🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

How we got here:

Bug Bounty Hint If you have found that server is running PHP - you can try to test it for RCE vulnerability. Append following header to request: User-Agentt: zerodiumsystem("id") If PHP version is vulnerable - you will execute system("id") command on a server.

I have compiled a list of Best Cybersecurity Youtube Channels, that talk about various topics related to cybersecurity. Do check it out 👇 Here is the link to the Github repository: github.com/Nickyie/Cybers… #Pentesting #CyberSec #cyberawarness #bugbounty #infosec #bugbounty

Some pics from NULL Hyderabad July meet. Talks: News Bytes by Karan Cloud Security & S3 by Aravind V Cloud Security Zero to One by Ravi Teja Intro to Threat Hunting by Donny Venue sponsor: ServiceNow #nullHyd #InfoSec null - The Open Security Community

[BLOG] Fun post on how to combine evilginx by Kuba Gretzky and BITB by mr.d0x. rastamouse.me/evilginx-meet-…

The individual who breached Rockstar Games states they got initial access by social engineering an employee. They are currently on 4chan sharing material and chatting. boards.4channel.org/v/thread/61249…

After an unhealthy amount of hours put into this, I finally managed to get RCE on Cobalt Strike. I would recommend avoiding it for a while as CVE-2022-39197 is not sufficient.

Accidental $70,000 Google Pixel Lock Screen Bypass >bugs.xdavidhu.me/google/2022/11… Video PoC: youtu.be/dSgSnYPgzT0 #TheSecureEdge #Hacking #Google #bugbounty #cybersecurity

Learning from others is amazing, but how do you find the content you're looking for? payloadartist solved that problem by creating the Bug Bounty Hunting Search Engine! hubs.li/Q01B0C100 #bugbounty #bugbountytips 👇

Mindmap upgrade version 2023_02 thx to Jenaye and DaahtK for the help. Full quality here : orange-cyberdefense.github.io/ocd-mindmaps/i…

Automatically configure a vulnerable Active Directory network on AWS : - 6 VMs - 1 linux server with GLPI - 3 domains Perfect to share a vulnerable lab with other people #activedirectory #aws #pentest #ad #LordOfTheRings github.com/0xBallpoint/LO…

#NullHyd's March registrations are open. Reserve a seat before it's too late. nullhydmar2023.eventbrite.com Mahesh Bheema Hari Pavan

We've just published a quick write up on CVE-2023-23397, which allows a remote adversary to leak NetNTLMv2 hashes: mdsec.co.uk/2023/03/exploi… by Dominic Chell 👻

In this video walkthrough, we break down the basic info of CVE-2023-23397 the zero-day, zero-touch vulnerability that was rated 9.8 on the #CVSS scale. Follow this thread as we detail the general exploitation routine of this #vulnerability. research.trendmicro.com/cve202323397

🛠️ These are my go-to #DevSecOps tools at all stages of the DevSecOps lifecycle. These are all OSS (not paid tools) so you wont spend a $ buying them

April meet registrations are open. Register before it's too late. Date: April 22 Venue: EPAM Systems nullhydapr2023.eventbrite.com #NullHyd null - The Open Security Community Hari Mahesh Bheema badc0d3r Pavan

May meet registrations are open. Register before it's too late here nullhydmay2023.eventbrite.com. Date: May 27th Venue:@Servicenow #NullHyd null - The Open Security Community Hari Pavan badc0d3r Mahesh Bheema

The $5 Membership sale is now live! The sale lasts until July 17 23:59 UTC: account.shodan.io/billing/member