parrot409

352 posts

parrot409

parrot409

@parrot409

ctfer | webpwn @superguesser

Katılım Ocak 2020
366 Takip Edilen1.5K Takipçiler
parrot409 retweetledi
Rebane
Rebane@rebane2001·
i made a new game called js crossword where you have to solve it by literally writing javascript code that eval()'s into the correct values! check it out if you're into ctfs or wanna challenge your javascript skills hope y'all have fun playing it <3
Rebane tweet mediaRebane tweet mediaRebane tweet media
English
23
40
460
46.6K
parrot409 retweetledi
Ark
Ark@arkark_·
Cross-Site ETag Length Leak blog.arkark.dev/2025/12/26/eta… I just posted the author writeup for impossible-leak in SECCON CTF 14 Quals. As far as I know, this is a new XS-Leak technique! The ETag header can become a side channel :)
English
4
99
356
43.5K
parrot409 retweetledi
Ark
Ark@arkark_·
Not only can you pollute `then`, but you can also pollute `return`! Both behaviors are specified in the ECMAScript spec.
Ark tweet media
English
34
73
903
64.5K
parrot409 retweetledi
Josh
Josh@boredpentester·
You can sell the Whatsapp 0-click RCE for $5m but then how do you buy back your integrity and morals when it's used against a dissident (for example)? I can kind of see the $1m argument here.
English
12
9
152
21.1K
parrot409 retweetledi
OtterSec
OtterSec@osec_io·
NEW: OAuth misconfigurations show how common dev settings can lead to account takeovers. Our second deep dive breaks down real cases where overlooking differences between desktop and mobile environments left SDKs, exchanges, and wallets open to exploits. osec.io/blog/2025-10-1…
English
2
19
74
8.4K
parrot409 retweetledi
Kévin GERVOT (Mizu)
Kévin GERVOT (Mizu)@kevin_mizu·
@albinowax @tincho_508 That's great news! It reminds me of a Gunicorn bug (now patched) I found, where HEAd was treated as HEAD. Since it returned a Content-Length without a body (as expected for HEAD), it caused confusion with proxies that didn’t expect a HEAD request!
English
1
1
11
2K
parrot409
parrot409@parrot409·
I challenged myself to remember a library that isnt listed in this website but I failed.
English
2
0
7
973
parrot409
parrot409@parrot409·
My ctf memory is getting weak?
English
1
0
1
596
parrot409
parrot409@parrot409·
@arkark_ oh I meant Icesfont, the challenge solver.
English
1
0
1
196
Ark
Ark@arkark_·
@parrot409 Yes. I used credentialless at #L29" target="_blank" rel="nofollow noopener">github.com/arkark/my-ctf-…
English
1
0
1
228
parrot409
parrot409@parrot409·
@RenwaX23 > if you load an ftp:// URI it will open Finder app and connects you to the server then automatically mount all the files into /Volumes/ That's so smart wow. Linux/Ubuntu doesn't support it but It gave me some ideas.
English
0
1
0
464
Renwa
Renwa@RenwaX23·
@parrot409 Nice bug, couldn't you use ftp:// or other remote schemes like smb:// dav:// nfs:// for bypassing the path in case of a different distro/setup. This works in Mac not sure about others bugcrowd.com/disclosures/f7…
English
1
1
9
870
parrot409
parrot409@parrot409·
CVE-2025-3155 writeup It's about exfiltrating files using the GNOME Help application. It isn't severe as it requires some user interaction, but it's a fun bug. gist.github.com/parrot409/e970…
English
2
20
95
8.8K