uz
Feedback
Ayrix Bytes

Ayrix Bytes

Kanalga Telegram’da oβ€˜tish
946
Obunachilar
Ma'lumot yo'q24 soatlar
-17 kunlar
+530 kunlar
Postlar arxiv
πŸ”Ή Full Team Takeover πŸ“† 2023-01-09 #️⃣ #Broken_Access_Control
πŸ”Ή Full Team Takeover πŸ“† 2023-01-09 #️⃣ #Broken_Access_Control

πŸ”Ή Practical Example Of Client Side Path Manipulation πŸ“† 2023-01-09 #️⃣ #Client_side_Path_Traversal
πŸ”Ή Practical Example Of Client Side Path Manipulation πŸ“† 2023-01-09 #️⃣ #Client_side_Path_Traversal

πŸ”Ή SSD Advisory – MacOS Mozilla Firefox Download Protections Were Bypassed By .atloc / .ftploc Files πŸ“† 2023-01-11 #️⃣ #Local
πŸ”Ή SSD Advisory – MacOS Mozilla Firefox Download Protections Were Bypassed By .atloc / .ftploc Files πŸ“† 2023-01-11 #️⃣ #Local_Privilege_Escalation

πŸ”Ή Client-Side SSRF to Google Cloud Project Takeover [Google VRP] πŸ“† 2023-01-12 #️⃣ #SSRF
πŸ”Ή Client-Side SSRF to Google Cloud Project Takeover [Google VRP] πŸ“† 2023-01-12 #️⃣ #SSRF

πŸ”Ή DER Entitlements: The (Brief) Return of the Psychic Paper πŸ“† 2023-01-12 #️⃣ #iOS
πŸ”Ή DER Entitlements: The (Brief) Return of the Psychic Paper πŸ“† 2023-01-12 #️⃣ #iOS

πŸ”Ή SSH key injection in Google Cloud Compute Engine [Google VRP] πŸ“† 2023-01-12 #️⃣ #OS_command_injection
πŸ”Ή SSH key injection in Google Cloud Compute Engine [Google VRP] πŸ“† 2023-01-12 #️⃣ #OS_command_injection

πŸ”Ή Bad things come in large packages: .pkg signature verification bypass on macOS πŸ“† 2023-01-13 #️⃣ #Local_Privilege_Escalati
πŸ”Ή Bad things come in large packages: .pkg signature verification bypass on macOS πŸ“† 2023-01-13 #️⃣ #Local_Privilege_Escalation

πŸ”Ή Bypassing authorization in Google Cloud Workstations [Google VRP] πŸ“† 2023-01-13 #️⃣ #Account_takeover
πŸ”Ή Bypassing authorization in Google Cloud Workstations [Google VRP] πŸ“† 2023-01-13 #️⃣ #Account_takeover

πŸ”Ή XSS using postMessage in Google Cloud Theia notebooks [Google VRP] πŸ“† 2023-01-15 #️⃣ #XSS
πŸ”Ή XSS using postMessage in Google Cloud Theia notebooks [Google VRP] πŸ“† 2023-01-15 #️⃣ #XSS

πŸ”Ή Critical Vulnerability through OSINT only πŸ“† 2023-01-15 #️⃣ #Information_disclosure
πŸ”Ή Critical Vulnerability through OSINT only πŸ“† 2023-01-15 #️⃣ #Information_disclosure

πŸ”Ή thisclosed_#2 - PostgreSQL Database Exfiltration through the abuse of PostgREST requests πŸ“† 2023-01-16 #️⃣ #SQL_injection
πŸ”Ή thisclosed_#2 - PostgreSQL Database Exfiltration through the abuse of PostgREST requests πŸ“† 2023-01-16 #️⃣ #SQL_injection

πŸ”Ή Full Account Take Over by very simple trick. πŸ“† 2023-01-16 #️⃣ #Account_takeover
πŸ”Ή Full Account Take Over by very simple trick. πŸ“† 2023-01-16 #️⃣ #Account_takeover

πŸ”Ή CVE-2022-21587 (Oracle E-Business Suite Unauthenticated RCE) πŸ“† 2023-01-16 #️⃣ #RCE
πŸ”Ή CVE-2022-21587 (Oracle E-Business Suite Unauthenticated RCE) πŸ“† 2023-01-16 #️⃣ #RCE

πŸ”Ή AWS CloudTrail vulnerability: Undocumented API allows CloudTrail bypass πŸ“† 2023-01-17 #️⃣ #Cloud
πŸ”Ή AWS CloudTrail vulnerability: Undocumented API allows CloudTrail bypass πŸ“† 2023-01-17 #️⃣ #Cloud

πŸ”Ή DOM-Based XSS for fun and profit $$$! | Bug Bounty POC πŸ“† 2023-01-17 #️⃣ #DOM_XSS
πŸ”Ή DOM-Based XSS for fun and profit $$$! | Bug Bounty POC πŸ“† 2023-01-17 #️⃣ #DOM_XSS

πŸ”Ή How Orca Found Server-Side Request Forgery (SSRF) Vulnerabilities in Four Different Azure Services πŸ“† 2023-01-17 #️⃣ #SSRF
πŸ”Ή How Orca Found Server-Side Request Forgery (SSRF) Vulnerabilities in Four Different Azure Services πŸ“† 2023-01-17 #️⃣ #SSRF

πŸ”Ή Centreon map vulnerability πŸ“† 2023-01-17 #️⃣ #Authentication_bypass
πŸ”Ή Centreon map vulnerability πŸ“† 2023-01-17 #️⃣ #Authentication_bypass

πŸ”Ή XML Security in Java πŸ“† 2023-01-17 #️⃣ #XXE
πŸ”Ή XML Security in Java πŸ“† 2023-01-17 #️⃣ #XXE

πŸ”Ή How I identified and reported vulnerabilities in Oracle and the rewards of responsible disclosure:From Backup Leak to Hall
πŸ”Ή How I identified and reported vulnerabilities in Oracle and the rewards of responsible disclosure:From Backup Leak to Hall of Fame πŸ“† 2023-01-18 #️⃣ #Information_disclosure

πŸ”Ή API Misconfiguration - No Swag of SwaggerUI πŸ“† 2023-01-19 #️⃣ #Security_misconfiguration
πŸ”Ή API Misconfiguration - No Swag of SwaggerUI πŸ“† 2023-01-19 #️⃣ #Security_misconfiguration