Profile picture
Elliot Alderson
@fs0c131y
, 6 tweets, 2 min read Read on Twitter
Hi @narendramodi,

A security issue has been detected on your website. An anonymous source uploaded a txt file containing my name on your websites in realtime. He also have a full access to your database. You should contact me in private and start a security audit ASAP!

Regards,
PS: The vulnerability is working for the staging subdomain but also for the main website

PS1: I didn’t upload this file, I’m not that stupid.

PS2: The source deleted the file on my request just after I see it
Wow you are fast @IndiaToday indiatoday.in/technology/new…
Contact has been done with their team
I had a nice chat with the narendramodi.in team. They will take the appropriate measures and solve the issue
After investigation by the team, the issue was affecting only the staging subdomain which is not their current staging server
Missing some Tweet in this thread?
You can try to force a refresh.

Like this thread? Get email updates or save it to PDF!

Subscribe to Elliot Alderson
Profile picture

Get real-time email alerts when new unrolls are available from this author!

This content may be removed anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

More from @fs0c131y see all

Profile picture
Elliot Alderson
@fs0c131y
With more than 100,000,000 downloads ES File Explorer is one of the most famous #Android file manager.
The surprise is: if you opened the app at least once, anyone connected to the same local network can remotely get a file from your phone
Technically, everytime a user is launching the app, a HTTP server is started. This server is opening locally the port 59777. On this port, an attacker can send a JSON payload to the target
You can find the proof of concept on this Github repo github.com/fs0c131y/ESFil…
Read 5 tweets
Profile picture
Elliot Alderson
@fs0c131y
In 1981, the Primrose fails on a beach of the North Sentinel Island, pushed by a typhoon. You can still see the wreckage on Google Map, in a creek, in the northwest. The crew was saved only by a helicopter operated by the Indian Navy.
Exact coordinates on Google Maps. Open the link, this Island is wonderful! google.com/maps/place/Nor…
Awesome article in French about the North Sentinel Island from @lemondefr lemonde.fr/international/…
Read 3 tweets
Profile picture
Elliot Alderson
@fs0c131y
I have a @Frida question: How to deal with a HashMap? I'm intercepting a Java method, "this" has a Hashmap in his attributes. I want to print the content of this HashMap cc @oleavr @enovella_
cc @NowSecureMobile 👋
cc @fridadotre
Read 3 tweets

Related threads

Profile picture
Anonymous🏴
@YourAnonCentral
#Anonymous has re-initiated #OpSudan, Anons requested to assist in taking down government online infrastructure, bypassing internet restrictions, and create mapping applications to record protests and atrocities. #Sudan_revolts #SudanUprising #sudanvoices #مدن_السودان_تنتفض
Anons joining #OpSudan, expect heavy push back from Russia government hackers. #Sudan has recently signed major mining, oil refinery agreements as well as military cooperation with Moscow.
#Sudan_revolts #SudanUprising #sudanvoices #مدن_السودان_تنتفض
sudantribune.com/spip.php?artic…
#OpSudan Update: An estimated 300 #Sudan govt websites and associated domains have been taken offline and/or infiltrated by Anonymous in massive cyber attack against #Bashir Regime. List: hastebin.com/acolilixac.sql
#Sudan_revolts #SudanUprising #sudanvoices #مدن_السودان_تنتفض
Read 4 tweets
Profile picture
Anonymous Scandinavia🌐#SafePassage⏳#NoExpulsion
@AnonScan
#Anonymous has published documents which it claims have unearthed a massive UK-led psyop to create a "large-scale information secret service" in Europe – all under the guise of countering "Russian propaganda."

(scribd.com/document/39219… )
rt.com/news/444737-uk…
...
Clandestine UK Operation “Integrity Initiative”,- a "large-scale information #secretservice" with the purpise to "counteract Russian propaganda" and allowing the #UK to meddle in other states’ domestic affairs.

sputniknews.com/europe/2018112…
...

Meddling playbook: #UK runs covert network to 'counter #Russia'.

#PsyOp

#Anonymous

Read 3 tweets
Profile picture
Anonymous
@YourAnonCentral
We are hackers, we are anarchists, we are curious. 🏴#Anonymous #AnarchoHackerManifesto
We like to know how things work. We like to invent, modify and improve technologies like any other hacker. We do it without the aim of money. 2/
As hackers we do it for knowledge and to satisfy our curiosity, and we decided to use it in a way to build a better world. 3/
Read 25 tweets
Profile picture
JoanneDavis
@JoanneDavis
May 23rd – 2018
Part I – The FISA Court Grants The Authority, Not The Ability…
theconservativetreehouse.com/2018/05/23/par…

1) There is a meeting scheduled tomorrow between key congressional oversight committee heads (Nunes, Gowdy etc.) and leadership of the FBI (Director Wray),
2) DOJ (Edward O’Callaghan) and ODNI (Dan Coats). The meeting was set up by White House Chief of Staff John Kelly, and the purpose of the meeting is to come to some agreement on access to documents being withheld by the DOJ, DOJ-NSD and FBI.
3) However, amid the ongoing debate over spies & informants used by the CIA & FBI to conduct political surveillance, there’s an aspect of the ongoing investigation that seems to be entirely overlooked.

On January 7th, 2016 the Inspector General of the National Security Agency,
Read 25 tweets
Profile picture
emma healey
@emmafromtoronto
Hi everybody! I know I said I was off this website until September but I'm about to tweet....a long thing. Apologies in advance, and TW for assault, abuse, Concordia-related stuff.
So. Story time! Way back in 2014, I wrote an essay (under the guidance of living genius @haleymlotek) called "Stories Like Passwords." The piece was about a relationship I had with a professor while I was in undergrad at Concordia.
You can read it here, but the tl;dr is that our relationship was built on an imbalance of power, and that it involved emotional abuse, physical assault and rape. The piece focuses on a few events from that time, but there were way more I didn't include. thehairpin.com/2014/10/storie…
Read 42 tweets
Profile picture
Kristen Hanley Cardozo
@KHandozo
Hi. History nerd here. 👋🏻 I’m seeing some creepy takes on adults having sex with teens as historically normal, and that’s only kinda true.
I have a fun lecture I’ve done a few times on eighteenth-century British marriage.
The first thing I do is ask my listeners how old they assume the average woman in the early-18thC was on her first marriage.
Read 29 tweets

Trending hashtags

#Turkish #Anonymous #Video #مدن_السودان_تنفض #MAGA #SaudiLobby #Elections2019 #UN #IBelieveChristine #Gulen #ACCESS #AnonFamily #मंदिर_की_करो_तैयारी #राम #FakeNewsMedia #SaudiGov #OIC #Trumpville #JenniferRubin #FalseFlag #HR #NeverAgain #OpKavanaugh #OsamaBinLaden #RightTime

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member and get exclusive features!

Premium member ($3.00/month or $30.00/year)

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!