18 Photos and videos
Found a medium severity path traversal in Velociraptor (CVE-2025-14728). Will have funny/embarrassing story about it soon.
Shoutout to Mike Cohen of Rapid7/Velocidex for building such an awesome tool and swiftly triaging the vuln/severity upon report
CVE-2025-14728 Rapid7 Velociraptor versions before 0.75.6 contain a directory traversal issue on Linux servers that allows a rogue client to upload a file which is written outside t… cve.org/CVERecord?id=CVE-202…
1
7
671
Also, big thanks to @ACEResponder for their work on RogueSliver - it was massively helpful while writing the PoC. Do check it out:
github.com/ACE-Responder/Rog…
7
36
5,537
chebuya retweeted
23 Dec 2024
vx-underground Black Mass Research Group presents: Minegrief.
tl;dr a computer worm that targets minecraft
github.com/blackmassgroup/mi…
19
43
552
39,940
I have hereby been declared GIGACHAD for the Minecraft malware I wrote for the @vxunderground JVM malware competition 🥰🥰
Do check out the Black Mass Research Group telegram as well!
t.me/blackmassresearch
23 Dec 2024
This is the contest winner :)
Ships with a 0day for Crafty controller. Huge thanks to @_chebuya.
Today I'm announcing Black Mass Research Group. Our goal is to make interesting malware for public study. Please enjoy our first project!
github.com/blackmassgroup/mi…
2
8
102
19,891
RT @bot59751939: This is the contest winner :)
Ships with a 0day for Crafty controller. Huge thanks to @_chebuya.
Today I'm announcing Bla…
24
1
14 Dec 2024
Yo, Microsoft, we need to talk. This is Notepad. Literally nobody asked for this...
1
48
522
60,215
chebuya retweeted
7 Nov 2024
🛠️ Sastsweep
A tool designed for identifying vulnerabilities in open source codebases at scale
It can gather and filter on key repo metrics such as popularity and project size, enabling targeted vulnerability research
It automatically detects potential vulnerabilities using @Semgrep
By @_chebuya
github.com/chebuya/sastsweep
2
9
3,710
chebuya retweeted
7 Nov 2024
📚 tl;dr sec 255
🤖 @ProjectZeroBugs AI finds bug in SQLite
☁️ New OSS: CloudTail, SkyScalpel @permisosecurity
🛣️ Auto-generate Terraform Secure Guardrails
📺 @SANSInstitute CloudSecNext Summit 2024 videos
🇨🇳 The TTPs Used to Neutralize China-Based Threats @SophosXOps
📊 Safer SCPs: Real-Time SCP Error Monitor @matthewdfuller
🛠️ sastsweep @_chebuya
and more!
tldrsec.com/p/tldr-sec-255
1
4
12
2,416
chebuya retweeted
5 Nov 2024
1
12
23
3,960
Here is running SASTsweep against HackerOne open source targets
It lets you open the semgrep finding in an HTML report, and from there you can open the affected section of code within GitHub/Github1s for further analysis
Tool: github.com/chebuya/sastsweep
SASTsweep is now open source. Happy hunting!
github.com/chebuya/sastsweep
5
20
2,220
SASTsweep is now open source. Happy hunting!
github.com/chebuya/sastsweep
3
43
157
15,641
Big thanks to @semgrep for making this tool possible and @pdiscoveryio for giving me inspiration
x.com/_chebuya/status/185197…
I ran semgrep on every open source target in scope on HackerOne with my tool, SASTSweep, here's what that looks like
Last teaser before tool release I promise
2
7
1,286
I ran semgrep on every open source target in scope on HackerOne with my tool, SASTSweep, here's what that looks like
Last teaser before tool release I promise
Check out this tool I've been developing. It's like httpx, but instead of finding interesting web servers to hack on, it's for finding interesting code repositories to audit.
In this example I am spidering the "command-and-control" topic and running semgrep on every repository. It can also display information such as the number of stars or the language composition of a repository.
4
48
290
43,788
Check out this tool I've been developing. It's like httpx, but instead of finding interesting web servers to hack on, it's for finding interesting code repositories to audit.
In this example I am spidering the "command-and-control" topic and running semgrep on every repository. It can also display information such as the number of stars or the language composition of a repository.
7
41
237
59,951
wow, these CAPTCHAs have been getting weird recently ^_^
3
50
715
101,111
Not very polite behavior from a "security researcher" and colleague who re-worded my writeup for the BYOB RCE and phrased the announcement like it was their own discovery.
x.com/_chebuya/status/182423…
How I discovered and exploited an Unauthenticated RCE in BYOB (Build Your Own Botnet), an open-source post-exploitation framework for students, researchers and developers with close to 9k stars on GitHub!
blog.chebuya.com/posts/unaut…
github.com/chebuya/exploits/…
7
23
265
38,108
How I discovered and exploited an Unauthenticated RCE in BYOB (Build Your Own Botnet), an open-source post-exploitation framework for students, researchers and developers with close to 9k stars on GitHub!
blog.chebuya.com/posts/unaut…
github.com/chebuya/exploits/…
> claims to be for students, universities, researchers etc
> ransomware and XMRig installer functionality being developed
> FAQ helps "students" failing to install XMRig properly
🤔😂
2
45
181
65,155