Olivia
Online
Wolfgang Ettlinger (inactive)
@ettisan
goodbye Twitter
Joined December 2010
44 Following
377 Followers
168 Posts
We identified >1000 organizations susceptible to subdomain hijacking https://t.co/A0jj64jFeR
A privilege escalation vulnerability could have allowed unprivileged users of the IBM Spectrum Virtualize admin interface to execute code https://t.co/FoPt0kQ90H (by @ettisan)
Meet us at @WeAreDevs World Congress in Berlin this week and join our talk about the future role of AI in phishing attacks held by our experts Wolfgang Ettlinger (@ettisan) and Alexander Hurbean.
Sicherheitsforscher von Certitude konnten zwei kritische Schwachstellen bei der SPÖ-Mitgliederbefragung identifizieren. Manipulation von Stimmen wäre mit einfachen Mitteln möglich gewesen. (1/7)
https://t.co/d7HQ5qNQX3
Who to follow
SEC Consult
@sec_consult
YOUR GLOBAL PARTNER FOR CYBERSECURITY. SEC Consult is part of Atos.
Rene Freingruber
@ReneFreingruber
Interests: reversing, fuzzing, browser&kernel exploits, red teaming, maldev (loaders, C2, obfuscators), coding (hashcat utils, BloodHound ingestors, EDRs), ...
/r/netsec
@_r_netsec
Follow for new posts submitted to the netsec subreddit. Unofficial.
PBKDF2-SHA256 with 100100 rounds in @hashcat will run at 90kH/s on a single @NVIDIAGeForce RTX 4090. Not fast by any means, but also not super slower either. You can clear rockyou.txt(14M passwords) in about 2 minutes 45 seconds at that speed. RE: @LastPass
How do you make a small fortune in social media?
Start out with a large one.
A clip from Don’t Look Up, and then a real TV interview that just happened
It's possible to hide backdoors in JS by only adding invisible Unicode characters to legitimate-looking code. Research by @certitude_lab/@ettisan https://t.co/TApUwdk5Fu
A neat approach for invisible backdoors in legitimate JavaScript source code. Can you spot it? Hint: unlike #TrojanSource, it does not use Unicode bidirectional-trickery! https://t.co/SVxcUfKdbj
CSRF with JSF 2.x is impossible? We've taken a closer look at Apache MyFaces and found a way to predict CSRF/ViewState tokens: https://t.co/BwpmD16N0Q
@Humbedooh sent you an encrypted mail on jan 27th. If you did not receive it please contact me via dm. No response required otherwise
@ettisan @TrendMicro Attack vector 2: An attacker with access to the HTTP proxy port could abuse the authentication/authorization bypass vulnerabilities and the command execution vulnerability to take over the appliance as root without user/admin interaction. #infosec #websecurity #IWSVA
Ever want to test systems & see if your password is ever stored/sent in plaintext?
Make it: X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*
I am on the phone with a vendor right now because my test account is in an inoperable state.
🧐
We've not posted an XKCD here till now, but this is just too true 🙂 https://t.co/Lu3g41XdAY
@BafDyce @mozilla I am not that surprised. Moz. being reliant on its only (dominating) competitor is a questianble long-term model. Google can also force changes to Firefox threatening to cut funding (thought I think they would not do this [publicly]). Moz. should find a new revenue stream.
@jsondb_io do you happen to have a way to privately contact you to discuss a security topic?
@matdotsh @eric_conrad I can also recommend the book "The Cuckoo's Egg". Describes a security breach at a US university from 1986
@mnimmerrichter Offenbar gab es mittlerweile ein screening zumindest unter Grippepatienten "Bei einem Coronavirus-Screening der Grippekranken habe sich herausgestellt, dass es in dieser Gruppe kaum Fälle gibt."
https://t.co/gr519ynWPR
CVE-2020-0601
Last Seen Users on Sotwe
Devil Daddy
Seen from Indonesia
تروك トロク
Seen from Spain
Planeta do Futebol 🌎 
Seen from Brazil
pijat pasutri
Seen from United States
pecintaibu2434
Seen from Indonesia
PmrstBangsa
Seen from Indonesia
TANTE GELISAH
Seen from Germany
⚡
Seen from United States
Jans
Seen from Indonesia
item number available
Seen from Panama
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.4M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
110.2M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.6M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.8M followers
KATY PERRY
@katyperry
87.5M followers
Taylor Swift
@taylorswift13
81.3M followers
Lady Gaga
@ladygaga
72.8M followers
Kim Kardashian
@kimkardashian
69.7M followers
Virat Kohli
@imvkohli
69.6M followers
YouTube
@youtube
68.7M followers
Bill Gates
@billgates
63.8M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
62.3M followers
CNN
@cnn
61.9M followers
X
@x
60.8M followers
Selena Gomez
@selenagomez
60.5M followers