0xacb
LightNews LightNews
0xacb.com
0xacb
@0xacb.com
1.4K followers 98 following 210 posts
Hacker grinding for L1gh7 and Fr33dφm, straight outta the cosmic realm. Co-founder @ethiack.com https://0xacb.com
0xacb.com
Posts Media Videos Starter Packs
0xacb.com
0xacb @0xacb.com · 6h
You can also use https://github.com/0xacb/recollapse to find potential new vectors 🥷
GitHub - 0xacb/recollapse: REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications
REcollapse is a helper tool for black-box regex fuzzing to bypass validations and discover normalizations in web applications - 0xacb/recollapse
github.com
2
0xacb.com
0xacb @0xacb.com · 6h
Looking into a potential SSRF or OR but the server checks against a URL whitelist?

Try the backslash trick! Due to a difference in URL specifications, some parsers will treat '\' the same as '/', while others will not.

Here's an example payload: https://<attacker-url>\@<whitelisted-url>/
1 1
0xacb.com
0xacb @0xacb.com · 1d
Tomorrow I'll be speaking at https://lisbonai.xyz

We're building faster than ever with AI. But are we building securely?

I'll show how agents can perform penetration testing and introduce Hackian: an autonomous agent that identifies vulnerabilities before attackers do.
3
Reposted by 0xacb
agarri.fr
Nicolas Grégoire @agarri.fr · 4d
www.agarri.fr/blog/archive...
Traceroute-like HTTP scanner | Agarri : Sécurité informatique offensive
www.agarri.fr
2 5
0xacb.com
0xacb @0xacb.com · 5d
Just had an amazing time working with Shopify in Toronto 🍁

Thanks @hacker0x01.bsky.social for organizing such an incredible event and bringing awesome researchers together.

#togetherwehitharder #h1416 #shopify #hacking #goleafs
0xacb.com
0xacb @0xacb.com · 6d
If you found a dangling DNS record, you might be able to take control of it 👀

Be sure to check https://github.com/EdOverflow/can-i-take-over-xyz, which has an extensive list of vulnerable services and guides on how to claim them.
GitHub - EdOverflow/can-i-take-over-xyz: "Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records.
"Can I take over XYZ?" — a list of services and how to claim (sub)domains with dangling DNS records. - EdOverflow/can-i-take-over-xyz
github.com
2
0xacb.com
0xacb @0xacb.com · 8d
Modern websites use a lot of intermediary servers - caches, load balancers, proxies, and so on. You can try to send the 'Max-Forwards' header with your request to limit the amount of servers it will reach. It's defined in HTTP specs primarily for TRACE and OPTIONS methods, though.
1 4
Reposted by 0xacb
ethiack.com
Ethiack @ethiack.com · 10d
🚨BsidesLisbon CTF Quals starts now!
🔓Join at: quals.bsideslisbon.org

#CTF #BSidesLisbon
1 1
0xacb.com
0xacb @0xacb.com · 13d
Recon tip: Run xnl-h4ck3r's waymore on the target you're testing. It searches for URLs from multiple sources, the Wayback Machine, Common Crawl, URLScan and more. It also provides a lot of options to filter your results.

Check it out here 👇
GitHub - xnl-h4ck3r/waymore: Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal & Intelligence X!
Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan, VirusTotal & Intelligence X! - xnl-h4ck3r/waymore
github.com
1
0xacb.com
0xacb @0xacb.com · 14d
Found an XSS but got blocked by the CSP?

https://cspbypass.com has a compiled list of ways to bypass the Content-Security Policy. Check out the video below 👇
1 6 6
0xacb.com
0xacb @0xacb.com · Oct 2
Thanks @hacker0x01.bsky.social for the amazing LHE!

Had the chance to work with TikTok and OKX and found some cool vulns, including two 0days. Will try to publish a write up once they're fixed!

