Olivia
Online
shmoul
@shm0ul
21 year old full-time bug bounty hunter from Finland
Joined May 2023
96 Following
842 Followers
9 Posts
@ArchAngelDDay Congrats! Best of luck, although I'm certain you'll do great
@renniepak Shouldn't have mentioned SMB in the earlier reply π
It's not really a good way to go unless you're stealing NTLM creds
@renniepak Use a webdav server instead. SMB is such a pain and so inconsistent outside a local network.
@renniepak You should be able to RCE by hosting a webdav / SMB server and using an url like file://host-ip/share/path/to/file.exe
Windows does however prompt the user about running an external program, but if the user has e.g java installed you can use a .jar file with no warnings.
Who to follow
mhmd berro (badcracker) 
@badcrack3r
23 Years old. Researcher at hackerone. Known as badcracker. Listed at more than 100 companies hacker's hall of fame.
Matt Brown
@nmatt0
Founder & Principal Consultant @ Brown Fine Security | IoT Security Researcher | Soli Deo Gloria | I Run Arch BTW
Simon
@sim0nsecurity
2025 Microsoft MVR-2024 Q1/2/3/4/MVR | 2023 H1-4420. Vulnerability researcher @msftsecresponse,@Hacker0x01 and @intigriti,I like pwning,together we hit harder
@NahamSec Full time on bug bounty here
@Oddvarmoe Also this may not be exactly on topic but you can also specify the streams in the directory and file:
c:\temp:$I30:$INDEX_ALLOCATION\file.exe::$DATA
@Oddvarmoe c|/test/file.exe (works in file URIs and somewhere else I think? not sure so maybe not a proper path)
\??\c:\temp\file.exe
\??\UNC\localhost\c$\temp\file.exe (UNC thing also works with \\?\ and \\.\)
@NahamSec @Hacker0x01 @alicanact60 @ajxchapman Thanks for the shout out! Let's find some more crazy bugs in Vegas
Recently had the pleasure of participating in my second @Hacker0x01 LHE, #h14420. We actually ended up winning the bonus for the best desktop bug on Zoom with @NahamSec and @ajxchapman!
Huge thanks to them and everyone else involved with the event!
Last Seen Users on Sotwe
guswayne
AmatΓΆr tΓΌrk porno
Seen from Turkey
𫧠luna luxe π«§
Seen from Turkey
Jonybimboo
Seen from Singapore
Niko Setiawan
Seen from Netherlands
Limon ama Sulu π
Seen from Turkey
Ψ΄ΩΩ
Ψ§Ψ‘ Ψ§ΩΨΉΩΩΨ―
Seen from Algeria
Leo PhαΊ‘m
Seen from Vietnam
Can Yarar
Seen from Turkey
karafelek10
Seen from Turkey
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.3M followers
Barack Obama
@barackobama
119.2M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.5M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87.2M followers
Taylor Swift
@taylorswift13
81.1M followers
Lady Gaga
@ladygaga
72.6M followers
Kim Kardashian
@kimkardashian
69.6M followers
Virat Kohli
@imvkohli
69.2M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.6M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
61.9M followers
CNN
@cnn
61.9M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.3M followers