Juan

@itsecurityco

NULL Life CTF Team member

Joined September 2009

397 Following

564 Followers

2K Posts

Pinned Tweet

Juan @itsecurityco

over 4 years ago

@bef0rd & myself have exploited the Path Traversal and RCE in the latest patched version of Apache (2.4.50). We recommended to upgrade ASAP to the new version 2.4.51. Security report: https://t.co/ni8hoaPqdc CVE: 2021-42013 #security #apache #apache24 #0day #CVE202142013

itsecurityco's tweet photo. @bef0rd & myself have exploited the Path Traversal and RCE in the latest patched version of Apache (2.4.50). We recommended to upgrade ASAP to the new version 2.4.51.

Security report: https://t.co/ni8hoaPqdc

CVE: 2021-42013

#security #apache #apache24 #0day #CVE202142013 https://t.co/22Ng1QIHAw

3

142

67

16

0

itsecurityco retweeted

8 months ago

Stanford just did something wild. They put their entire graduate-level AI course on YouTube. No paywall, no signup. It’s the exact curriculum Stanford charges $7,570 for ❱❱❱❱ watch free now

HeyNina101's tweet photo. Stanford just did something wild. They put their entire graduate-level AI course on YouTube. No paywall, no signup. It’s the exact curriculum Stanford charges $7,570 for ❱❱❱❱ watch free now https://t.co/4uGVEeDmT2

69

8K

944

9K

606K

Juan @itsecurityco

8 months ago

@R3nnix hola! ¿Qué tal? ¿estas láminas con las instrucciones están disponibles? No alcancé a tomarles foto y quería ver el material para intentar hacer los otros desafíos post eko.

itsecurityco's tweet photo. @R3nnix hola! ¿Qué tal? ¿estas láminas con las instrucciones están disponibles? No alcancé a tomarles foto y quería ver el material para intentar hacer los otros desafíos post eko. https://t.co/5vpHxR2YNY

1

1

0

0

37

Juan @itsecurityco

over 1 year ago

@IVANGOMEZDELEOM Viví algo muy similar años atrás, lo solucioné con una buena abogada que tenía bastante experiencia tratando temas cómo estos. Espero todo mejoré pronto 💪

0

0

0

0

295

Who to follow

CEO @ekoparty · Gathering troublemakers since 2001 · Still no idea what I’m doing ¯\_(ツ)_/¯

Ingeniero electrónico de profesión, Hacker por pasión. Security Research

Ing. de Sistemas, Pentester. Escribo en Snifer@L4b's, Podcast #DameUnaShell y creo videos de Obsidian en YouTube casado con @RizelTane https://t.co/gb0XjDwheG

Juan @itsecurityco

over 1 year ago

@WebSecAcademy Hi, are the client side labs working as expected? I have tested 2 of them and they don't seem to work: the first one for CSRF and the last one for CORS. The wiener account is hacked fine with my payloads but the victim account is not. Ty.

8

0

0

0

54

Juan @itsecurityco

almost 2 years ago

I'm glad you were amused by the joke :). It has truly been a privilege to meet you Dr. @jordanbpeterson. Thanks for all your teachings, both from your books & psychology readings on YouTube.

itsecurityco's tweet photo. I'm glad you were amused by the joke :). It has truly been a privilege to meet you Dr. @jordanbpeterson. Thanks for all your teachings, both from your books & psychology readings on YouTube. https://t.co/GQR8lQsWBo

itsecurityco's tweet photo. I'm glad you were amused by the joke :). It has truly been a privilege to meet you Dr. @jordanbpeterson. Thanks for all your teachings, both from your books & psychology readings on YouTube. https://t.co/GQR8lQsWBo

itsecurityco's tweet photo. I'm glad you were amused by the joke :). It has truly been a privilege to meet you Dr. @jordanbpeterson. Thanks for all your teachings, both from your books & psychology readings on YouTube. https://t.co/GQR8lQsWBo

0

1

0

0

162

Juan @itsecurityco

over 3 years ago

@housecor From a security point of view pre-commit can be used to prevent leakage sensitive information in your commits. For example, hardcoded credentials, PII data. And you can’t just delete it later, because it will still be leaked in the commit historical.

