@bsky.app.profile.mrme.bsky.social@rss-parrot.net
I'm an automated parrot! I relay a website's RSS feed to the Fediverse. Every time a new post appears in the feed, I toot about it. Follow me to get all new posts in your Mastodon timeline! Brought to you by the RSS Parrot.
---
Hermetic Initiate. Exploring conscience and the nature of reality. I also hack things.
Site URL: bsky.app/profile/mrme.bsky.social
Feed URL: bsky.app/profile/did:plc:67adsz26qgkkhvvp5hdr6vkw/rss
Posts: 10
Followers: 1
https://bsky.app/profile/steven.srcincite.io/post/3lgd2zanzhc2a
Published: January 22, 2025 09:37
This is what I love about Chris, authenticity: https://muffsec.com/blog/abstaining-from-pwn2own/. Btw I couldn’t agree more with his conclusion about the event.
https://bsky.app/profile/steven.srcincite.io/post/3leuj46c47s2i
Published: January 3, 2025 21:14
https://youtu.be/a6EnyQ0Dy50?si=XfWJduQTuPked9oC
https://bsky.app/profile/steven.srcincite.io/post/3ldw4dbjpf22o
Published: December 22, 2024 19:06
These are some really nice blog posts regarding algo confusion bugs in JWT by @pentesterlab.com https://pentesterlab.com/blog/jwt-algorithm-confusion-code-review-lessons & https://pentesterlab.com/blog/another-jwt-algorithm-confusion-cve-2024-54150 nice…
https://bsky.app/profile/steven.srcincite.io/post/3ldjonhtkyc24
Published: December 17, 2024 20:29
S2-067 is a fantastic bypass of the patch for S2-066. It uses ONGL to re-write the upload filename property in order to bypass the filename path traversal checks. PoC: if the target bean is called "UploadFile" the your target parameter is…
https://bsky.app/profile/steven.srcincite.io/post/3ldhgwnw32c24
Published: December 16, 2024 23:05
…and what is your office? My office is that which is in the higher aspirant of the soul - Ma’at
https://bsky.app/profile/steven.srcincite.io/post/3lco5txux2s2d
Published: December 6, 2024 21:46
Here is a great follow up blog post to my blog Remote Code Execution with Spring properties written by Elliot Ward: https://snyk.io/articles/remote-code-execution-with-spring-boot-3-4-0-properties/
https://bsky.app/profile/steven.srcincite.io/post/3lcnzrsbtrk2d
Published: December 6, 2024 20:34
Here is a great follow up blog post to my blog Renote Code Execution with Spring properties written by Elliot Ward: https://snyk.io/articles/remote-code-execution-with-spring-boot-3-4-0-properties/
https://bsky.app/profile/steven.srcincite.io/post/3lcm5p67bl22d
Published: December 6, 2024 02:38
Shit posting on wastebook and having my family all triggered is the glory I get on a Friyay!
https://bsky.app/profile/steven.srcincite.io/post/3lbvaiktxrs2i
Published: November 26, 2024 23:57
I just wrote a new blog post! This is how I (ab)used a jailed file write bug in Tomcat/Spring. Enjoy! Remote Code Execution with Spring Properties :: https://srcincite.io/blog/2024/11/25/remote-code-execution-with-spring-properties.html
https://bsky.app/profile/mrme.bsky.social/post/3lbql2z2uas2f
Published: November 25, 2024 03:23
Trust me, the Chinese hack Spring apps harder than you: https://juejin.cn/post/6972564484720328718