#H2HC2018 15th Edition! Talks Announced and Agenda published (thanks to all researchers who submitted). New training announced: The Shellcode Lab (traditional @BlackHatUSA and for the 1st time in Brazil with steep price discount). H2HC

Reported a new RCE 0day in RichFaces 3.X (all versions). One of those I used in one of my bounties in the PayPal a few months ago. I intend to use this example in my simple talk in the H2HC in some days. (cc: Markus Wulftange Rodrigo Branco Filipe Balestra Manoel Abreu)

We Want You For The "One Legged Army" Today > ow.ly/5YvU30m9Zmq

Pulpito H2: preencha a tabela no evento com horario desejado e palestre sobre algum tema de interesse por 15 minutos! #H2HC2018 #H2HClightningtalks H2HC

Parabéns!!! Foi show de bola! ;)

;)

To get you started with your H2HC 2018 badge, here is a short write up security-bits.de/electronics/ba… Cc H2HC

The one I talked about at H2HC and JampaSec some weeks ago... More informations: access.redhat.com/security/cve/c…

As inscrições para o #Pwn2Win 2018 estão oficialmente abertas. Uma edição para entrar para os anais da história! Ajudem na divulgação: pwn2win.party Epic Leet Team #CTF-BR

A QA engineer walks into a bar. Orders a beer. Orders 0 beers. Orders 99999999999 beers. Orders a lizard. Orders -1 beers. Orders a ueicbksjdhd. First real customer walks in and asks where the bathroom is. The bar bursts into flames, killing everyone.

My talk in H2HC 2018: youtube.com/watch?v=rNTYxZ… This was about code injection in web frameworks and CVE-2018-14667 (unauth RCE I've used in some bugbounties such as PayPal, AT&T, Apple and others) (not paid by apple =/) Thanks Filipe Balestra and Rodrigo Branco o/

#H2HC2023 Keynotes announced: Cristina Cifuentes (the mother of decompilation) and vincent zimmer (the father of UEFI) H2HC

Our latest blog post covers turnstiles, highlighting physical security challenges, facial recognition vulnerabilities, and advanced bypass methods. A short reading for people considering security. blog.pridesec.com.br/en/turnstiles-… #hacking #pentest #cybersecurity #infosec #redteam

Parte dois da nossa pesquisa sobre catracas. blog.pridesec.com.br/br/catracas-na… youtube.com/watch?v=c8flkN…

We've started announcing the speakers for #H2HC2024 !! chompie and b33f | 🇺🇦✊ sharing the stage! H2HC #H2HC21years #H2HC21anos

Treinamento da #H2HC2017 finalmente anunciado:Red Team!Balestra,Ygor e PacoteLoko sao os instrutores! H2HC goo.gl/PoHh8A

#H2HC2017 Badges!! Thanks to Brian and friends TROOPERS Conference Hendrik Schmidt

So FYI, "redteam" doesn't mean "above the laws". A CEO can't allow someone else to hack into your personal email address to prove a point. This is plain wrong, unethical and privacy invasive. IMO, company email address is fair game. Personal email: nope! 🙅‍♂️

Search SSH Servers with root login in Github Dork: extension:json "root" in:file AND "host" in:file filename:mup youtube.com/watch?v=yIJOlK… github.com/UnkL4b/GitMiner #GitMiner #Pwned #[in]security g0t mi1k ☣ KitPloit - Hacker Tools Hacker News Bot Rodrigo Branco Filipe Balestra Matheus Bernardes

Started publishing the slides for H2HC #H2HC2017 on our Github (videos coming soon): goo.gl/JFYCZk