Author: Aamer Shah

How WashingtonPost approved my content

Post author By Aamer Shah
Post date 5th February 2020
1 Comment on How WashingtonPost approved my content

Cutting the long story short; WashingtonPost’s official website suffers from Open URL redirect security vulnerability. Washingtonpost.com would enable my website with either fake news of phishing link after the injection of arbitrary URL. There was a caveat and with a small URL and a Browser trick; I was able to make washingtonpost.com to redirect an […]

Uncategorised

Protected: SandVine Zeroday vulnerabilities

Post author By Aamer Shah
Post date 28th March 2019

There is no excerpt because this is a protected post.

Uncategorised

Remote Shells | one way connection

Post author By Aamer Shah
Post date 27th September 2018
8 Comments on Remote Shells | one way connection

Breach the formidable NAT and proxies The goal of this new technique is to illustrate the simplicity of exploit execution for command and control capabilities. Though there are several techniques. But all are prevented by robust configurations and patched systems. Ingredients Client Malware Internet facing webpage Scenario Here we are assuming that the victim has […]

February 27, 2021 at 02:49PM
■■■■□ Unprotected Private Key Allows Remote Hacking of PLCs. https://www.ehackingnews.com/2021/02/unprotected-private-key-allows-remote.html https://t.me/cKure/6984
February 27, 2021 at 12:30PM
■□□□□ Hunting Headers for SSRF. https://speakerdeck.com/aditya45/hunting-headers-for-ssrf https://t.me/cKure/6983
February 26, 2021 at 10:25PM
■■□□□ Queries to find solarwinds presence. https://www.microsoft.com/security/blog/2021/02/25/microsoft-open-sources-codeql-queries-used-to-hunt-for-solorigate-activity/ https://t.me/cKure/6982