Home
Acknowledgements
Hacking Events
Public Profiles
Background education
Resources
Talks
Home
Acknowledgements
Hacking Events
Public Profiles
Background education
Resources
Talks
Miguel Santareno
Bug Bounty Disclosures:
Improper Access Control on Media Wiki allows an attacker to restart installation on DoD asset
Time-Based SQL Injection on Portuguese National Cyber Security Centre (CNCS) asset
RXSS on https://equifax.gr8people.com on Password Reset page in the username parameter
SQL Injection on EDP subdomain
System Error Reveals SQL Information in DoD subdomain
Local File Inclusion in multiple subdomains of the Ministry of Defense of Portugal
Padding Oracle ms10-070 in the a DoD website
Unencrypted __VIEWSTATE parameter in a DoD website
Cross Site Request Forgery in auth in https://auth.ratelimited.me/
POST XSS in https://www.khanacademy.org.tr/ via page_search_query parameter
SharePoint exposed web services in mtn group subdomain
Information Disclosure FrontPage Configuration Information /_vti_inf.html in https://www.mtn.co.za/
Information Disclosure Microsoft IIS Server service.cnf in a mtn website
Exploits:
EventPrime <= 4.0.4.3 - Missing Authorization to Unauthenticated Private or Password-Protected Events Disclosure
id4Portais <= V.2022.837.002a - HTML Injection
EventON (Free < 2.2.7, Premium < 4.5.5) - Admin+ Stored Cross-Site Scripting
EventPrime < 3.3.6 - Unauthenticated Event Access
EventON <- 2.2 - Authenticated (Admin+) Stored HTML Injection
EventPrime < 3.2.0 - Reflected XSS
EventPrime < 3.2.0 - Reflected HTML Injection on keyword parameter
EventON < 2.2 - Admin+ Stored XSS
EventON < 2.1.2 - Unauthenticated Event Access
EventON < 2.1.2 - Unauthenticated Posts Export via IDOR
Elementor <= 3.5.5 - Iframe Injection
Nyron 1.0 - SQLi (Unauthenticated)
Archeevo 5.0 - Local File Inclusion
CVEs:
CVE-2024-8369
CVE-2024-40317
CVE-2024-39037
CVE-2024-37669
CVE-2024-35322
CVE-2024-25814
CVE-2024-25812
CVE-2023-40819
CVE-2023-6447
CVE-2023-6046
CVE-2023-6005
CVE-2023-5238
CVE-2023-4388
CVE-2023-4250
CVE-2023-2796
CVE-2023-3219
CVE-2022-4953
CVE-2022-23865
CVE-2022-23377
OSINT:
¿PHOINT? to solve OSINT Challenge
Geolocating Past Hackerone Live Hacking Event
[0x53414D58] The Meet Challenge - OSINT Challenge
OSINT Dojo Student Badge quiz - 02 Instaquiz by SECTOR035
OSINT Dojo Ronin Badge Quiz - 03 FacebookFind by SECTOR035
OSINT Dojo Student Badge - Reverse Search Whois for email
OSINT Dojo Ronin Badge - Reverse Image Search technique
OSINT Dojo Samurai Badge - OSINTDojo Sakura TryHackMe Room
OSINT Dojo Samurai Badge - Google Dorking/Hacking
OSINT Dojo Daimyo Badge - Basic stuff to check on Tracelabs missing people capture the flag
OSINT Dojo - OSINT challenge week 09/06/2021 - cryptowallet
OSINT Dojo - OSINT challenge week 09/20/2021 - Reverse Image Search
OSINT Dojo - OSINT challenge week 01/31/2021 - Ransomware
OSINT Dojo Shogun Badge - OSINT Tricks
OSINT Dojo - OSINT challenge week 02/22/2022 - korean airport
OSINT Dojo - OSINT Dojo - OSINT challenge week 05/02/2021 - Defacement
Using Facebook OCR to find stolen cars
OSINT Dojo - OSINT challenge week 06/06/2022 - Crypto Heist
OSINT Dojo - OSINT challenge week 07/18/2022 - MikroTik Cryptojacking
Darknet:
Difference between Darknet, Deep Web and Clearnet
OSINT Dojo - OSINT challenge week 10/18/2021 - Darknet Favicon Search
Openbugbounty:
Cross Site Script angular payloads
Google Dorks to find open redirects
List off basic Cross site script playloads
Payloads for all type off web attacks
WordPress basic auditing
Hack the box:
HackTheBox - shocker
HacktheBox - Mirai
Tryhackme:
tryhackme - inclusion
tryhackme - sudo vulns bypass CVE-2019-14287
tryhackme - heartbleed CVE-2014-0160
tryhackme - blue (EternalBlue) CVE-2017-0143
Presentation:
WordCamp Porto 2024 - Hunting 0days on wordpress plugins and making profit - Video presentation
WordCamp Porto 2024 - Hunting Zero-days on WordPress plugins and making profit
C-Days Açores 2023 | Mais Confiança - video
[0x53414D58] The Meet Challenge - OSINT Challenge Walkthough
AIRC - Segurança contra ataques de ransomware - Seminário Cibersegurança
Porto WordPress Meetup - Hunting Zero-days on WordPress plugins and making profit
Hackers for charity presentation - Penetration Testing
DevPT - OSINT for missing people pdf
DevPT - OSINT for missing people video
C-days 2023 | 9ª edição | Porto - OSINT for missing people pdf
C-days 2023 | 9ª edição | Porto - OSINT for missing people video
Projects:
Github XSS Payload in collaboration with
Daniel Teixeira
Github SQL-Injection Payloads
Google Hacking Database
Mentions/References:
What is Open Redirection Vulnerability
8th anniversary of the ØxOPOSɆC community
Anti-Human Trafficking Intelligence Initiative mentioned me in the blog post - "Congratulations to the 2022 Darkwebathon Sprint Winners!"
Maltego mentioned me in the blog post - "Data is beautiful and Darkwebathon 2022 has showed us how"
Segurança Informatica mentioned me in the blog post "A taste of the latest release of QakBot"
Segurança Informatica mentioned me in the blog post "The new maxtrilha trojan is being disseminated and targeting several banks"
Security Affairs mentioned me in the blog post "A taste of the latest release of QakBot
Security Affairs mentioned me in the blog post "The new maxtrilha trojan is being disseminated and targeting several banks"
Hardsecure post about me reaching top 50 on intigriti
Trojan.Generic fixxing.exe © Hybrid Analysis
Trojan.Generic © Hybrid Analysis
Hacking-List
A Systematic Approach to a Quantitative Vulnerability Assessment for BYOD System Variables through the Discovering of Threats
Quote of the day: Try Harder!