Olivia
Online
NULLKrypt3rs
@NULLKrypt3rs
CTF Team || IIIT-Allahabad
Allahabad, India
Joined November 2018
138 Following
93 Followers
34 Posts
Added a new technique in Patriot to identify suspicious CONTEXT structures used in the rop/callback chains of foliage, #nighthawk, #brc4, gargoyle, etc. https://t.co/QsYoHFlrgu
Thread - Confluence Blind OGNL Injection analysis from our limited java knowledge. From vulnerable sink to becoming admin of the confluence instance. #CVE-2022-26134. Tested on latest vulnerable version 7.18.0.
Open redirect vulnerability and how to use it "correctly" in bug bounty 🙃
https://t.co/O0uuj2msct
This PowerShell one-liner will open a visible IE browser in Windows 11:
$(new-object -com internetexplorer.application).Visible=$true
Who to follow
Shyam Tayal
@ShyamTayal25
Confidence let's me be me
Shreyansh Dwivedi 🇮🇳
@shreyanshdwiv97
SDE-II @amazon | Ex-@gemini, @rupeekapp | GSoC'19 @fossasia | @SIH2019 Winner | Former Community Lead at @geekhaveniiita | @IIITA_Official
Palak
@palak__mittal
India to Berlin to Dubai
A software engineer who continues experimenting with great ideas.
Interesting account takeover of the day.
The site was hosting their https://t.co/i5o2oc49ez on amazonaws
While resetting my password I have noticed that the host was getting passed in json body
No PKINIT? No problem! Thanks to team members Yannick and @lowercase_drm, you now have a way to (ab)use your ill-earned ADCS certificates even when domain controllers do not support PKINIT
https://t.co/bE70PblkYq
Here are the slides for my talk « Delegating Kerberos to bypass Kerberos delegation limitation » 😈 at @1ns0mn1h4ck #INS22 https://t.co/fI76XQQmk0
Trying to learn security research and getting overwhelmed by all the details?
I just published a guide showing my process for step-by-step analysis of a security feature: https://t.co/7k87w8DhFh
New Interruptor 0.1 release 🔥 add Follow Thread 🥳, Kernel API constants usable by their names into hooks🥰, configurable output, smart modules/interrupts filtering
https://t.co/eulUNxq9kR
[#thread 🧵] Last week in #Microsoft #PatchTuesday, a critical vulnerability was patched that theoretically allows attackers to achieve Remote Code Execution on a target #IIS server (CVE-2022-21907). I'll explain how it works in this thread ⬇️
![podalirius_'s tweet photo. [#thread 🧵] Last week in #Microsoft #PatchTuesday, a critical vulnerability was patched that theoretically allows attackers to achieve Remote Code Execution on a target #IIS server (CVE-2022-21907). I'll explain how it works in this thread ⬇️ https://t.co/edEpUSq7uv](https://pbs.twimg.com/media/FJZaQmYXsAQEj-p.jpg)
I'm proud to present a new tool, #LDAPmonitor! With this you can monitor creation, deletion and changes to LDAP objects live during your pentest or system administration! Lots of authentication types are supported, and output can be saved to a file.
https://t.co/XJf5QKTLQy
My recent Bounties 🤑
Takeover an entire domain by resetting passwords! We detailed how to exploit CVE-2021-40539 on ManageEngine ADSelfService Plus in this blogpost https://t.co/craR84dtvv @acervoise - @tiyeuse
Revisiting an old bug which paid off really well during a previous Red Team op.
The good old Microsoft Exchange unauthenticated email relay. This was particularly impactful. Here's why:
🌶️Unauthenticated
🌶️No phishing infra needed
🌶️Emails land directly in user's inbox
(1/4)
@l42Y_ Works fine for me.
New Write-up on InfoSec Write-ups publication : "Finding My First Bug: HTTP Request Smuggling" #bugbounty #bugbountywriteup #bugbountytips https://t.co/BExPtz7NSN
Containerd breakout PoC (@ChaosDatumz), the "glue" principle (@theluemmel), lockscreen bypass (@jonasLyk), VBox escape 0day (@Sauercl0ud), beacon shellcode generator (@ryanstvnson), browser backdoor (@_batsec_), nim obfuscation (@LittleJoeTables), + more! https://t.co/0yEXXmOQeF
b00t2root CTF ended! Hearty congratulations to team @ByteForc3, @Zh3r00 and @0x90r00t for bagging the top three positions! We would also like to thank our esteemed sponsors @offsectraining @vector35 for sponsoring the prizes. Adieu guys! See you all next year :)
15+ hrs into the CTF and we are seeing some intense competition here :P
If you havent registered yet shoot here: https://t.co/91rNoi2tIt
#boot2r00tctf2020
Hola folks,
With Hacka-demic in close sight, we are glad to announce the prizes and goodies awaiting the winners.
Hoping the poll has added flavors to your curiosity on the possible themes, we are more than excited to witness your take on our themes.
(1/2)
Last Seen Users on Sotwe
Gay Indonesia
Seen from Turkey
ชายเดี่ยวหนุ่มใหญ่ นัดสาว ความลับ
Seen from Thailand
🦋𝒑𝒖𝒎𝒑𝒌𝒊𝒏🦋
Seen from Turkey
ممبادلء19👻🙈
Seen from Oman
erdem
Seen from France
AnalovaSeskual
Seen from Indonesia
مدام سماح المطلقه
Seen from United States
Gizliii 
Seen from Algeria
Happinex_ex
Seen from United States
Stranger Pakistani
Seen from Turkey
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.9M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.5M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.1M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
59.9M followers