Anurag

@csanuragjain

All views and post are my personal

Uniuse en agosto de 2010
0 Fotos ou vídeos Fotos e vídeos

Chíos

Bloqueaches a @csanuragjain

Estás seguro de que queres ver estes chíos? Ver os chíos non desbloqueará a @csanuragjain

  1. rechouchiou
    13 de set. de 2021

    Between the 3 Sept and 10 Sept, secure env vars of *all* public repositories were injected into PR builds. Signing keys, access creds, API tokens. Anyone could exfiltrate these and gain lateral movement into 1000s of orgs. 1/4

    46 respostas 1.656 rechouchíos 2.176 gústames
    Amosar este fío
    Amosar este fío
    Desfacer
  2. rechouchiou
    5 de xuño de 2021

    🥞 $2,000 🥞 Show some love to the team! To enter: ☑️ Follow ☑️ Follow ☑️ Retweet this post! 10 winners will get $200 in each! 📢 GO!

    11.683 respostas 35.758 rechouchíos 22.775 gústames
    Desfacer
  3. 15 de maio de 2021

    Need suggestion on any good script which can extract passwords/emails from a given long raw text file. Problem I am facing is credentials can be in any random variable like pass, pwd, p, password, auth etc.

    1 rechouchío
    Desfacer
  4. 2 de abr. de 2021

    35+ partners are now included in GitHub automated secret scanning. Full list at

    4 rechouchíos 1 gústame
    Desfacer
  5. 19 de dec. de 2020

    Changes to Code Search Indexing - Impact Git Recon😮😱😠

    Desfacer
  6. rechouchiou
    14 de dec. de 2020

    🎁 Merry X(SS)MAS! Hackers!🎄 Beginning today we are doing 12 swag-ful days of giveaways and challenges. Today's challenge is simple: spread the cheer of with a retweet of this tweet to be one of 12 researchers to get today's exclusive swag! ☃️

    46 respostas 506 rechouchíos 595 gústames
    Desfacer
  7. 13 de dec. de 2020

    Apart from GitHub, Gist, what other platforms are used for keeping large pool of codes from various developers. I wanted to created a tool for extracting secrets and wondering about the data sources other than Git having code search API

    1 gústame
    Desfacer
  8. 27 de maio de 2019

    Is it possible to perform regex searches on Github UI search? My aim is to discover secrets using regex patterns but I cannot find a way to perform regex search on UI

    Desfacer
  9. 19 de feb. de 2019

    This serialized payload can crash server trying to read it. The major thing is this payload works with latest JRE version as well. You need to be careful if you are trying to deserialize any user provided serialized file.

    4 rechouchíos 6 gústames
    Desfacer
  10. 28 de xan. de 2019

    Completed my tool which allows you to modify a compiled Java class file (allows you to change its equivalent smali code). This can help in testing java desktop application and can change behavior of pre-compiled classes

    7 rechouchíos 21 gústames
    Desfacer
  11. 22 de xan. de 2019

    Preparing a software for editing java class files. This will help in changing behavior of jar files...

    1 gústame
    Desfacer
  12. 11 de dec. de 2018

    Attacker blocks victim on Twitter, send abuse on victim tweet, victim can't see the abuse on his own tweet but rest of the world can. Marked Informative and expected behavior, still don't understand why?

    1 resposta 3 rechouchíos 6 gústames
    Desfacer
  13. 23 de nov. de 2018

    Anyone can still access the cname alias created in your cloudfront distribution. Accessing d**.cloudfront.net with Host header value as will give your public s3 bucket content.

    Amosar este fío
    Amosar este fío
    Desfacer
  14. 23 de nov. de 2018

    Assume you created cname entry "" in your cloudfront distribution, pointing to your s3 bucket. You forget to perform DNS mapping from your domain to this cloudfront distribution.

    1 resposta 5 rechouchíos 2 gústames
    Amosar este fío
    Amosar este fío
    Desfacer
  15. 16 de nov. de 2018

    Spoofing file extensions - HackerOne I observed an issue with the file upload processor at Hackerone. 1. Text file downloaded as HTML file 2. Batch file shown as image

    6 gústames
    Desfacer
  16. 4 de nov. de 2018

    1 rechouchío 2 gústames
    Desfacer
  17. 3 de nov. de 2018

    Learned something new: SSL pinning bypass on android emulator:

    10 rechouchíos 15 gústames
    Desfacer
  18. rechouchiou
    12 de dec. de 2017

    We have reached 150,000 subscribers on /r/ClashRoyale! In order to thank you guys for being such an awesome community, has given us a $150 gift voucher for the Supercell shop! To enter: simply follow + RT this tweet. Reddit post for more info:

    59 respostas 764 rechouchíos 686 gústames
    Desfacer
  19. 22 de nov. de 2017

    Made it to Facebook HOF :)

    1 rechouchío 2 gústames
    Desfacer
  20. 10 de nov. de 2017

    How caches got me good bounty from Twitter :)

    Desfacer

@csanuragjain aínda non chiou.

Parece que a carga tarda un chisco

É posible que o Twitter estea por riba da súa capacidade ou teña un impo momentáneo. Téntao de novo ou visita o Estado do Twitter para obter máis información.

    Tamén che pode gustar

    ·