Mirko Conti @_mkcn - Twitter Profile

Pinned Tweet

over 5 years ago

If your code is executed on the attacker's pc then it is not your code anymore if the attacker's code is executed on your pc, then it is not your pc anymore

1

4

0

Mirko Conti @_mkcn

about 2 years ago

A very promising idea, I hope to try it soon! https://t.co/21BSbRYe8B

0

33

_mkcn retweeted

Madhu Akula @madhuakula

about 3 years ago

Thanks to all the wonderful people for your contributions, valuable feedback, suggestions & encouragement 🔥 🚀 🥳 We have 3000 Github 🌟 Kubernetes Goat 🐐 https://t.co/7omjqBTYLr Plz Share & RT 🙏 #Kubernetes #CNCF #Hacking #InfoSec #Community #opensource #Security #Pentest

madhuakula's tweet photo. Thanks to all the wonderful people for your contributions, valuable feedback, suggestions & encouragement 🔥 🚀

🥳 We have 3000 Github 🌟 Kubernetes Goat 🐐
https://t.co/7omjqBTYLr

Plz Share & RT 🙏

#Kubernetes #CNCF #Hacking #InfoSec #Community #opensource #Security #Pentest https://t.co/N8U9Bi7UHs

2

32

8

5

4K

_mkcn retweeted

Nagli

@galnagli

about 3 years ago

The team at @OpenAI just fixed a critical account takeover vulnerability I reported few hours ago affecting #ChatGPT. It was possible to takeover someone's account, view their chat history, and access their billing information without them ever realizing it. Breakdown below 👇

85

3K

726

1K

708K

Who to follow

arthusu

@ArthusuxD

Hacking web Pentester PHP coder Linkedin: https://t.co/awweoN7hK6

babush

@pmontesel

@mhackeroni / I do stuff with computers / opinions not my own / 🇮🇹🇨🇦🇯🇵

Pietro Ferretti🔸

@peterfrt

Incurable lurker. I do computer security and I've got someone to pay me for it. 🔸https://t.co/hnEfwOO0ju

_mkcn retweeted

Florian Roth ⚡️

@cyb3rops

over 3 years ago

🥹

cyb3rops's tweet photo. 🥹 https://t.co/OkDGFUJipc

10

773

82

25

91K

_mkcn retweeted

Sam Curry

@samwcyo

over 3 years ago

Super excited to release our car hacking research discussing vulnerabilities affecting hundreds of millions of vehicles, dozens of different car companies: https://t.co/xCHG5oLYWK Contributors: @_specters_ @bbuerhaus @xEHLE_ @iangcarroll, @sshell_ @infosec_au @NahamSec @rez0__

59

2K

722

489

342K

Mirko Conti @_mkcn

over 3 years ago

@homelabit Recentemente mi è stato consigliato questo modulo di HackTheBox https://t.co/FAB6ACg8hL

1

2

0

Mirko Conti @_mkcn

over 3 years ago

@smaury92 CVE-2022-41352?

1

0

_mkcn retweeted

Corben Leo

@hacker_

over 3 years ago

Uber was hacked. The hacker social engineered an employee -> logged into the VPN and scanned their intranet. 👇

86

6K

2K

803

0

_mkcn retweeted

Sid Palas

@sidpalas

almost 4 years ago

1/ There are many ways to manage credentials in Kubernetes, some better than others: 🔐 - Kubernetes Secrets - Encrypt Secrets (Bitnami, KSOPS) - External secret stores - Secrets Store CSI Driver - Sidecar injectors (Vault, Conjur) Here's the rundown: 🧵

8

199

51

116

0

_mkcn retweeted

Kinnaird McQuade

@kmcquade3

almost 4 years ago

The Center for Internet Security released the Supply Chain Security Benchmark! It is SO awesome to see more industry attention on locking down CICD pipelines. Table of contents attached. PDF link: https://t.co/WSyOoZme7p

kmcquade3's tweet photo. The Center for Internet Security released the Supply Chain Security Benchmark!

It is SO awesome to see more industry attention on locking down CICD pipelines.

Table of contents attached.

PDF link: https://t.co/WSyOoZme7p https://t.co/sUnrCGsdiz

1

271

87

86

0

_mkcn retweeted

Jason Choi

@mrjasonchoi

almost 4 years ago

I was today years old when I found out Cloudflare has a wall full of lava lamps they feed into a camera as a way to generate randomness to create cryptographic keys

mrjasonchoi's tweet photo. I was today years old when I found out Cloudflare has a wall full of lava lamps they feed into a camera as a way to generate randomness to create cryptographic keys https://t.co/SKcuJUowJD

341

29K

4K

2K

0

Mirko Conti @_mkcn

almost 4 years ago

#WWDC #passkeys #apple "First you enter the password." Ok. "Then, it is usually obfuscated through something like hashing plus salting, and the resulting salted hash is sent to the server." What!? Why so many people think passwords are hashed client-side? https://t.co/4CuPZX41BG

0

_mkcn retweeted

@mikko

about 4 years ago

https://t.co/RJpx9o71mg

11

88

27

5

0

Mirko Conti @_mkcn

about 4 years ago

@PincoPallinoQ @JediPerLItalia fonte di "alimentazione"*

0

2

0

Mirko Conti @_mkcn

about 4 years ago

@PincoPallinoQ @JediPerLItalia Era uno dei primi dispositivi passivi, quindi senza batteria. Richiede però una fonte di "alimentare" esterna. https://t.co/e7zV9jbOj8

_mkcn's tweet photo. @PincoPallinoQ @JediPerLItalia Era uno dei primi dispositivi passivi, quindi senza batteria. Richiede però una fonte di "alimentare" esterna.
https://t.co/e7zV9jbOj8 https://t.co/WMiOvQePjO

1

0

_mkcn retweeted

MG

@_MG_

over 4 years ago

13 seconds. That’s the amount of time an OMG Cable had to be connected to my Android for @int0x80 to have ongoing access to my camera, microphone, photos, messages, GPS, etc. Full episode on @Hak5: https://t.co/2823tfsyFc