Happy!
Joined November 2019
- Tweets 147
- Following 376
- Followers 4,507
- Likes 704
27 Photos and videos
May 26
Chinese-linked actors are targeting edge devices across Southeast Asia, leveraging DoH for C2 communications and large-scale DNS hijacking via iptables.
See details:
EN: qiita.com/Y4er/items/0b60717…
CN: qiita.com/Y4er/items/549cfca…
1
21
64
6,485
5 Mar 2024
This is friend’s analysis of the SolarWinds SEM RCE I discovered.
My detailed analysis report of SolarWinds Security Event Manager AMF Deserialization RCE (CVE-2024-0692), with two methods to achieve RCE
exp10it.io/2024/03/solarwind…
xz.aliyun.com/t/14044
6
54
12,334
8 Dec 2023
公开了一些文章
VMware vROPS RCE of java bean y4er.com/posts/vmware-vrops-…
VMware vROPS 文件读取到反序列化RCE y4er.com/posts/vmware-vrops-…
Apache Geode/VMware GemFire Deserialize RCE y4er.com/posts/apache-geode-…
Trend Micro Mobile Security 认证绕过/文件上传/文件包含 RCE y4er.com/posts/trend-micro-m…
7
47
188
20,818
14 Nov 2023
SysAid On-Prem Software CVE-2023-47246
Reproduced
9 Nov 2023
We've recreated a proof-of-concept for the SysAid CVE-2023-47246 remote code execution and compromise -- blog post coming ASAP😜
Big thanks to @gleeda @HuskyHacksMK @DaveKleinatland @calebjstewart and the whole @HuntressLabs crew helping dig into this one!
2
4
49
17,718
9 Sep 2023
fuck js
10
3,955
4 Sep 2023
CVE-2023-39476 Inductive Automation Ignition JavaSerializationCodec Deserialization RCE
xz.aliyun.com/t/12813
4
52
134
23,160
29 Aug 2023
After two days, I finally reproduced the CVE-2023-39476 Inductive Automation Ignition JavaSerializationCodec Deserialization RCE vulnerability submitted to ZDI by @steventseeley
4
14
109
21,385
Y4er retweeted
8 Aug 2023
Cookieless DuoDrop: IIS Auth Bypass & App Pool Privesc in ASP .NET Framework (CVE-2023-36899)
soroush.me/blog/2023/08/cook…
#Appsec #bugbountytips
6
177
425
68,346
28 Jul 2023
Actually, I can still use the `init` attack vector like this
Reproducing CVE-2023-38646: Metabase Pre-auth RCE
blog.calif.io/p/reproducing-…
CC @peterjson @testanull
1
4
36
10,542
27 Jul 2023
fuck js,fuck frontend.
27 Jul 2023
It's work. 👌 job done✅ hard to use not my business 🙅♂️
6
3,393
14 Jun 2023
Great article! But I think you are missing a very critical part, CVE-2023-20887 is actually a patch bypass for CVE-2022-31702.
This is an analysis article I wrote, please read it and correct me.
xz.aliyun.com/t/12608
13 Jun 2023
🚨 Here is the #Exploit and technical detail for the CVE-2023-20887 Pre-Authenticated Remote Code Execution in #VMWare vRealize Network Insight.
summoning.team/blog/vmware-v…
27
94
25,909
8 Jun 2023
Finally released the patch, patch it immediately!
7 Jun 2023
Today we released a new Critical Severity VMware Security Advisory. Check out vmware.com/security/advisori…. #VMware
1
6
2,759
3 Jun 2023
need one MOVEit license activation key :(
Most of the time in security research is spent looking for product installation packages and trial certificates.
1
12
4,424
26 May 2023
MXsecurity Command Injection and Hardcoded Credential Vulnerabilities
y4er.com/posts/mxsecurity-co…
9
41
5,542
Y4er retweeted
28 Apr 2023
It's TGIF and we have a new blog post by our team member, @testanull
Microsoft Exchange Powershell Remoting Deserialization leading to RCE (CVE-2023-21707)
Thanks to all the other team members for reviewing it as well.
starlabs.sg/blog/2023/04-mic…
2
66
188
41,051
Y4er retweeted
6 Apr 2023
1
44
130
24,182
25 Mar 2023
CVE-2023-28432 Minio information leakage leads to RCE
y4er.com/posts/minio-cve-202…
1
56
163
23,988