Also, big congrats to the new MVH champion @corraldev.bsky.social for the huge mic-drop at this event 🤯
2
0xacb.com
0xacb @0xacb.com · Sep 30
Need to search through JSON output?

Make JSON greppable with @tomnomnom's gron 👇

GitHub - tomnomnom/gron: Make JSON greppable!
Make JSON greppable! Contribute to tomnomnom/gron development by creating an account on GitHub.
github.com
1
0xacb.com
0xacb @0xacb.com · Sep 28
On my way to @hacker0x01.bsky.social #h165 to pop some shells on TikTok and OKX ✈️
4
0xacb.com
0xacb @0xacb.com · Sep 25
#HackAIcon is finally here! 🚀
1
0xacb.com
0xacb @0xacb.com · Sep 24
How to extract endpoints from JS using @pdiscoveryio's katana 👇
1 1
0xacb.com
0xacb @0xacb.com · Sep 18
Just one week to go until hackAIcon in Lisbon! 🤖🇵🇹

Can't believe tickets have officially sold out already!

Thank you to everyone that has supported the event 🙏

I can't wait to see you all there!
0xacb.com
0xacb @0xacb.com · Sep 16
If you need a list of trusted resolvers, e.g. to be used with puredns for active enumeration, @trick3st has a great one.

Just run this: 
⌨️ curl https://raw.githubusercontent.com/trickest/resolvers/refs/heads/main/resolvers-trusted.txt -O

More stuff at👇
https://github.com/trickest/resolvers
0xacb.com
0xacb @0xacb.com · Sep 15
If you look at the AI-generated code below, you may notice that path traversal is prevented via basename functions.

Can you still exploit it?

Try here 👉 https://ai4eh.ethiack.ninja
0xacb.com
0xacb @0xacb.com · Sep 12
The Hack the Agent challenge is finished.

GG to all the hackers who played! We hope you enjoyed it.

We will leave it running for those who still want to play with it at https://hacktheagent.com

Stay tuned on @ethiack socials for more challenges.
0xacb.com
0xacb @0xacb.com · Sep 10
More of these 🔥 scripts 👇
dotfiles/scripts at master · tomnomnom/dotfiles
.vimrc, .bashrc etc. Contribute to tomnomnom/dotfiles development by creating an account on GitHub.
github.com
1
0xacb.com
0xacb @0xacb.com · Sep 10
Get git-dump here:
dotfiles/scripts/git-dump at master · tomnomnom/dotfiles
.vimrc, .bashrc etc. Contribute to tomnomnom/dotfiles development by creating an account on GitHub.
github.com
1 2
0xacb.com
0xacb @0xacb.com · Sep 10
This one-liner by @tomnomnom.com finds all Git repos, creates a git-objects/ folder for each one and dumps every object (commits, trees, blobs, tags) into files named by their hash.

Effectively exporting the raw Git database into human-readable files, repo by repo!
1 4
0xacb.com
0xacb @0xacb.com · Sep 8
Bypassing WAFs with traditional payloads is getting harder.

Here's how clever payload splitting can bypass them 👇

Bypassing WAFs for Fun and JS Injection with Parameter Pollution
Technical deep dive into bypassing a strict Web Application Firewall using HTTP Parameter Pollution, leveraging multi-parameter payload splitting to achieve JavaScript injection and evade detection.
blog.ethiack.com
2
0xacb.com
0xacb @0xacb.com · Sep 5
Some thoughts from @rez0__ on the future of bug bounty and AI 🔥

As someone working on hackbots, I agree that human + AI symbiosis will likely be more effective than either alone.

This Is How They Tell Me Bug Bounty Ends
Exploring the transformation and future of bug bounty hunting with automation and AI.
josephthacker.com
1 4
0xacb.com
0xacb @0xacb.com · Sep 2
Want to put your AI model hacking skills to the test?

See if you can solve all the challenges in our Hack The Agent challenge!

Try it at: https://hacktheagent.com
1