@drwetter I have tried semgrep, it founds basic things like usage of unserialise, exec, eval, include … but also a lot of useless / fp elements like md5 usage in some place where solid cryptography isn’t important. Using it with json output and some jq magic can be useful
For Christmas 2023, Root-Me has decided to thank its favorite hackers! 🥳
Two prize packages including XXL mouse pads, mugs, stickers, flags, and pins are up for grabs ! 🎁
To participate, it's as simple as :
- Follow @rootme_org
- RT 🔃 this post
- Being verified on the official Discord Root-Me
The two winners will be randomly selected on December 28th at 6 p.m. !
Good luck to everyone and happy holidays ! 🎅🤶
Hello😄,
I just published 3 App-Script challenges at @rootme_org that focus on Docker Escape🐳
You will learn how to use docker vulnerabilities in order to escape containers.
Thanks to the @rootme_org staff and contributors
Have fun !
With the commit https://t.co/rDcsn9XbVE hashcat supports Apple's Metal as new compute backend. Thanks to @gm4tr1x for the contribution! All hash-modes and all attack-modes support OpenCL, CUDA, HIP or Metal as compute backend.