Twitter
Retweet this to make a racist feel uncomfortable.
from twitter_favs
2 days ago
Twitter
RT : [blog] *bleed continues: 18 byte file, $14k bounty, for leaking private Yahoo! Mail images
from twitter
3 days ago
(500) https://scarybeastsecurity.blogspot.com/2017/05/bleed-continues-18-byte-file-14k-bounty.html
RT : [blog] *bleed continues: 18 byte file, $14k bounty, for leaking private Yahoo! Mail images
from twitter
3 days ago
Twitter
The author has forgotten that CryptReleaseContext only invalidates the CSP and key container, but doesn't d…
from twitter_favs
4 days ago
Twitter
This is the hook DoublePulsar installs, and it can be detected by AV now that it is known.
from twitter_favs
5 days ago
(429) https://twitter.com/binitamshah/status/864346879177310209/photo/1
RT : sniffROM - A tool for passive data capture and reconnaissance of serial flash chips :
from twitter
6 days ago
(429) https://twitter.com/i/web/status/842635423604183040
RT : Exploiting CSRF..

Cross domain timing attacks can be used against Lucene to reliably extract information contained…
from twitter
7 days ago
Twitter
RT : What is a UAC bypass PoC that fits in a tweet?
from twitter
7 days ago
WannaCry Kill-Switch(ed)? It’s Not Over! WannaCry 2.0 Ransomware Arrives
WannaCry Kill-Switch(ed)? It’s Not Over! WannaCry 2.0 Ransomware Arrives
from twitter
8 days ago
Twitter
The Sophos image is real. I confirmed it. They have scrubbed it from their website today, but it still exists in Go…
from twitter_favs
8 days ago
oss-security - generic kde LPE
RT : Generic root exploit against KDE (KDE4 and 5, possible with SELinux in enforcing mode)
from twitter
11 days ago
(429) https://twitter.com/i/web/status/862667937295065088
RT : How to pop a shell from an workstation? This EnCase Forensic Imager vulnerability can help 😬…
FBI  from twitter
12 days ago
Twitter
WinDbg command tip

Google Chrome and Memory usage

!address -f:PAGE_EXECUTE
from twitter_favs
12 days ago
GitHub - a-atalla/tuxcut: Arp spoofing tool for linux
tuxcut - Arp spoofing tool for linux

