Joined October 2021
Shrager S Gervais retweeted
15
25
Shrager S Gervais retweeted
Wi-Fi (802.11) Hacking: Automating Wi-Fi Hacking Across Multiple AP's and Security Protocols with wifite #wifihacking #wifite #cyberwarrior hackers-arise.com/post/wi-fi…
23
56
Shrager S Gervais retweeted
Firstly make a Full port scanning then run it @pdnuclei @0xmahmoudJo0 command: rustscan -a 'hosts.txt' -r 1-65535 | grep Open | tee open_ports.txt | sed 's/Open //' | httpx -silent | nuclei -t ~/nuclei-templates/ #bugbountytips #BugBounty #CyberSecurity
4
137
2
331
Shrager S Gervais retweeted
80
130
Shrager S Gervais retweeted
Microsoft Sentinel provides a CVE-2021-44228 Log4Shell Research Lab Environment for testing and learning more about the vulnerability github.com/Cyb3rWard0g/log4j…
1
78
3
263
Shrager S Gervais retweeted
🔥 bbrf domains | httpx -silent | xargs [email protected] sh -c 'python3 log4j-scan.py -u "@"' 🔥 Scan log4j using BBRF and log4j-scan 💡 github.com/fullhunt/log4j-sc… #bugbounty #log4j #bugbountytips
3
176
1
393
Shrager S Gervais retweeted
Someone has built a huge regex to cover many obfuscated versions of the log4shell payloads Really nice, I'll test it and update my gist Repo github.com/back2root/log4she… Test regex101.com/r/KqGG3W/3
19
272
6
836
Shrager S Gervais retweeted
New CobaltStrike version on Raidforums in 3 .. 2 .. 1 ..
Cobalt 4.5 is live! New options include process injection improvements,sleep mask updates, and UDRL kits, evasion improvements, and command history updates. cobaltstrike.com/blog/cobalt…
7
23
3
119
Shrager S Gervais retweeted
Proof of Concept Exploit for ManageEngine ServiceDesk Plus CVE-2021-44077 github.com/horizon3ai/CVE-20… #Pentesting #Exploit #CVE #CyberSecurity #Infosec
35
1
60
Shrager S Gervais retweeted
Log4Shell-Detector 0.10.0 - we've restructured the repo so that users can use it as module in e.g. Jupyter notebooks - I've refactored the test cases to ship the payloads in base64 encoded form (no FPs with files on disk) - new Github test workflows github.com/Neo23x0/log4shell…
2
147
1
408
Shrager S Gervais retweeted
#BugBounty #cybersecurity Fuzz header body and path to find Log4j2 jndi injection github.com/zhzyker/logmap
6
123
4
332
Show this thread
Shrager S Gervais retweeted
Bug Bounty Tip :: Log4j Vulnerability Cheatsheet 🔹 How It Works 🔹 Test Environments 🔹 Challenges & Labs (Rooms) 🔹 Where Payloads can be Injected 🔹 What Information can be Extracted 🔹 How To Identify (Services & Scanners)
16
479
9
1,154
Show this thread
Shrager S Gervais retweeted
CVE-2021-44228 log4j2 Waf Bypass github.com/woodpecker-appsto…
2
47
2
189
Shrager S Gervais retweeted
ADenum - A Pentesting Tool That Allows To Find Misconfiguration Through The The Protocol LDAP And Exploit Some Of Those Weaknesses With Kerberos ift.tt/3yiro23 #cybersecurity #bugbountytips #hacking #tools
111
1
263