I built CloudClaim: a CLI to check and claim dangling cloud hostnames with minimal proof resources.
It supports various subdomain takeover services in Azure and AWS.
https://t.co/LJOCDW3IX8
On December 11, We reported a AWS token leaked on a public repository belonging to marriot infrastructure which had SES service with verified domain of @marriot.com on December 12 @Hacker0x01 closed the report as n/a saying https://t.co/0suiUzOdqH is explicitly out of scope:
I built PluginPwn - an AI-powered pipeline that turns a CVE ID into a verified exploit for WordPress plugins in minutes.
CVE lookup → plugin download → AI PoC → Docker lab → working exploit
26/35 CVEs exploited (74% success)
https://t.co/k8WW9tI8Qd
We are at B-Sides London on Saturday the 14th December! Be sure to come say hello!
We're also in the lucky position of having some tickets to give away - we'll randomly pick 5 lucky winners who retweet this post!
#BSidesLDN2024
I’m quite used to the cruelty students can face when they apply for a US visa but this one broke me. We offered admission to a stellar, talented & hardworking student. After months of work and hundreds of dollars, an embassy officer saw him for 5 mins & said no. why? …
June giveaway! We are giving away 2 seats of our amazing Azure Application Security course and lab.
Follow us, Like and Retweet this to participate. 2 random winners will be selected on July 1 2023.
Learn how to attack web applications and cloud databases in #Azure. Also includes the CAWASP certification.
#AppSec #infosec
https://t.co/tPTqLbxAjK