Hack Defcon @HackDefcon23
https://t.co/KEGtc08XPe Hacking News HackDefcon.com United States Joined July 2023-
Tweets97
-
Followers8
-
Following66
-
Likes1
#Dontmiss #Hotstuff #News #attacks #cyberespionage State-sponsored hackers know enterprise VPN appliances inside out helpnetsecurity.com/2024/02/28/hac…
US Government Urges Cleanup of Routers Infected by Russia’s APT28 securityweek.com/us-government-…
@owasp You attempted to access a category that is not currently available.
Cybersecurity Tools By Category Information Gathering: >Nmap >Shodan >Maltego >TheHavester >Recon-NG >Amass >Censys >OSINT Framework >Gobuster Exploitation: >Burp Suite >Metasploit Framework >SQL Map >ZAP >ExploitDB >Core Impact >Cobalt Strike Password Cracking: >John The Ripper >Hydra >Hashcat >OPHCrack >Medusa >THC-Hydra >Cain & Abel Vulnerability Scanning: >OpenVAS >Nessus >AppScan >LYNIS >Retina >Nexpose Software Engineering: >GoPhish >HiddenEye >SocialFish >EvilURL >Evilginx Forensics: >SluethKit >Autopsy >Volatility >Guymager >Foremost >Binwalk >Wireshark Wireless Hacking: >Aircrack-NG >Wifite >Kismet >TCPDump >Airsnort >Netstumbler >Reaver Web Application Assessment: >OWASP ZAP >Burp Suite >Nikto >ZAP >WPScan >Gobuster >App Spider
Match & Replace is a very underrated feature of Burp Suite. I think more people should try to employ it in their test flow. My favorite rules: ✅ Simply replace false with true. This usually helps to unlock many hidden features of targeted web apps. Note in some cases it could also break the app, so be cautious here. ✅ Header manipulation. Sometimes it's a good idea to experiment with Referer, Origin, and X-Forwarded-For headers to bypass some weird WAF restrictions. I like to use localhost, or 127.0.0.1 as a value for these headers. ✅ Replacing session tokens. This one is good for testing IDORs. Alternatively, you could use the autorepeater plugin. ✅ HTTP parameter values. Sometimes after testing for a while, you could find some parameters like userRole. You could try different values, like changing from user to admin, etc. #bugbounty #infosec #hacking
Did a little writeup of the CSP bypass I reported to PortSwigger. It might be interesting to anyone who saw the disclosed report and wonders if CSP bypasses are the new ripe low-hanging fruit! joaxcar.com/blog/2024/02/1…
5 Week Program: Let's Hack Some Stuff! youtube.com/watch?v=6owmJw… @NahamSec
For the fourth consecutive year, Microsoft has paid out more than $13 million through its bug bounty programs. securityweek.com/microsoft-paid…
Northern Ireland's police force accidentally shared the names and work locations of every member of staff in a data breach it said would be of 'significant concern' to officers who are often targeted by militant groups reut.rs/45prsMV
Hackers exploit Salesforce email zero-day for Facebook phishing campaign computing.co.uk/4121489/
Microsoft Teams chats are being hijacked by Russian hackers to spy on your business techradar.com/pro/microsoft-…
Cybercriminals train AI chatbots for phishing, malware attacks #Security #ArtificialIntelligence bleepingcomputer.com/news/security/…
Everyone should be asking their doctor. "Was AI used to determine my diagnosis, and has a human reviewed the results?"
An AI system developed by Google researchers can decide when to trust AI-based decisions about medical diagnoses, and when to refer to a human doctor for a second opinion. newscientist.com/article/238275…
Technical sites offering free learning 💪 kaggle.com SQL, ML, DL, Data Science freecodecamp.org Front-end, Back-end, Python, ML matlabacademy.mathworks.com AI/ML, DL learn.microsoft.com .NET, Azure, GitHub, SQL Server cognitiveclass.ai Blockchain, Data Science, AI, Cloud, Serverless, Docker, Kubernetes mygreatlearning.com/academy/learn-… Data Science, Cloud Computing, DevOps, PM spoken-tutorial.org C, C++, Java, Python, JavaScript alison.com 4000+ Free Courses
✅ CISA release a collection of Active Directory, #phishing, mobile #technology, system, service, #web application, and #wireless technology weaknesses that may be discovered during a #Pentesting. github.com/cisagov/pen-te… #cybersecurity #cyberattacks
ChatGPT went from 97.6% to 2.7% accuracy in answering math problems over the course of 3 months, according to a Stanford study
Attackers Exploit Citrix Zero-Day Bug to Pwn NetScaler ADC, Gateway: bit.ly/44xrTEN by @jaivijayan
Taresoez @Taresoezeuvw
83 Followers 7K Following
Mr.QorQor @MrQorQor
3 Followers 720 Following
MR_NETWORK @MR_NETW0RK
1K Followers 64 Following 💻White Hat hacker🛡 🔥Bug Hunter💵 Nooob:))))💯 𝕂𝕟𝕠𝕨 𝕥𝕙𝕖 𝕨𝕙𝕚𝕥𝕖, 𝕓𝕦𝕥 𝕕𝕠𝕟'𝕥 𝕚𝕘𝕟𝕠𝕣𝕖 𝕥𝕙𝕖 𝕓𝕝𝕒𝕔𝕜!!
