celesian (@c3l3si4n) Twitter Tweets • TwiDoom

PagedOut

@pagedout_zine

4 months ago

Issue #4 is out – enjoy! pagedout.institute/?page=issues.p… Please RT and tell your friends :)

thumb_up_off_alt561

chat_bubble_outline5

repeat301

shareShare

Want to host your own subdomain database? Have you ever wanted to scrape all domains from TLS certificates directly from the source? Now it's as simple as ./crtdumper -o output.txt. Check crtdumper out at github.com/c3l3si4n/crtdu…

thumb_up_off_alt104

chat_bubble_outline0

repeat18

shareShare

celesian

@c3l3si4n

2 months ago

what 63$ on DigitalOcean gets you // vs what 50$ on Hetzner gets you

thumb_up_off_alt219

chat_bubble_outline9

repeat13

shareShare

celesian

@c3l3si4n

2 months ago

i love locking myself out of SSH by forgetting to do ufw allow 22

thumb_up_off_alt119

chat_bubble_outline12

repeat13

shareShare

Sonar Research

@sonar_research

2 months ago

🔥 XSS on any website with missing charset information? 😳 Attackers may leverage the ISO-2022-JP character encoding to inject arbitrary JavaScript code into a website. Read more in our latest blog post: sonarsource.com/blog/encoding-… #appsec #security #vulnerability

thumb_up_off_alt600

chat_bubble_outline7

repeat207

shareShare

celesian

@c3l3si4n

2 months ago

i wanna thank god, caffeine, 22sh, ippsec and 144hz screens

thumb_up_off_alt150

chat_bubble_outline10

repeat2

shareShare

celesian

@c3l3si4n

2 months ago

way simpler RCE than the one i’ve reported to pd

thumb_up_off_alt14

chat_bubble_outline1

repeat0

shareShare

Patrick Wardle

@patrickwardle

2 months ago

No surprises here, but CrowdStrike confirms Tavis Ormandy's analysis, that the bug was indeed not due to a NULL-pointer deference 🧠 ...but rather "an out-of-bounds memory read"

No surprises here, but <a href="/CrowdStrike/">CrowdStrike</a> confirms <a href="/taviso/">Tavis Ormandy</a>'s analysis, that the bug was indeed not due to a NULL-pointer deference 🧠 ...but rather "an out-of-bounds memory read"

thumb_up_off_alt1,1K

chat_bubble_outline23

repeat269

shareShare

celesian

@c3l3si4n

2 months ago

what the hell

thumb_up_off_alt10

chat_bubble_outline0

repeat3

shareShare

Matheus.

@adinazolam

2 months ago

CNEXT + CosmicSting (Magento XXE) exploit chain github.com/nospher3x2/cne… by ryan, @luk4c5 and NULL #bugbountytips #CosmicSting #CNEXT #projectdiscovery

thumb_up_off_alt17

chat_bubble_outline0

repeat5

shareShare

Rafael

@beescoitu

2 months ago

If you have been using Github for some time, there is a slight chance you might be leaking more than what you would like to through your contact information attached to your public commits (full name? personal/work email address?) I've created a simple "OSINT" tool that allows

thumb_up_off_alt32

chat_bubble_outline1

repeat9

shareShare

celesian

@c3l3si4n

2 months ago

Generative Adversarial Networks for Subdomain Enumeration dl.acm.org/doi/pdf/10.114…

thumb_up_off_alt12

chat_bubble_outline1

repeat2

shareShare

RyotaK

@ryotkak

2 months ago

I recently developed and posted about a technique called "First sequence sync", expanding James Kettle's single packet attack. This technique allowed me to send 10,000 requests in 166ms, which breaks the packet size limitation of the single packet attack. flatt.tech/research/posts…

thumb_up_off_alt772

chat_bubble_outline14

repeat241

shareShare

celesian

@c3l3si4n

25 days ago

Just got a new OffSec certificate via Accredible credential.net/113307054

thumb_up_off_alt133

chat_bubble_outline14

repeat4

shareShare

celesian

@c3l3si4n

13 days ago

I solved CWErdle for 2024-09-05! 🎉 CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Hints used: 2/10 Score: 3650 Can you beat my score? Play at lude.rs/CWErdle/

thumb_up_off_alt7

chat_bubble_outline0

repeat0

shareShare