Olivia
Online
thinkycx
@thinkycx
China
Joined March 2017
221 Following
50 Followers
79 Posts
Here goes nginx-quicburst (CVE-2026-42530), a new RCE in Nginx discovered by our security agent VEGA and demonstrated by Nebula Security.
This is only the third NGINX vulnerability since 2014 to receive NGINX’s “major” severity rating. If you use Nginx 1.31 with QUIC enabled, we recommend upgrading to the latest version.
This bug has been patched in the latest Nginx release. We will publish the technical writeup, including the ASLR bypass, on July 18 together with the previous nginx-poolslip writeup.
CVE-2026-42530 NGINX RCE
经过 @kevinzhow 确认,我们的挚友左耳朵耗子 @haoel 已于周六晚突发心梗辞世
陈皓是个有原则、正直、风趣、聪明的人,他对 IT 行业作出了不可磨灭的贡献
他一生有很多成就,而我愿意最后以一起打游戏的好友记住他
R.I.P.
EDR or SIEM flagging your Linux commands when reading sensitive files like /etc/shadow? Read the file from the raw disk to avoid simple detections. #redteamtips #hacking
Who to follow
Dlive
@D1iv3
Security Researcher. 2022 MSRC MVR. Windows Active Directory Security / Cloud Security / Web Security. Tweets are my own.
Atum
@Atuml1
Fundamental Security Lead at @XuanwuLab, views are my own| AI enthusiast,AI security expert | Co-founder of @r3kapig | Blackhat, DEFCON, CCS, S&P, EuroS&P, AAAI
Sndav
@SndavBai
Security Researcher at Xuanwu Lab. Focusing on Red Teaming & Maldev. Retired from Dubhe.
这年代最讽刺的事是一一
人不知疲倦地996重复劳动,
让自己变成机器
机器不断地训练学习提升智能,
让自己变成人
@Volexity As the article mentioned: "then search for the entire HTTP body of these specific requests throughout the entire memory sample", how did you search the body in the memory and where are the body stored in? Is there any more details?
demo https://t.co/QHyK0evKdb
Don't drown in a sea of vulnerability reports: Get the notifications you need to make your projects more secure every day. https://t.co/QqXvrqQds8
Confirmed! The Devcore team used an authentication bypass and a privilege escalation to take over the #Exchange server. They win the full $200,000 and 20 Master of Pwn points.
OMG !! Rumors are real😱😱 Immunity CANVAS 7.26 exploit pack is leaked. More than 800 1days and weaponized spectre exploit.
The Linux (e)BPF bytecode verifier, the gift that keeps on giving! Wrote an exploit for CVE-2020-27194. :-) Shout out to @scannell_simon for the bug and @_manfp for exploitation strategy inspiration!
There is a 0day in VMware fusion for MacOS that allows any user to get root permissions. The bug is public and the fix for cve2020-3950 is incorrect, thus the weakness is a public 0day. It is a very straight forward LPE on any macOS with fusion installed.
Feel it is too expensive to renew a domain at GoDaddy?
Just call them and you will get a discount at about 75%. :)
Every week, our twitter account @PentesterLab publishes a list of articles worth-reading. This is the list of all the articles for 2019. Enjoy!! https://t.co/dhssbpEmOL
Several people asked which essays are my favorites:
https://t.co/yFNe1NW55B
https://t.co/HdUSjESNGl
https://t.co/ASjOx0YHUu
https://t.co/XNW3ov6yXQ
https://t.co/Ww2vBKYMt9
https://t.co/GQ6IECES02
https://t.co/jOQbXXji14
https://t.co/52xghlUODR
https://t.co/oMGkyfOQ4H
Inspiration comes from watching videos here https://t.co/41ezwEPegw
How to learn English? The best way is to use it. Dip yourself in the English environment such as English books, twitter, youtube, Quora and it will help you to use it everyday. What will happen if you have made the English your second mother language? Open a new world!
如何看待任正非回应华为 HR 胡玲事件的邮件?
@sunichi17 所以遇到bug了
#pwntools Maybe here is a tip to use pwntools(python3).
Give it up(python3-pwntools): https://t.co/frYYobb6SK
and use pwntools(branch dev3): https://t.co/wgjo8aK54d
As I just found a bug in python3-pwntools https://t.co/Xyu3gC35X3 and can't pull an issue as it is read-only now
Most Popular Users
Elon Musk 
@elonmusk
240.6M followers
Barack Obama
@barackobama
119.2M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
110.5M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.6M followers
NASA
@nasa
92.2M followers
Justin Bieber
@justinbieber
90.9M followers
KATY PERRY
@katyperry
87.6M followers
Taylor Swift
@taylorswift13
81.4M followers
Lady Gaga
@ladygaga
73M followers
Virat Kohli
@imvkohli
69.8M followers
Kim Kardashian
@kimkardashian
69.8M followers
YouTube
@youtube
68.7M followers
Bill Gates
@billgates
63.8M followers
Neymar Jr
@neymarjr
62.5M followers
The Ellen Show
@theellenshow
62.4M followers
CNN
@cnn
61.9M followers
X
@x
60.8M followers
Selena Gomez
@selenagomez
60.7M followers