H1 Disclosed - Public... @h1Disclosed
10K Followers 2 Following User friendly unofficial HackerOne public disclosures, keeps you updated about the recently disclosed bugs. Made With ♥ By Hackers For Hackers. - @rohsec
Ben Sadeghipour @NahamSec
248K Followers 1K Following Cofounder @hackinghub_io | Advisor @CaidoIO. I hack companies and make content about it. #NahamCon organizer. ex @hacker0x01🇮🇷
MR_NETWORK @MR_NETW0RK
1K Followers 64 Following 💻White Hat hacker🛡 🔥Bug Hunter💵 Nooob:))))💯 𝕂𝕟𝕠𝕨 𝕥𝕙𝕖 𝕨𝕙𝕚𝕥𝕖, 𝕓𝕦𝕥 𝕕𝕠𝕟'𝕥 𝕚𝕘𝕟𝕠𝕣𝕖 𝕥𝕙𝕖 𝕓𝕝𝕒𝕔𝕜!!
MrNetwork @encrypt_wizard
7K Followers 2K Following Builder AI Enthusiast DeFi Researcher 5x Hackathon Winner
Chris Churilo @Chris_Churilo
358 Followers 1K Following loves art, design, music, puppy dogs and SUP- oh and cool projects using vector databases like Retrieval Augmented Generation, & Product recommenders.
Alberto Fuentes (e/ac... @AlberFuen
781 Followers 3K Following Founder of @daertml. Training LLaMAs as a hobby (and no profit yet).
Zilliz @zilliz_universe
2K Followers 4K Following Building vector database for enterprise-grade AI. Company behind @milvusio. 🧑🚀Join our team: https://t.co/oZA7g1XgZ2🚀 🔗Find us: https://t.co/Xynh3Xx30X
Milvus @milvusio
5K Followers 5K Following The most widely adopted open source vector database for #AI #OpenSource #VectorSearch 💬Discord: https://t.co/PHnys5NWdR 🔗Find us: https://t.co/BbTzkz9bHN
Info Junkie @toutontoast
147 Followers 468 Following Libertarian socialist. Peaceful protest absolutist.
PortSwigger @PortSwigger
107K Followers 23 Following We are a leading provider of software and learning on web security. We make @Burp_Suite and @WebSecAcademy.
PortSwigger Research @PortSwiggerRes
121K Followers 7 Following Web security research from the team at @PortSwigger
Shodan @shodanhq
112K Followers 2 Following Monitor your external network, search the Internet of Things and perform empirical market research. You can also find us on https://t.co/nPLFbFy8R5
The Daily Beast @thedailybeast
1.3M Followers 1K Following Independent. Intelligent. Influential. Send tips to [email protected] 🚨@beastobsessed Your pop culture hub 🚨@thelookertdb Everything beauty and wellness
bugcrowd @Bugcrowd
199K Followers 6K Following The leading provider of crowdsourced cybersecurity solutions purpose-built to secure the digitally connected world...Unleash Ingenuity™
Newsweek @Newsweek
3.4M Followers 589 Following Newsweek provides in-depth analysis, news and opinion about international issues, technology, business, culture and politics.
DEFCONWarningSystem @DEFCONWSALERTS
300K Followers 93 Following DWS is a private intelligence organization that has been analyzing the threat of nuclear war since 1984 and offers an alert code to the public.
Metasploit Project @metasploit
253K Followers 182 Following Official account of the Metasploit Project, part of the @rapid7 family. Mastodon: @[email protected] Slack: https://t.co/ZOLPDG2O2s
Pentester Academy @SecurityTube
198K Followers 14K Following We help professionals acquire the skills, knowledge and certificates by teaching defense through offense to advance their careers in cybersecurity.
