Moamen basel

@Momenbassel

OSCP, OSWP, EWPTX,

momen@home:~#
linkedin.com/in/momenbasel/
Joined November 2010
Born June 18
69 Photos and videos Photos and videos

Tweets

You blocked @Momenbassel

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @Momenbassel

  1. Oct 11

    if it costs you your peace then it’s too expensive.

    1 reply 1 like
    Undo
  2. Retweeted
    Oct 4

    If you rely on centralized infrastructure, and then build it to depend on itself, you can get into situations that require you to take a sledge hammer to your own server room.

    20/ You can imagine right now that employees are no applying sledge hammers to concrete walls to make a hole so they can get into the server rooms to fix the BGP problem, because their badges don't work.
    Show this thread
    10 replies 48 retweets 297 likes
    Undo
  3. Retweeted
    Oct 4

    how much?

    Someone nuked the DNS A and AAA records for Facebook, Instagram, and WhatsApp 🤭
    Show this thread
    3,454 replies 20,439 retweets 86,514 likes
    Show this thread
    Show this thread
    Undo
  4. Retweeted
    Sep 13

    🚨 UPDATE YOUR APPLE DEVICES NOW🚨 We caught a zero-click, zero day iMessage exploit used by NSO Group's spyware. Target? Saudi activist. We reported the exploit to , which just pushed an emergency update. THREAD 1/

    102 replies 3,025 retweets 3,777 likes
    Show this thread
    Show this thread
    Undo
  5. Retweeted
    Sep 13

    Demo of CVE-2021-30740, CVE-2021-30768, CVE-2021-30769, CVE-2021-30770 and CVE-2021-30773 on iOS 14.5.1, iPhone 12 Pro Max

    243 replies 815 retweets 3,797 likes
    Undo
  6. Retweeted
    Sep 13

    Fact checking is a critical requirement for every media outlet. Failure to check an obviously fake claim makes you wonder what else they do not check.

    47 replies 165 retweets 1,275 likes
    Show this thread
    Show this thread
    Undo
  7. Retweeted
    Sep 9

    CVE-2021-40444 is so bad🤦‍♂️

    23 replies 528 retweets 1,514 likes
    Undo
  8. Retweeted
    Sep 4

    GitHub is free

    19 replies 195 retweets 1,228 likes
    Undo
  9. Retweeted
    Aug 31

    Here's our writeup of CVE-2021-26084 Confluence RCE now that it's out in public. Although, there are still a few mysteries to be solved. cc:

    22 replies 474 retweets 1,146 likes
    Undo
  10. Retweeted
    Aug 29

    Recently an unknown individual sold a malware technique to a group of Threat Actors. This malcode allowed binaries to be executed by the GPU, and in GPU memory address space, rather the CPUs. We will demonstrate this technique soon.

    19 replies 357 retweets 1,529 likes
    Undo
  11. Retweeted
    Aug 30

    iOS 14.0 "remote jailbreak" demo.😎 (RCE + LPE exploit) Don't stay on versions on or below iOS 14.3. If you click a malicious link, bad guys would steal everything on your iPhone.

    73 replies 1,090 retweets 3,262 likes
    Undo
  12. Retweeted
    Aug 24

    I just fell for a scam email. Yep, I'm a security pro & I fell for one 🙋🏽‍♀️ It's not "my fault" as a user & I don't think it's anything to be ashamed of. It happens🤷🏽‍♀️If we don't admit it happened, we can't work to remediate & learn from it. So let's normalize talking about it 😊

    139 replies 310 retweets 2,574 likes
    Undo
  13. Retweeted
    Jul 30

    Our bug bounty program is 10 yrs old now, rewarded nearly 30M dollars for over 2000 researchers, launching new program at . Thanks for all your contributions and happy bug hunting!

    101 replies 334 retweets 2,028 likes
    Undo
  14. Retweeted
    Jul 28

    11 replies 33 retweets 486 likes
    Undo
  15. Retweeted
    Jul 26

    Looking forward to meeting you all on the 1st of August, where I will be giving a talk about "Breaking The Giants With Logic" at . The talk will tackle the topic of business logic vulnearabilities with real-life examples from Facebook and Instagram bug bounty program.

    6 retweets 13 likes
    Undo
  16. Retweeted
    Jul 25

    Exploit dev tip in 1998: grep memcpy Exploit dev tip in 2021: grep memcpy

    6 replies 164 retweets 870 likes
    Undo
  17. Retweeted
    Jun 4

    Windows Kernel Exploitation Tutorial Part 1: Setup Part 2: Stack Overflow Part 3: Memory Overwrite Part 4: Pool Overflow Part 5: NULL Pointer Dereference

    6 replies 666 retweets 1,704 likes
    Undo
  18. Retweeted
    Apr 28

    94 replies 3,364 retweets 15,299 likes
    Undo
  19. Retweeted
    Apr 8

    "my laundry machine uses gigabytes of traffic every day" is another one of those fun things we can say now that we live in The Future™

    296 replies 5,016 retweets 19,369 likes
    Undo
  20. Retweeted
    Mar 16

    There's no shame in not knowing things! The only shame is to pretend that we know everything. 🧠

    52 replies 2,901 retweets 14,216 likes
    Undo

@Momenbassel hasn't Tweeted yet.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·