخبارات السيبرانية Cyber intelligence officer, Cyber crime expert
Geek @Onepassen
253 Followers 2K Following
nanoecoforum.ir @nanoecoforum
13 Followers 29 Following
The Mind Flayers 👾 @FlayersMind
1K Followers 3K Following Not-so latest Cyber Security insights and stories #infosec anymore | Just cruising between cyber security subjects
rapiddns @rapiddns
3K Followers 3K Following Bug Bounty Hunter. The https://t.co/11fvDW8SRb is a free, open and unlimited dns query tool. It makes easy to query subdomains or sites of the same.
Mayur Parmar @th3cyb3rc0p
5K Followers 5K Following Team Lead - NST | 👔 I Don't stalk,I Investigate 📌 | SRT @SynackRedTeam | Penetration Tester @yogoshaofficial |🇮🇳
Mohammad Jafari | H4S... @NETedit0r
2K Followers 869 Following هکر / محقق امنیت / برنامه نویس — ★ Defender of iranian people ★ اکانت اصلی : https://t.co/pylzofCP8h
Imroz Security @ImrozSecurity
1K Followers 3K Following We make your web application more secure! @gkhck_
Host.io – Domain Da... @host
1K Followers 2 Following Backlink, redirect, website and IP address data for any domain name. API and data download also available.
hackertarget.com @hackertarget
2K Followers 400 Following Internet facing Vulnerability Scanning & Attack Surface Discovery. Open Source Security tools and intelligence for testing, analysis and defending.
SecurityTrails, A Rec... @securitytrails
13K Followers 1K Following Security Trails was acquired by Recorded Future. To see what's new, visit @RecordedFuture.
Censys @censysio
10K Followers 1K Following Censys is the source for real-time Internet intelligence and actionable threat insights for governments, F500 companies, and leading threat intel providers
SpiderFoot @spiderfoot
19K Followers 1 Following SpiderFoot automates #OSINT for #ThreatIntel and mapping your #attacksurface. Part of Intel 471.
OsintSupport @OsintSupport
10K Followers 41 Following Open Source Intelligence | Web Scraping | Reverse Engineering | [email protected]
OSINTessentials (@osi... @OSINTessentials
7K Followers 148 Following Education and critical evaluation of information are crucial. Don't be a passive consumer. Find us where the sky is blue
Aware Online @aware_online
12K Followers 717 Following Open Source Intelligence (OSINT) Training Center ★ Located in The Netherlands ★ https://t.co/QLk5FICGU6 ★
OSINT Techniques @OSINTtechniques
67K Followers 472 Following Resources for Open Source Intelligence Investigations. Follow the Digital Bread Crumbs. #OSINT Co-Founder, Forensic OSINT [email protected]
Dutch Osint Guy Nico @dutch_osintguy
37K Followers 2K Following Dutch guy with Open Source Intelligence & Analysis skills • OSINT • Certified Instructor @SANSInstitute • SVP of engineering & Chief Innovator @shadowdragonio
OSINT Editor - Commun... @osinteditor
16K Followers 48 Following Community of OSINT pros and amateurs.
اسحاق جهانگ... @Eshaq_jahangiri
237K Followers 2 Following معاون اول رئيس جمهور در دولت هاي يازدهم و دوازدهم
سید عزت الل�... @Zarghami_ez
190K Followers 77 Following وزیر سابق میراث فرهنگی، گردشگری و صنایع دستی | عضو شورای عالی فضای مجازی | رئیس سابق سازمان صدا و سیمای جمهوری اسلامی ایران
Saeed Jalili | سعی... @DrSaeedJalili
318K Followers 2 Following The Supreme Leader’s Representative to the Supreme National Security Council’s Secretariat | Expediency Discernment Council | Member of SCFR
Michael Skelton @codingo_
44K Followers 751 Following VP of Operations @bugcrowd, Hacking Content @ https://t.co/Ov3ZXfNg5P tools @ https://t.co/4X3ot71JLf @SecTalks_GC & @BSidesGC co-organiser
Shahabashtari.nft �... @shahab_ashtari
4K Followers 906 Following Director of rangmagazine, Actor, Journalist, Filmmaker and Crypto Trader $BTC $EGLD $DOT $PING $CAW
Masoud Ghasemi @Masoud__Ghasemi
22K Followers 389 Following همواره زمانی فرا میرسد که باید میان تماشاگر بودن و عمل یکی را برگزید و این معیار انسان شدن است
i'm not selling @Vahidzamani67
11K Followers 280 Following تحلیلگر فضای اطراف خودم هستم "من نابغه نیستم، همه چیز در حال بالا رفتن است"
Babak @BabakJalilvand
7K Followers 629 Following #Bitcoin | BM | Interior Designer | @coiniran | @script_cast | @shiryakhat | @unchainIran
مسعود تاج ف�... @tajfardm
356 Followers 481 Following Founderof @snappdoctor, Advisor to CEO @ghalamchi, co-founder at https://t.co/A7sKVySuPw
NapkinAds @Napkin_Ads
83K Followers 87 Following NapkinAds is the first company to serve ads on napkins with a reach of over 200,000 restaurants and bars globally.
