Olivia
Online
Marek Geleta
@marek_geleta
Slovak Republic
Joined April 2016
96 Following
147 Followers
39 Posts
Pinned Tweet
I just published my first blog post - SSRF via DNS rebinding
https://t.co/bLmWPloQ9k
#BugBounty
#NETSEC
#CyberSecurity
#ssrf
#dns_rebinding
🚨 PoC for CVE-2024-48990 Local Privilege Escalation Released 🚨
I've published a PoC for CVE-2024-48990, a local privilege escalation vulnerability in `needupdate` (pre-installed in Ubuntu Server 21.04+)
https://t.co/H4Q0FbetJd
@intigriti https://t.co/4GSvYJDEqM to cut down 3 more chars :d
@intigriti JS on controlled web:
https://t.co/mwhKg1JuwI='alert(document.domain)'
window.location=`http://vulnerable_.com/?<iframe/srcdoc="<a/id=debug%20href=g:eval(https://t.co/1z6D1qBoAl)><script/src=easy-eval.js></script>">`
This is amazing!
WordPress Plugin Update Confusion
https://t.co/KD5Ozloi9b
Overview of different vulnerabilities in Google's new web-based collaboration tool Threadit:
XSS, Clickjacking, ACL bypass, Info leak...
#BugBounty #InfoSec
https://t.co/m3dIaHsS77
Kubernetes disclosed a bug submitted by @javierprovecho: https://t.co/Fizur9VpQe - Bounty: $1,000 #hackerone #bugbounty
🎉 We've finally released my blog, which is now kinda redundant to an excellent Defcon talk by @matter_of_cat and @InsecureNature.
Luckily, there are a few additional bits of information there, so if you're interested in GCP Security, check it out!
https://t.co/N9mNSmIw0r
@bugpoc_official Solved it but I can't get it to work from https://t.co/8B7vBuNSxB :/
@h43z Solved! :D
I just published Exploiting WebSocket [Application Wide XSS / CSRF]
https://t.co/4SR3JaoQrV
#bugbountytips #security @Bugcrowd
Just published a new BugBounty writeup.
Go check it out!
https://t.co/6sgDqZqHGF
#bugbounty #cybersecurity #writeup
Getting all 32000 email addresses of every registered user on https://t.co/FewfIcLHkq’s Crisis Map thanks to IDOR and incremental IDs.
#BugBounty #InfoSec
https://t.co/6WFF5eLPZL
New version of https://t.co/55IZ1ga9CX is live! AAAA, CNAME support and much more. Go check it out!
https://t.co/pSQeGG92gw
@shodanhq Any news?
@0ktavandi The blind ssrfs thing really depends from target to target. Sometimes you might just be able to enumerate internal ports and sometimes you can even get rce but it really depends and it's probably much harder to exploit than "classic" ssrf
I just published my first blog post - SSRF via DNS rebinding
https://t.co/bLmWPloQ9k
#BugBounty
#NETSEC
#CyberSecurity
#ssrf
#dns_rebinding
Most Popular Users
Elon Musk 
@elonmusk
240.3M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.9M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.5M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.8M followers
KATY PERRY
@katyperry
87.3M followers
Taylor Swift
@taylorswift13
81.1M followers
Lady Gaga
@ladygaga
72.7M followers
Kim Kardashian
@kimkardashian
69.6M followers
Virat Kohli
@imvkohli
69.3M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.7M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
62M followers
CNN
@cnn
61.9M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.4M followers