Web Security Academy @WebSecAcademy
141K Followers 36 Following Free web security training from @PortSwigger
SANS Institute @SANSInstitute
193K Followers 412 Following SANS is the most trusted and by far the largest source for information & cyber security training, certification and research in the world.
ATT&CK @MITREattack
117K Followers 515 Following MITRE ATT&CK® - A knowledge base for describing the behavior of adversaries. Replying/Following/Re-tweeting ≠ endorsement. @ https://t.co/wt46ArkZVt
OWASP® Foundation @owasp
216K Followers 525 Following We improve the security of apps with community-led open source projects, 260 local chapters, and tens of thousands of members worldwide. Famous for OWASP Top 10
BuzzFeed News @BuzzFeedNews
1.2M Followers 5K Following Got something that needs 👀? Send us tips here: https://t.co/DLxLgeEYzq. Support our reporting: https://t.co/Dd5TqEPQEb
The Hacker News @TheHackersNews
1.6M Followers 2K Following The #1 trusted source for cybersecurity news, insights, and analysis — built for defenders and trusted by decision-makers.
CISA Cyber @CISACyber
298K Followers 73 Following Part of @CISAgov, we respond to major incidents, analyze threats, and exchange critical cybersecurity information with partners around the world.
The Cyber Security Hu... @TheCyberSecHub
194K Followers 387 Following World's Premier Cyber Security Portal™ #cybersecurity #infosec #hacking #tech 📧 [email protected]
CySecurity News @EHackerNews
120K Followers 13 Following CySecurity News is one of the leading IT security news portal delivers news on #security #hacking #Exploit #CyberCrime & #infosec #Hacker. *
Infosecurity Magazine @InfosecurityMag
248K Followers 860 Following The only magazine dedicated to the strategy and technology of information security, delivering critical business and technical information for IT professionals.
SecurityWeek @SecurityWeek
228K Followers 3K Following #Cybersecurity News, Threats, Insights and Expert Analysis: #SCADA #Infosec #ICS Coverage
Burp Suite @Burp_Suite
138K Followers 14 Following Burp Suite is the leading software for web security testing.
Black Hat @BlackHatEvents
425K Followers 2K Following The World's Premier Technical Cybersecurity Conference Series
Exploit Database @ExploitDB
217K Followers 9 Following The Exploit Database – ultimate archive of #Exploits, #Shellcodes & Security #Papers/#eZines
Dark Reading @DarkReading
352K Followers 49 Following One of the most widely read and trusted cybersecurity news sites, providing IT security professionals informed insights into the latest news and trends.
HackerOne @Hacker0x01
337K Followers 3K Following HackerOne makes security continuous. We unite AI and human insight through a unified platform to expose risk and eliminate it.
Hacking Articles @hackinarticles
298K Followers 479 Following House of Pentesters Join us: https://t.co/Y6XOlSOA92
Kali Linux @kalilinux
400K Followers 26 Following Kali Linux, The Most Advanced Penetration Testing Distribution. Ever. @[email protected]
CNN @CNN
61.9M Followers 1K Following It’s our job to #GoThere and tell the most difficult stories. For breaking news, follow @CNNBRK and download the CNN app ➡️ https://t.co/7PQD7o6fLw
The White House 46 Ar... @WhiteHouse46
8.5M Followers 6 Following This is an archive of a Biden administration account, maintained by the National Archives and Records Administration.
BBC Breaking News @BBCBreaking
50.1M Followers 3 Following Breaking news alerts and updates from the BBC. For news, features, analysis follow @BBCWorld (international) or @BBCNews (UK). Latest sport news @BBCSport.
Reuters @Reuters
25.9M Followers 1K Following Top and breaking news, pictures and videos from Reuters. For breaking business news, follow @ReutersBiz. Our daily podcast is here: https://t.co/KO0QFy0d3a
New York Post @nypost
3.9M Followers 10K Following Breaking news, features and more from the NY Post. Follow ➡️ @pagesix, @nypmetro, @nypostbiz, @nypostsports, @nypfashion, @nypostopinion, @vrtpod, @_nynext
The Wall Street Journ... @WSJ
21.6M Followers 1K Following Sign up for our newsletters and alerts: https://t.co/QevH0DLQi8 | Got a tip? https://t.co/iXIigdPjEZ | For WSJ customer support: https://t.co/DZgH9n53qg
The New York Times @nytimes
53.5M Followers 846 Following News tips? Share them here: https://t.co/ghL9OoYKMMTrends for United States
You might like