— Python OSS (oss_py) May 9, 2017
from twitter_favs
12 days ago
XSS'OR - Hack with JavaScript
RT : Release an online tool: XSS'OR - Hack with JavaScript. Have fun:
from twitter
12 days ago
Twitter
RT : Release an online tool: XSS'OR - Hack with JavaScript. Have fun:
from twitter
12 days ago
Twitter
RT : Two diagrams of the Unix architecture, 50 years apart. What they tell us and how I drew them.…
from twitter
12 days ago
Twitter
Honeypot Or Not?
Enter an IP to check whether it is a honeypot or a real control system:
from twitter_favs
13 days ago
Untitled (https://honeyscore.shodan.io/)
Honeypot Or Not?
Enter an IP to check whether it is a honeypot or a real control system:
from twitter_favs
13 days ago
Twitter
RT : MS Edge - Spoofing the Malware Page was patched today *and bypassed* again. Spoof the user again! (1 byte change) 👎…
from twitter
13 days ago
Feature, not bug: DNSAdmin to DC compromise in one line
RT : (good reading) Windows DNS Server dll injection via RPC --
from twitter
13 days ago
untitled - asciinema
RT : Painless intro to the Linux userland heap and heap-fengshui : ,
from twitter_favs
15 days ago
Rediscovering the Intel AMT Vulnerability - Blog | Tenable
The Intel ME vuln, rediscovered and documented by Tenable. tl;dr you can authenticate with null hashes
from twitter_favs
16 days ago
.:: Phrack Magazine ::.
RT : My favorite Phrack article. There is no better deep dive introduction to ARM machine language.
from twitter
17 days ago
Twitter
The PoC||GTFO Bible will be available this summer. Preorder now for only $30, and maybe grab a second for a student…
from twitter_favs
18 days ago
GitHub - bartblaze/Disable-Intel-AMT: Tool to disable Intel AMT on Windows
RT : Made a small tool to disable Intel AMT on Windows. Runs on both x86 and x64 Windows operating systems:
from twitter
18 days ago
GitHub - CERT-W/certitude: The Seeker of IOC
RT : certitude
Python-based tool which aims at assessing the compromised perimeter during IR assignments
from twitter
20 days ago
(429) https://twitter.com/elibendersky/status/859028751031582720
RT : This has been a very good series on creating a BF JIT from the ground up, culminating in an LLVM implementation.
from twitter
21 days ago
(500) https://gist.githubusercontent.com/enigma0x3/22ab4244c32c83577f112a0f24c83bed/raw/96eab340afa5a2d929917044c0b525b36756e8fb/hyperlink
Scriptlet execution in Excel via the script moniker and a hyperlink. No user warning/pop-up pre-April patch release:
from twitter_favs
21 days ago
Security BSides London 2017 Tickets, London | Eventbrite
Security BSides London - There are still some tickets left if you want to get one
2017  london  bsides  from twitter_favs
21 days ago
(500) https://cyberwardog.blogspot.in/2017/03/chronicles-of-threat-hunter-hunting-for.html
RT : Hunting for In-Memory Mimikatz w Sysmon & ELK - Part I (Event ID 7): ,Part II (Event ID 10):
from twitter
21 days ago
(500) https://cyberwardog.blogspot.in/2017/03/chronicles-of-threat-hunter-hunting-for_22.html
RT : Hunting for In-Memory Mimikatz w Sysmon & ELK - Part I (Event ID 7): ,Part II (Event ID 10):
from twitter
21 days ago
Twitter
RT : Android Applications Reversing 101 : cc
from twitter
21 days ago
Brush up on Dropbox DBX decryption
RT : Brush up on Dropbox DBX decryption

— fpi (dfirfpi) April 30, 2017
from twitter
22 days ago
Twitter
RT :

CSP webpage can render <OBJECT PDF> files from other origins.…
nobigdeal  edgebug  from twitter
23 days ago
Manticore: Symbolic execution for humans | Trail of Bits Blog
RT : We open sourced a really awesome symbolic execution tool at . You should check it out!
from twitter
25 days ago
Untitled (http://www.pinkstyle.org/elfcrypt.html)
RT : ELF Code Injection / binary encryption / run time decryption basic tutorial
from twitter
26 days ago
Twitter
RT : MS Edge - SOP bypass / UXSS - "Tweeting like Charles Darwin" 🤣

One minute video:…
from twitter
28 days ago
SOP bypass / UXSS – Tweeting like Charles Darwin (Edge) – Broken Browser
RT : MS Edge - SOP bypass / UXSS - "Tweeting like Charles Darwin" 🤣

