HackerOne

@hackerone

@Bug0x Admin : @Offensive

Ko'proq ko'rsatish

Malayziya12 668Ingliz60 027Texnologiyalar & Aralashmalar10 124

Reklama postlari

7 822

Obunachilar

-124 soatlar

+97 kunlar

+12930 kunlar

1 790

Post ko'rishlar

~ 68424 soatlar

~ 80648 soatlar

22.89%

Muloqot nisbati

8.7%24 soatlar

10.3%48 soatlar

Izohlarni

Ma'lumot yo'q7 kunlar

Ma'lumot yo'q30 kunlar

Ma'lumot yo'q

Kuniga postlar

~ 7

Reaksiyalar

~ 2

Izohlari

~ 13

Qaytarishlar

Kanalning o'sishi
Post qamrovi
ER - jalb qilish nisbati

Ma'lumot yuklanmoqda...

https://blog.chebuya.com/posts/server-side-request-forgery-on-havoc-c2/

Hammasini ko'rsatish...

Unauthenticated SSRF on Havoc C2 teamserver via spoofed demon agent

Target:

https://github.com/HavocFramework/Havoc

PoC:

https://github.com/chebuya/Havoc-C2-SSRF-poc

Your browser does not support the video tag. Summary Havoc C2 is a modern and malleable post-exploitation command and control framework targetting windows systems utilized by red teamers and threat actors alike. While auditing the codebase, I was able to discover a vulnerability in which unauthenticated attackers could create a TCP socket on the teamserver with an arbitrary IP/port, and read and write traffic through the socket.

Photo unavailableShow in Telegram

👍 2❤ 1👌 1

Photo unavailableShow in Telegram

https://github.com/edoardottt/scilla

Hammasini ko'rsatish...

👍 6👌 3❤ 2

https://github.com/edoardottt/scilla

Hammasini ko'rsatish...

GitHub - edoardottt/scilla: Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration

Information Gathering tool - DNS / Subdomains / Ports / Directories enumeration - edoardottt/scilla

https://x.com/carrot_c4k3/status/1810229179428057259

Hammasini ko'rsatish...

https://x.com/carrot_c4k3/status/1810229179428057259

Hammasini ko'rsatish...

Photo unavailableShow in Telegram

❤ 6👍 3👌 1

https://www.amazon.com/Dark-Wire-Incredible-Largest-Operation/dp/1541702697

Hammasini ko'rsatish...

❤ 4👎 1👌 1

https://www.group-ib.com/blog/eldorado-ransomware/

Hammasini ko'rsatish...

Eldorado Ransomware: The New Golden Empire of Cybercrime? | Group-IB Blog

All about Eldorado Ransomware and how its affiliates make their own samples for distribution.

👍 3❤ 2👌 2

Photo unavailableShow in Telegram

- screenshot - SSL certificates - IP addresses - title/body text - cookies - technologies - http requests - headers - console messages - metatags urldna.io

Hammasini ko'rsatish...

🥱 5👍 3❤ 2🔥 2

Boshqa reja tanlang

Joriy rejangiz faqat 5 ta kanal uchun analitika imkoniyatini beradi. Ko'proq olish uchun, iltimos, boshqa reja tanlang.