Olivia
Online
dls
@putersarehard
dot dot slash enthusiast
Australia
Joined June 2021
524 Following
74 Followers
62 Posts
Pinned Tweet
My @securitytrails #reconmaster methodology/thoughts in a thread. I started somewhat late, many people already in the millions of hosts discovered. My first instinct was to automate the submission of Certstream data. 1/n
"Dad, what was it like playing CTFs before AI?"
Team Oceania is seeking sponsors for the 2025 International Cybersecurity Challenge!
Support top 🇦🇺🇳🇿 cyber talent and showcase your brand on the world stage.
Learn more: https://t.co/HLz27o0oKr or send me a message.
#cybersecurity #ICSC2025 #infosec
We’re stoked to announce that @sk8boardingdog – Australia’s top CTF team – are writing and hosting the BSides Canberra 2025 CTF! 🐶🛹💻
They’ve won our CTF 3 years running, and now they’re bringing their skills to make this year’s comp unforgettable.
https://t.co/0WLOMveHMG
Who to follow
elttam
@elttam
Expert-led penetration testing, supported by AI-assisted analysis, to uncover real weaknesses and strengthen systems against real-world threats.
Tanto Security
@TantoSecurity
Tanto Security is a leading provider of advanced offensive cyber security services to leading organisations across Australia, New Zealand and North America.
hashkitten
@hash_kitten
vulnerability research @assetnote // hacking // codegolf // ctf with 🛹🐶
New blog post: New Method to Leverage Unsafe Reflection and Deserialisation and gain RCE on Rails https://t.co/pc2ytyA1PM
The Fetch API supports Blob objects as request bodies, not just strings!
Blobs can omit a type, enabling cross-site POST requests without a Content-Type header.
Even with non-empty bodies, the Blob's data becomes the request body!
(credit: @lukejahnke)
New Blog post: DUCTF 2024 ESPecially Secure Boot Writeup
https://t.co/IS2wyn6LfZ
Our security researcher @hash_kitten found one of the most critical exploit chains in the history of @assetnote. Affecting 40k+ instances of ServiceNow, we could execute arbitrary code, access all data without authentication. You can read our blog here: https://t.co/2yTgn1NzhY
New blog post and tool release: plORMbing your Prisma ORM with Time-based Attacks
https://t.co/DfUfQR1yJq and
https://t.co/eHlEWIRJWc
Australia's largest online CTF competition now welcomes New Zealand in July 2024! With 4200+ users and 2000+ teams as of 2023, it aims to up-skill the next generation of Cyber Security Professionals. Prize eligibility now includes Aussie and NZ students!
#CTF #DownUnderCTF
Blog is live, for now there is a quick puzzle to get to the posts https://t.co/xI316Irhsu
New slides: Causing Funky Things in your NodeJS Servers by @GhostCcamm (Ruxmon)
https://t.co/KwM8wBg9ox
🎁 Source Code Disclosure in IIS 10.0! Almost.
There is a method to reveal the source code of some .NET apps. Here's how it works.
👉 https://t.co/Fo4tpkaHey
New blog post: PwnAssistant - Controlling /home's via a Home Assistant RCE
https://t.co/Qu1NZFA2Aq
Today we're releasing a public beta of Talkback, a smart infosec resource aggregator to help you keep up with news and research. Please visit https://t.co/y3ubhdeLwK and give it a try! We'll be releasing new features and improvements over time.
New blog post and tool: Cracking the Odd Case of Randomness in Java, by @josep68_
https://t.co/wH5Y2dnSJO
A few months ago, we reported a pre-auth Remote Code Execution #RCE vulnerability to @vBulletin. The exploitation of this unserialize() bug was tricky, as vBulletin classes are not deserialisable. Discover the exploitation in our latest blogpost:
https://t.co/6FDbtS4U8K
This is the technical writeup in how we found and exploited the CVE-2022-41343 (RCE via Phar Deserialisation in Dompdf <= v2.0.0). We presented this vulnerability at Ruxmon September and we are finally doing the public disclosure! I hope you like it ;-) https://t.co/DPgmK2ELXO
Wizards... https://t.co/SutpnCnt9k
Last Seen Users on Sotwe
Boys Gay
Seen from Mexico
Cody✨ 
Seen from United States
Gooner Bro 🤪 (100k)
Seen from Switzerland
@ ♕ديوث مرتي @♕
Seen from Algeria
Pateh 93
Seen from Malaysia
Lunna Alves Ts
Seen from Italy
Sahibe Ateş
Seen from Turkey
Floorentine¡¡ 🍅
Seen from Mexico
nude pussy
Seen from Italy
絵子sama2.0
Seen from Germany
Most Popular Users
Elon Musk
@elonmusk
240.3M followers
Barack Obama
@barackobama
119.2M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.5M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87.2M followers
Taylor Swift
@taylorswift13
81.1M followers
Lady Gaga
@ladygaga
72.6M followers
Kim Kardashian
@kimkardashian
69.6M followers
Virat Kohli
@imvkohli
69.2M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.6M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
61.9M followers
CNN
@cnn
61.9M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.3M followers