Nguyen The Duc

@ducnt_

Just another web warrior | Security Researcher | Security Engineer | CTF player && | Bug bounty hunter

Hồ Chí Minh, Việt Nam  
ducnt.net
Bergabung Februari 2017
11 Foto dan video Foto dan video

Tweet

Anda memblokir @ducnt_

Yakin ingin melihat Tweet ini? Melihat Tweet tidak akan membuka blokir @ducnt_

  1. Tweet Sematan
    8 Jan

    My first `double kill` at : Kudos to WordPress security team with very quickly and awesome work 🥰

    1 balasan 15 suka
    Batalkan
  2. me-Retweet
    10 Jul 2018

    Neatly bypassing Content Security Policy. Why 'unsafe-inline' is almost always a full-fledged XSS.

    5 balasan 130 retweet 253 suka
    Tampilkan utas ini
    Tampilkan utas ini
    Batalkan
  3. me-Retweet
    6 Feb

    DOM Clobbering strikes back by

    2 balasan 86 retweet 209 suka
    Batalkan
  4. me-Retweet
    6 Feb

    Thanks to research, new stuff are being released for soon - as for the features, payload minimization, raw cmd command, and auto command encoding within JSON/XML messages are being released after the PR review by

    1 balasan 33 retweet 110 suka
    Batalkan
  5. me-Retweet
    6 Feb

    Nice by

    12 retweet 58 suka
    Batalkan
  6. me-Retweet
    5 Feb

    Checkra1n for Windows first demo!!🔥🔥 Coming Soon!!

    85 balasan 311 retweet 1.678 suka
    Tampilkan utas ini
    Tampilkan utas ini
    Batalkan
  7. me-Retweet
    3 Feb

    Here's my write-up for ’s CTF challenge!

    5 balasan 27 retweet 103 suka
    Batalkan
  8. me-Retweet
    3 Feb

    CVE-2020-7471: SQLI in Django: django.contrib.postgres.aggregates.StringAgg aggregation function was subject to SQL injection, using a suitably crafted delimiter. FIX:

    54 retweet 128 suka
    Batalkan
  9. me-Retweet
    31 Jan

    , , and I are starting a new security blog. In our first write-up, we will discuss the impact of "SameSite by default" and how it affects web app sec. Feel free to request future topics you would like us to cover.

    9 balasan 203 retweet 404 suka
    Batalkan
  10. me-Retweet
    31 Jan

    Someone dropped a PHP zero-day on GitHub. Talked to the PHP team last night. Bug requires local foothold to exploit, so not usable for remote attacks. Also, this is the second exploit for this "disable_functions bypass" in the last few months.

    5 balasan 122 retweet 190 suka
    Batalkan
  11. me-Retweet
    28 Jan

    .Net being open-source makes tracking these things cool. I just hope GitHub adds code navigation support for .net code soon as well. credit for the bug goes to of course.

    7 retweet 17 suka
    Batalkan
  12. me-Retweet
    28 Jan

    Also for the iPhone 11 Pro Max, iOS 13.3.1 beta3 Jailbreak

    217 balasan 616 retweet 2.566 suka
    Batalkan
  13. me-Retweet
    24 Jan

    Here are my (updated) slides from for my talk "Owning The Cloud Through SSRF & PDF Generators" with Chris Holt from . Big thank you to , , , , , and !

    39 retweet 136 suka
    Batalkan
  14. me-Retweet
    24 Jan

    RDP Vuln CVE-2020-0609 & CVE-2020-0610 RD Gateway PoC (DoS) by Scanner by

    94 retweet 197 suka
    Batalkan
  15. me-Retweet
    23 Jan

    The Bezos forensic report is not very good. The forensic analysis should be done by who at least have the relevant experience. The MP4 file should contain the exploit (if it is CVE-2019-11931). The exploit trigger should be visible with ffmpeg

    13 balasan 190 retweet 487 suka
    Tampilkan utas ini
    Tampilkan utas ini
    Batalkan
  16. me-Retweet
    22 Jan

    This is a pretty good reminder that any invasive heuristics in the browser - be it XSS filters or privacy protections - often cause more problems than they address:

    3 balasan 38 retweet 107 suka
    Batalkan
  17. me-Retweet
    21 Jan

    Learn how an authenticated RCE vulnerability in < 5.2.4 allows attackers to bypass hardening mechanisms. Read more ->

    21 retweet 39 suka
    Batalkan
  18. me-Retweet
    18 Jan

    Just published a blog post talking about some iOS kernel framebuffer research I’ve been looking at over the last couple weeks. Have a read if you’re interested :)

    4 balasan 131 retweet 416 suka
    Tampilkan utas ini
    Tampilkan utas ini
    Batalkan
  19. me-Retweet
    18 Jan

    RDP to RCE: When Fragmentation Goes Wrong AKA: What we know about CVE-2020-0609 and CVE-2020-0610.

    4 balasan 293 retweet 585 suka
    Batalkan
  20. me-Retweet
    16 Jan

    "CVE-2020-0601: the ChainOfFools attack explained with PoC"

    5 retweet 17 suka
    Batalkan
  21. me-Retweet
    15 Jan

    CVE-2020-5504 SQLI in phpMyAdmin: A malicious user could inject custom SQL in place of their own username when creating queries to this page fix:

    2 balasan 124 retweet 251 suka
    Batalkan

@ducnt_ masih belum menge-Tweet.

Pemuatan tampaknya berlangsung agak lama.

Twitter sedang kelebihan beban atau mengalami sedikit masalah. Coba lagi atau kunjungi Status Twitter untuk informasi lebih lanjut.

    Mungkin Anda juga suka

    ·