Karan Saini

678 posts

Karan Saini

@Squeal

hacker; alum @cis_india, @hasgeek; blog at https://t.co/pXy5yRt8Jw

New Delhi, India Katılım Haziran 2008

989 Takip Edilen3.7K Takipçiler

Karan Saini retweetledi

tmctmt@tmctmt·2d

neat trick with mediafire: you can reveal uploader names for single files using mediafire[.]com/api/1.5/file/get_info.php?quick_key=file_id_goes_here

English

1.2K

51.7K

Karan Saini retweetledi

vx-underground@vxunderground·1d

GitHub, a company owned by Microsoft, was compromised. A GitHub employee browsing the VS Code marketplace, an asset owned and operated by Microsoft, inadvertently donated a malicious VS Code extension, which Microsoft offers guidance and best practices on to avoid

GitHub@github

1/ We are sharing additional details regarding our investigation into unauthorized access to GitHub's internal repositories. Yesterday we detected and contained a compromise of an employee device involving a poisoned VS Code extension. We removed the malicious extension version, isolated the endpoint, and began incident response immediately.

English

456

4.8K

361.3K

Karan Saini retweetledi

Narendra Modi@narendramodi·23 May

Massive hike in #petrol prices is a prime example of the failure of Congress-led UPA. This will put a burden of hundreds of crores on Guj.

English

2.9K

17K

19.8K

Karan Saini@Squeal·6d

@TirykB who is the chud guy

English

236

Tiryk.Lotus@TirykB·6d

Everything I’ve learned about that chud guy so far has been involuntary

English

233

Karan Saini@Squeal·6 May

@captn3m0 @inregistry btw, NIXI can just take over your domain on behalf of GoI. recent example: naavi.org/wp/nixi-exerci…

English

119

Nemo@captn3m0·5 May

So @inregistry seems to have suspended my primary domain without sending me a single email for allegedly an invalid whois. PSA: Never trust a country-TLD. .in has its esp worse because it doesn't allow whois privacy. But I had my home address in there.

English

Karan Saini@Squeal·14 Nis

@michaeloliver__ can non-modded clients be loaded into the map? :-)

English

1.9K

Michael Oliver@michaeloliver__·14 Nis

CoD4 Bot Warfare + mp_4nuketown on Xbox 360 codxenon.dev

English

739

80.3K

Karan Saini retweetledi

Zarrar Khuhro@ZarrarKhuhro·11 Mar

''When Small men begin to cast big shadows, it means that the sun is about to set.' - Lin Yutang

English

151

7.7K

44.7K

809.7K

Karan Saini@Squeal·5 Mar

Study flags inconsistent website-blocking practices by Indian internet providers thehindu.com/incoming/study…

English

1.9K

Karan Saini@Squeal·3 Mar

@txhno Yes, however, Cloudflare Warp is not available on the Google Play store or the Apple App Store in India.

English

639

txh@txhno·3 Mar

@Squeal does cloudflare warp bypass these?

English

648

Karan Saini@Squeal·3 Mar

@1440000bytes yes, they still provide consumer services

English

168

floppy.md@1440000bytes·3 Mar

@Squeal Is MTNL and BSNL used by anyone except government offices?

English

219

Karan Saini retweetledi

vrinda@vrinda_tulsian·2 Mar

A study supported by Internet Governance Project, Georgia Institute of Technology finds Indian ISPs have blocked 43k+ domains. Orders are confidential, users aren’t notified, & blocking is inconsistent (even gov.in affected). Details abt @Squeal 's project below:

ThePrintIndia@ThePrintIndia

India has currently blocked at least 43,000 domains. New study shows scale for the first time Vrinda Tulsian @vrinda_tulsian reports for ThePrint theprint.in/science/india-…

English

195

9.7K

Karan Saini@Squeal·2 Mar

@AnxKhn Supabase wasn’t blocked at the time these measurements were collected. About keeping the list updated: this is a point-in-time study, but please feel free to fork it and add to it.

English

653

Anas Khan@AnxKhn·2 Mar

@Squeal am I missing something or supabase/firebase is not in the csv? also, it would be great if we can contribute to the list and keep it updated.

English

888

Karan Saini@Squeal·2 Mar

Excited to share “Poisoned Wells,” which presents the largest point-in-time study of website blocking in India to date. I tested the blocking of 294 million apex domains across six Indian ISPs, sending 1.76 billion DNS queries in total.

English

546

2.3K

161.6K

Karan Saini@Squeal·2 Mar

@ni5arga thank you for reading :-)

English

319

nisarga@ni5arga·2 Mar

@Squeal impressive work, thanks for sharing this.

English

378

Karan Saini@Squeal·2 Mar

@shahitukda thank you aditi! :-)

English

340

aditi@shahitukda·2 Mar

@Squeal such good work. congratulations :)

English

367

Karan Saini@Squeal·2 Mar

@thedivtagguy thank you Aman :)

English

282

Aman Bhargava 📊@thedivtagguy·2 Mar

@Squeal Amazing work!

English

309

Karan Saini@Squeal·2 Mar

@0xAsm0d3us For Airtel, ACT, and Jio, using the resolvers configured by-default. For MTNL, You Broadband and Connect Broadband, using misconfigured, open resolvers operated by the ISP (not consumer networks).

English

441

Devansh (⚡, 🥷)@0xAsm0d3us·2 Mar

@Squeal @Squeal How the resolution of these was done? Using public resolvers?

English

959

Karan Saini@Squeal·2 Mar

@Ru_Afza @Rails_N_Roads Thank you!

English

303

ts rupaul@Ru_Afza·2 Mar

@Squeal @Rails_N_Roads This is amazing

English

385

Karan Saini@Squeal·2 Mar

@TheDankDel interesting. can you run an @OpenObservatory test on your phone?

English

1.1K

sayan@TheDankDel·2 Mar

@Squeal Slack also does not work when you are on bsnl mobile data

English

1.5K

Karan Saini@Squeal·2 Mar

@pranavdotexe @shantanugoel i unfortunately did not test blocking of subdomains, as that would have made the test list significantly larger and infeasible to query. since this is restricted to DNS, only domain-level blocks are visible.

English

1.7K