0

0

0

0

71

Juan @itsecurityco

over 3 years ago

@Capitan_Alfa Y que importa si es o no… QUEMA LA CASA!

0

1

0

0

99

Juan @itsecurityco

over 3 years ago

@jordanbpeterson Hola Dr. Peterson. What to look for when choosing a university to study psychology? Thank you.

0

0

0

0

11

Juan @itsecurityco

over 3 years ago

@mazen160 But SAST tools does the same. It would be great to test with others vulnerabilities when you can’t detect them with regex and patterns. Example: IDOR.

1

0

0

0

0

itsecurityco retweeted

over 3 years ago

Becoming a reader has been the most important habit I’ve developed over the last 10 years. Here are my 13 favorite hacks to read a book a week:

39

1K

222

634

0

itsecurityco retweeted

Jack Halon @jack_halon

over 3 years ago

Today I am finally releasing a new 3-part browser exploitation series on Chrome! This was written to help beginners break into the browser exploitation field. Part 1 covers V8 internals such as objects, properties, and memory optimizations. Enjoy! https://t.co/bbFjOOzlOu

16

1K

466

620

0

Juan @itsecurityco

almost 4 years ago

@DragonJAR Qué tal funciona Docker?

2

0

0

0

0

Juan @itsecurityco

about 4 years ago

Vulnerable banking application to learn and practice OWASP A01 🎓 https://t.co/wSWmyODR0N

0

1

0

0

0

Juan @itsecurityco

about 4 years ago

@sudochmod4777 @RandoriAttack @springframework It also returns false positives for patched version of Tomcat: WebappClassLoaderBase.getResources() disabled. 8080: vulnerable 9090: patched

itsecurityco's tweet photo. @sudochmod4777 @RandoriAttack @springframework It also returns false positives for patched version of Tomcat: WebappClassLoaderBase.getResources() disabled.

8080: vulnerable
9090: patched https://t.co/3CD9dyyq8d

0

0

0

0

0

Juan @itsecurityco

about 4 years ago

Check out my latest article: Docker PoC para el CVE-2022-22965 (Spring4Shell) https://t.co/o0G1rZTgPX via @LinkedIn

0

1

0

1

0

Juan @itsecurityco

about 4 years ago

@SoyUCN Buenas, con los nuevos cambios no se puede acceder a Cavi.

1

0

0

0

0

Juan @itsecurityco

over 4 years ago

@sniferl4bs Sí, el tiempo todo lo cambia 💪

0

0

0

0

0

Juan @itsecurityco

over 4 years ago

@dark0pcodes 💯

0

0

0

0

0

itsecurityco retweeted

GitHub Security Lab

over 4 years ago

Congrats to the @sexy_allpacks for winning the 2021 EkoParty Advanced CTF and thanks to everyone who played! Gracias @NullLifeTeam @ekoparty

3

25

11

0

0

itsecurityco retweeted

NULL Life CTF Team @NullLifeTeam

over 4 years ago

Thanks for participating in the @ekoparty Advanced CTF 2021! Hope you enjoyed all the challenges and congratulations to the winners: @sexy_allpacks, SYPER de @certunlp, @rupcion. There is also a special mention to @cntr0llz and @fernetInjection! Thanks 👏! #Ekoparty #eko2021 #ctf

NullLifeTeam's tweet photo. Thanks for participating in the @ekoparty Advanced CTF 2021! Hope you enjoyed all the challenges and congratulations to the winners: @sexy_allpacks, SYPER de @certunlp, @rupcion. There is also a special mention to @cntr0llz and @fernetInjection! Thanks 👏! #Ekoparty #eko2021 #ctf https://t.co/7zDXqhnDDj

1

51

21

0

0

Last Seen Users on Sotwe

Trends for you

Most Popular Users