ḃlu Line @blubanksupport
2K Followers 2 Following بلولاین؛ همیشه به وقت همهجا | شماره تماس: ۰۲۱۸۷۶۴۱ لینک چت: https://t.co/lGQ12eRKVJ
Clément Notin @cnotin
6K Followers 974 Following 😈 Security research (#ActiveDirectory #EntraID) & pentest 🎉 #CTF @tipi_hack 👨💼 Works @TenableSecurity, opinions my own 🪂 https://t.co/4HRwJQ6PUm
Sadja D. Am (⧖) @sadjadam
213 Followers 103 Following دزد دریایی، جایزهبگیر، غارتگر، مزدور، ستوانسوم پیاده، چهارشنبه، سوتزن، طبّال، نوازنده زنبورک و پیرو شرطبندی پاسکال
Rajvardhan Agarwal @rajxnull
6K Followers 340 Following Vulnerability Researcher @Apple | CTFer forever: @SuperGuesser | Opinions my own
وحید 🐜 @vahidbaghi95
10K Followers 327 Following Msc. in Algorithms and Computation at UT, Data Scientist, Data Thief, Jimmy Neutron
אינטלי טיימ... @IntelliTimes
58K Followers 882 Following Exclusive News & Security. Edit by Ronen Solomon: In-depth analysis on Israeli Defense, Intelligence, War on Terror, and Iran's moves. https://t.co/FJdzbQZTKE
Vigilance Alertes Vul... @vigilance_fr
259 Followers 0 Following L'équipe Vigilance veille chaque vulnérabilité qui affecte votre parc informatique, propose des correctifs sécurité, puis vous alerte pour y remédier.
Vulmon Vulnerability ... @VulmonFeeds
4K Followers 2 Following Vulnerability Feed Bot (tweets new vulns) Follow @vulmoncom for human-controlled official account
Vigilance Vulnerabili... @vigilance_en
306 Followers 0 Following Vigilance Vulnerability Alerts watches vulnerabilities impacting your computers, describes security patches, and then alerts you to fix them.
Peter Šantavý @PSantavy
199 Followers 129 Following #CatholicPriest #CyberSecurity #AISecurity #AIEthics #Linux #SysAdmin #NetworkAdmin #DataProtection #OpenSource #InformationSociety #MoralTheology
adr @aaaddress1
3K Followers 568 Following Team Lead of PSIRT and Threat Research, TXOne Networks. Speaker at Black Hat USA, CODE BLUE, DEFCON, HITB, HITCON, S4, SECTOR. Author of Windows APT Warfare
Frank Boldewin @r3c0nst
5K Followers 322 Following Reverser, Malware Researcher, Threat Intelligence dude, focused on hunting APTs targeting the financial industry. https://t.co/lLGcnbam8y
m c @mc82108939
39 Followers 0 Following
🇺🇦 Joe Gray aka... @C_3PJoe
14K Followers 2K Following Abandoned account. BlueSky: C_3PJoe & Mastodon: JOSINT. Threat Intel; 5x Black Badge; Views: my own; https://t.co/eGtH4P4tzV
Patarames @Pataramesh
77K Followers 279 Following Open source (-only) military technology analyst. Iran, Middle East, Russia, China, North Korea, Israel Want to support my work? https://t.co/zD72v8d00T
Samir @obretix
56K Followers 77 Following I like brave people who are able to think for themselves. geospatial IT – OSINT/IMINT
Security Onion @securityonion
19K Followers 2 Following Peel back the layers of your enterprise and make your adversaries cry! FREE and OPEN platform BY defenders FOR defenders!
Amy ☀️ @amysundae
27K Followers 1K Following Founder and new mom. Building @briefly_ai, Past: Partner @Sequoia, Growth @Uber, Product @Facebook, Economics @Harvard, ArtistTrends for United States
You might like
