GIVEAWAY of my Offensive Rust course to 20 members. previous winners of this course giveaway are not eligible. Like and Retweet this tweet to participate in this giveaway. redteamsorcery.teachable.com/p/offensive-ru… #infosec #rustlang #rust #redteam #malware #pentest #hacking

bash command injection #bypass waf $0<<<$\'\\$(($((1<<1))#10011010))\\$(($((1<<1))#10100011))\'

The team at OpenAI just fixed a critical account takeover vulnerability I reported few hours ago affecting #ChatGPT. It was possible to takeover someone's account, view their chat history, and access their billing information without them ever realizing it. Breakdown below 👇

#github dork to find #openai api key 😇 /"sk-[a-zA-Z0-9]{20,50}"/ language:Shell change lang or not lang make what you want ! enjoy!

🚨 New GIVEAWAY 🚨 It's been a year since the announcement of our first certification, #CBBH, and we're celebrating! Want to be the one to win a Silver Annual subscription? 1️⃣ Follow HTB and HackerOne  2️⃣ Like & RT this post Good luck 🍀 #BugBountyHunting #HTB #Hacking

I hacked into a @Bing CMS that allowed me to alter search results and take over millions of Office 365 accounts. How did I do it? Well, it all started with a simple click in Microsoft Azure… 👀 This is the story of #BingBang 🧵⬇️

Looking for automotive security intelligence sources! Help us out by sharing your best sources for a chance to win an ASRG T-Shirt. Check out our free and open intelligence platform for automotive products at garage.asrg.io #automotivesecurity #carhacking

Last year, JS0N Haddix, brendan, sean and I found a pre-auth RCE in Oracle Opera - CVE-2023-21932. This product holds the PII of every guest (including credit cards 😱). It's used by almost all of the big hotel/resort chains around the world. blog.assetnote.io/2023/04/30/rce… - 1/4

#YASCON2023

4 Tools to help you automate JWT Attacks 🧵👇

Did you know a new JWT Attack was recently published?! 🤯️ CVE-2023-30845 bypasses JWT checking by using the X-HTTP-Method-Override request header!

Just so people know, I'm not crazy... On the left, Burp 1.7 after spidering JUST tesla.com and setting a scope rule for "tesla" On the right Burp 2023, with Incy Wincy crawler ON (via fastest config) Same configs. * 2023 Burp took 1.5 hours for the crawl *

Submit your bug bounty reports before 31st Aug 2023 to get bug bounty awards Submit here : shorturl.at/etKZ7 For more info : bugbountyvillage.com #BugBounty #infosecurity #infosec #security #CyberSecurity #hacking #duplicate #bugbountytips #BugBounty #reports

Want a chance to win a voucher to @jhaddix's new Bug Bounty Methodology course?! RT and like this tweet! 😈 A random winner will be announced Friday!🤘🏼 jasonhaddix.gumroad.com/l/lycucs #infosec #bugbounty #bugbountytips #redteam pwneip lazzslayer NOPResearcher Omar Ωr Santos

It is with a heavy heart and great sadness that I share you the untimely demise of my friend Abraham Raji Abraham Raji He passed away yesterday evening at Kadamakkudy, Kochi. 😢 May his soul rest in peace. You are forever in our hearts

Citrixbleed: On Oct 10th, Citrix announced a security advisory for CVE-2023-4966, a sensitive information disclosure bug marked as CVSS 9.4 affecting Netscaler Gateway. The security research team at Assetnote was able to reproduce the vulnerability. Blog post here:

GIVEAWAY 🎁🎁 It's simple, here are the rules: 🧑‍💻 Be a hacker 🔁 Retweet ❤️ Like 📝 Fill out the survey 👇 Drop an emoji when done You could win an entire swag bundle just by filling out the survey 😱 surveymonkey.com/r/WBRQLGX

Vibe Hacking