Yesterday, an old friend sent me an Instagram DM asking me for help for a contest. The "custom link" was a bit weird as it didn't have any path or URL params and when accessing I confirmed it was phishing as there was a fake Instagram login there.
Thread of how I hacked it👇
Queda poco más de un mes para mi lab "BUGBOUNTY EN LA VIDA REAL" en @rootedcon donde veremos cositas de hacking web para todos los públicos, desde vulns básicas a escenarios más complejos todo sacado de entornos reales. Plazas aún disponibles en:
https://t.co/xkY3qefejh
}++'*ODD+}z/**)v+C'&y~vCx&$D{,##B}&,*zTx&,'&%RK[HJIj_
Hint: 21
You need the hint to solve this
It's 15x free "Full house bundle" with all my courses :3 Good luck
If i reach 30 000 followers within the next 5 days, i will make my burp suite course AND owasp web top 10 courses free for 24 hours <3
Let's see if we can make that , doesn't seem too unrealistic of a goal, right?
☕️☕️My coffee break is over, i have to get back to work but while i do, for 2 hours you can grab this course free:
https://t.co/fSJ7YLmkHQ
ONLY VALID FOR 2 HOURS
Se acaba de publicar el report con toda la info de CVE-2017-11885, exploit para Windows detectado por un miembro del equipo de Red Team de Deloitte. #morecoming