Security hall of fame: Google VRP • Microsoft • Telegram • Twitter • Facebook • Apple • Netflix

México
Joined August 2010
#writeup Google bug bounty: LFI on production servers in springboard.google.com – $13,337 USD Short story about why u must always check for dirs in 302 status pages because you will surprise that some directories listing will work omespino.com/write-up-google… #Bugbounty #infosec
30
375
13
923
Θmar Ξspino • retweeted
Releasing the third episode of Bug Bounty Redacted today. It's about some reports about hacking a swagger API & finding XSS, SQLi, WAF Bypass in a regional web application - invidious.fdn.fr/vaA6Sj7huWg
3
55
216
Show this thread
Θmar Ξspino • retweeted
100+ Linux commands and their explanation 🧵↓
67
768
27
2,426
Show this thread
Θmar Ξspino • retweeted
Multiple bugs chained to takeover Facebook Accounts which uses Gmail. ( $42k ) ysamm.com/?p=763
41
433
7
1,924
Θmar Ξspino • retweeted
curl is 24 years old, runs in some 10 billions installations world and now has a fair amount of sponsors. I'm proposing I no longer have to pay with my own money for the server and instead spend some of our fund on it: curl.se/mail/lib-2022-05/001…
58
266
50
2,687
Θmar Ξspino • retweeted
New Google VRP writeup "Launching a Supply Chain Counterattack Against Google and OpenSSF" for a bounty of $1,337 by @AlanCao5: codemuch.tech/2022/04/23/sup…
11
30
Θmar Ξspino • retweeted
I have created a lot of useful little hacking tools over the last few years, sometimes I tweet about them, sometimes I don't. Here's a list of some of the most useful ones, and a brief explanation of what they do! 🧵👇
54
343
9
1,226
Show this thread
Θmar Ξspino • retweeted
My colleagues @seanyeoh and @devec0 found some phenomenal vulnerabilities in Cloudflare Pages. I highly recommend you read about their adventures in pwning CI systems. There's a lot to learn from their research. blog.assetnote.io/2022/05/06…
4
95
6
277
Watching cowboy bebop again when suddendly... oh no.
3
Θmar Ξspino • retweeted
A few months ago, I collaborated with @HusseiN98D to find critical vulnerabilities in a bank. It involved finding a 0day in dotCMS. You can read about the discovery and exploitation process here: blog.assetnote.io/2022/05/03…
11
187
6
604
Θmar Ξspino • retweeted
Blogged about an SSRF vulnerability on a BBP that @thaivd98 and I recently exploited against EC2 IMDSv2 to exfiltrate AWS security credentials. You'll read how this new metadata endpoint works and takeaway on how to exploit CVE-2019-8451 against it. yassineaboukir.com/blog/expl…
11
104
1
272
Θmar Ξspino • retweeted
After 5 years of work, security.txt is officially an RFC. I am pleased to announce RFC 9116: rfc-editor.org/rfc/rfc9116. I would like to use this opportunity to thank those who made this possible. Thank you. ❤️
50
1,187
109
3,135
Show this thread
Θmar Ξspino • retweeted
At @assetnote, we found some critical vulnerabilities in VMWare Workspace One UEM. MDM solutions often are exposed to the external internet. Thousands of large enterprises were affected by these vulnerabilities. Read about the bugs we discovered here: blog.assetnote.io/2022/04/27…
10
93
3
292
Θmar Ξspino • retweeted
What happens when you combine hackers and phones? Phreaking? Social Engineering? Sure! Valid answers. What you didn't think of is web vulnerabilities. XXE. I found an XXE by phone call in a bug bounty program. Here's the story:
11
148
8
584
Show this thread
Θmar Ξspino • retweeted
▓▓▓▓▓░░░░░░░░░░ 30%
45
2,007
271
8,747
Θmar Ξspino • retweeted
I've taken on this fun side project to rebuild asnlookup.com and its API from scratch and am happy to be relaunching it now. It provides information on all registered ASNs and their associated IPv4/IPv6 so a lot of data processing went into it.
2
12
92
Show this thread