One minute video:…
from twitter
28 days ago
GitHub - trailofbits/manticore: Dynamic binary analysis tool
RT : Nice, has released Manticore, a prototyping tool for dynamic binary analysis:
from twitter
28 days ago
quicksand.io - phishing exploit document analysis
RT : QuickSand.io - a CLI tool in C to scan document streams w/ YARA for exploits/Cryptanalysis attacks :
from twitter
29 days ago
Twitter
RT : Released DocBleachShell, bleach your suspicious documents on Windows fully automated …
from twitter
29 days ago
Create a New Pen
196 non-alpha chars alert() payload by
Great !
from twitter_favs
29 days ago
Untitled (http://pentestit.com/docker-ida-reverse-engineering-system/)
Docker IDA: The Large Scale Reverse Engineering System! - PenTestIT
from twitter_favs
29 days ago
Twitter
RT : Little script to help with DCOM commands/lateral movement based on
from twitter
4 weeks ago
Go-SCP · GitBook
Go Language - Web Application Secure Coding Practices - free book
from twitter
4 weeks ago
« earlier      
#blog #fr #hacking #homepage #js #security 00 01 02 03 05 06 0day 2009 31c3 32c3 44con academic activedirectory adfsl ai alabama analysis androguard android anonym8 anonymous antisandbox antisec apple apps appsec architecture arm arp arpy art ashley aslr asm audit auditingtool awesome aws b2b backdoor backdoors backtrack backup bash belgrade bheu bhusa bigdata binwalk birmingham bitlocker bittorrent blackhat blackhateu blackhole blind_sqli blog blogpost bluetooth bm book books boot boot2root bootkit browser brucon bruteforce bruteforcer bsideschallenge bsideslondon bugbounty burp bypass canvas capstone captcha capture centos charliehebdo chart cheatsheet checkitout checklist chrome cisco ciscotalos civ climber cloud cms cocoa code codebits codebits2011 codetainer coding colorado comedy comic conf crack crawler cronjob crossplatformdisassembler crosssitescripting cryptohaven cryptoparty cryptowall csp csrf css ctf cuckoo curiosity cyber_warfare cybercrime cybersecurity dahboo7 dailywtf dataexfiltrationtoolkit db dbgkit dc4420 deal deals debugger decompiler defcon defense derbycon design det dev devel devops dfir dfirsummit dfrws dirtycow disassembler discover diy dll dns doc docker dockersecurity dominator dos dropbox duqu earth eclipse elasticsearch electronics elf elixirlang emacs emet empire encryption erlang escalating ettercap event exploit exploitkit fail fb firefox flame forensic forensics foss fr framework free freebsd fridayreads fun funny fuzzer fuzzing game gamedev games gaming gdb geek geographyofpoverty git gnome gnu google googleplay graph graphs grrcon gtd gui hack hack2learn hacker hackers hackersonlineclub hacking hackingteam hacklu hackpra hardening hardware hash hashcat heartbleed hitb2016ams hitbgsec homepage honeypot howto html html5 https humor hunter icloud icon icons ida ids ie ie6 ie9 infosec injection ioc ios iphone ipv6 ipython iso it italy itsec j2ee j2eescan java javaone javascript jesuischarlie jobs jquery js jsrat jvm kali kalilinux katoolin kernel keylogger kibana lab learn leopard lfi libsigrokdecode links linux live locky lowpower lynis mac macbook machinelearning mail maltego malware malwareanalysis malwaremustdie manager manual map math mbr metasploit microsoft mimikatz mitm mobile model modeling money monitoring moon movies movp mq msf mysql nasa neo4j netbook netsec network networking news nginx nginxday nmap nodejs noriben notsosecure nsa nsm ntp numpy ohm2013 oldschool oldschoolbackdoors oleoutlook ollydbg opensource openssl oprahssl oracle os oss osx owasp pacsec pandas paper password patch pdf pentest pentesters pentesting pentestlab perceptual persistence personal pestudio pgp phishing php pki plot poc poc2014 portable portugal postgresql powershell privacy processexplorer productivity programming proxy pshitt pwn2own python qt quotes raspberrypi raspberrypi2 rce re realtime recipes recon14 reconmtl regex rehints rekall remwa retrogaming reverse reverse_engineering reverseengineering reversing rodeoide root rop ror rowhammer ruby ructfe sandbox sans sanspentestblog scada scanner screencast screencasts sdo search sec14 security securitymanager seo serbia shellcode shellcoding shellter slides sniffer snippet snmp snowleopard social software source space sqli sqlilab sqlinjection ss7map ssh ssl starttls startups stat stats stuxnet sun suricata svg sync sysadmin syslog tech terminal testbed thn threat tip tips tool tools toolswatch tor tr16 tricks trojan truestory tutorial tv tweak ubuntu ue4 ui unix url usa usb usenix video videos virginia virtualization viz vm voip volatility vpn vulnerability waf web web-dev web2py webapp webdev websec websecurity webvulscan wii win windbg windows windows8 wordpress worldphotographyday wpa writeup wxpython x64dbg xslt xss xxe yara zeronighs zeronights

Copy this bookmark:



description:


tags: