Jeremy Druin
@webpwnized
Followers
4,147
Following
39
Media
250
Statuses
1,118
Professional pen-tester, Mutillidae developer, trainer and cat-hearder.
USA
Joined October 2011
Don't wanna be here?
Send us removal request.
Explore trending content on Musk Viewer
ニコニコ
• 157321 Tweets
Noa Argamani
• 135547 Tweets
Nuseirat
• 128682 Tweets
riize
• 122090 Tweets
مخيم النصيرات
• 111007 Tweets
Ali Koç
• 93985 Tweets
Shlomi Ziv
• 72219 Tweets
#東京タワー
• 64936 Tweets
Almog Meir Jan
• 63182 Tweets
ムビナナ
• 59830 Tweets
#世にも奇妙な物語
• 53807 Tweets
SHOW STOPPER ELVISH
• 53776 Tweets
サイバー攻撃
• 52393 Tweets
ULTIMATE LOVE FOR BLANK
• 51422 Tweets
#เปิดผังDoubleTroubleConcert
• 51249 Tweets
マッサマン
• 32339 Tweets
バレーボール
• 32252 Tweets
烈火の炎
• 29777 Tweets
キスマイ
• 26090 Tweets
スロベニア
• 20679 Tweets
PITANDA NO E DE CASA
• 18925 Tweets
アンコール
• 15747 Tweets
Iga Swiatek
• 15468 Tweets
Paolini
• 15042 Tweets
ジェシー
• 14963 Tweets
WANDEE FIRST DATE
• 14320 Tweets
詩史さん
• 11891 Tweets
東キヨドーム
• 11807 Tweets
#SixTONESANN
• 10569 Tweets
男子バレー
• 10505 Tweets
The Burp-Suite 2 training series up to 23 vids; added 5 dedicated to the Professional edition
6
113
241
New vid: Getting Shell with
@HackingDave
's Magic Unicorn - Step by Step; From today's
@issakentuckiana
meeting
1
39
69
1
21
43
Mutillidae 2.6.71 released; Mostly updates to CSRF example code and tutorial;
1
13
29
New series of videos released on absolute basics of Linux. Mostly for teachers/instructors with new students;
3
16
33
All 5 parts of the NMAP Workshop gathered into one playlist: ISSA KY Workshop: NMAP ; in-depth look at critical tool
2
16
30
Burp Suite 2.x Community Edition is out...and so is the 18 part video tutorial series
1
12
28
Mutillidae 2.6.72 released; Entirely new vulnerability added: LDAP Injection & docs on setting up LDAP server; Menu -> Injection -> Other -> LDAP Injection;
0
11
24
Mutillidae 2.6.51 released; New tutorial, several new videos, bug fixes and Hint topic now shows in browser tab. Enjoy.
1
16
24
While on
@nmap
, these scripts by Lee Baird helpful to kick off scans. . Thanks to
@purehate_
for showing me these.
0
14
24
Published: Mutillidae II Web Pen-Test Environment; Everything you wanted to know about Mutillidae plus 40 pages :-)
http://t.co/gMHK3YEQ7t
1
16
23
Mutillidae 2.6.0 released; New feature: Video tutorials embedded in Hints; Additional exploit examples; Git & Zip;
1
17
21
With the release of some pro-tips, the
@Burp_Suite
2 tutorial series is up to 25 vids. Enjoy.
0
6
22
Mutillidae 2.6.47.1 released; Embedded video tutorials open in new tab; Hopefully less awkward to hack and learn
0
7
21
Vids posted: How to Perform DNS Zone Transfer with Dig and DNSRecon - Demo'ed on
@digininja
's site; and
0
8
19
Mutillidae 2.6.68 released; Bug Fix: Database login was not trying all 4 passwords: blank, samurai, mutillidae, user-set. NOTE: Mutillidae migrated to GitHub; ;
0
11
19
"
@eternalsecurity
: Blog Post: Intercepting DNS to inject BeEF payloads with Burp.
http://t.co/iO9NyNyuWa"
- this is clever
0
19
19
Mutillidae 2.6.59 released; Added 4 new XSS video tutorials and embedded the 20 part XSS video series;
0
13
18
Mutillidae II 2.6.50 officially released; Bug fixes (thanks
@eric_conrad
) and OWASP Top Ten 2017 menu updated;
0
3
18
With Mutillidae sort of stable, starting a new project to help folks learn basic crypto & related math
0
4
16
Mutillidae 2.6.54 released; 9 videos and OWASP ZAP help added;
0
5
15
Posted 5 vids to kick off Intro to OWASP ZAP series. Playlist is at
1
3
15
Mutillidae 2.6.57 released; Moved database creds from class to stand-alone config; Will make integration into
@secureideas
SamuraiWTF 4 easier. Default DB name now "mutillidae".
0
10
14
ByePass 1.6.0 released; Password mode split out from dictionary mode for better control of cracking attempts;
0
5
14
Gotta love Wireshark...Introduction to Packet Analysis - Part 10: Packet Analysis with Wireshark (Part 2)
1
3
14
Mutillidae 2.6.64 released; Updated for RPi 3 B+, Ubuntu 18.04, PHP 7.2, MariaDB & MySQL 5.7;
0
9
13
A legit way to tunnel traffic to unreachable port; How to Port Forward through SSH
0
2
13
The Discover scripts () that automate common NMap scanning tasks has a twitter feed now;
@discoverscripts
0
8
14
Mutillidae 2.6.48 released; Big bug fix for missing menus; Added instructions for setting up SSL cert; GIT and ZIP
0
6
13
Mutillidae 2.6.47 posted; Bug fixed by edwardsaus & some minor updates; ZIP & GIT available
1
6
13
@hdmoore
Added a few notes on mutillidae, dvwa, and general web app vulnerabilities in Metasploitable 2 into
1
7
13
New Vid: Introduction to Path Relative Style Sheet Injection: . Thank you
@PortSwigger
and
@garethheyes
for blogs
0
10
13
New video posted: Exploit Exercises: Nebula Level 07 Walkthrough;
0
5
12
New Vid: How to Install Samurai Web Testing Framework (WTF) on VMware Workstation Player;
0
10
13
New vid posted; Intro to Pen Testing Web Services; Demos the
@secureideas
DVWS web services added into Mutillidae;
http://t.co/FLBGykaiVE
1
9
13
Mutillidae 2.6.44 released; Updated for OWASP Top Ten 2017; Minor bug fixes;
1
6
13
Assorted new vids uploaded; all web stuff; How to use WGET ; How to Sweep a Web Site for HTML Comments ; How to Identify Web Technology with Wappalyzer
0
1
13
If you missed it, we did an entire day on Packet Analysis with
@issakentuckiana
last year and the video was posted for free;
0
9
11
Mutillidae 2.6.52 released; Since XEE added to OWASP Top 10, made XEE page easier to hack; added new hints, videos and code examples. Also minor updates & bug fixes.
1
2
12
@dan_crowley
Nice project. The tutorial 8 (injections without using comment symbols) comes in handy a lot ().
0
2
12
Posted video "Tutorial: Using SQL injection to generate cross site scripts" at
#Rapid7
Community.
0
7
12
New videos posted: Walkthrough of Exploit Exercises Nebula level 02 and level 03;
0
3
12
Mutillidae 2.8.26 released; Added CMDi, XSS, HTMLi via
CORS;
0
5
11
Happy Tuesday indeed. "Intro to Packet Analysis - Part 3: UDP Packets" posted;
0
3
11
New Vid: Introduction to Packet Analysis with Wireshark; Getting started parsing PCAP with Wireshark on Kali Linux;
0
4
11
Mutillidae 2.6.32 released; Minor updates; Usage instructions updated for new users;
0
17
11
New video posted: Exploit Exercises: Nebula Level 08 Walkthrough; Packet analysis FTW;
0
5
11
Three new videos on LDAP injection posted: ; Latest Mutillidae has a vulnerable page & instructions; Happy Hacksgiving;
0
3
10
Mutillidae 2.6.18 released with new vulnerability path relative stylesheet injection with tutorial. Git & Zip:
http://t.co/5CWpk8pXGV
0
17
10
Want to learn more about network packet analysis? There's a playlist for that;
1
6
10
New Vid Posted: Introduction to Intercepting Mobile Device and Mobile Web App Traffic
1
7
10
Mutillidae 2.6.70 released; (FYI: Mutillidae fully migrated to GitHub; Latest no longer available on SourceForge)
0
8
10
If you would like the lab exercises associated with Friday's
@issakentuckiana
presentation, they can be found this playlist;
0
2
10
Mutillidae 2.7.4 released; 3 bug fixes & 3 minor improvements; If you already have 2.7.2, then meh;
0
4
10
New vid posted: Exploit Exercises: Nebula Level 01 Walkthrough
0
7
10
Mutillidae 2.6.27 out; new SQLi vids added to hints; User-poll adds stored XSS/SQLi vulns & stores/tallies votes;
0
14
10
15-video series uploaded: The Definitive Guide to Installing Mutillidae;
0
3
10
New Video Posted; Introduction to Crafting Network Packets with Scapy
0
7
10
Watch for new conference starting near Louisville next year; more information to come from
@irongeek_adc
;
#whosyourhacker
0
8
10
New Vid: Hacking with Style: Path Relative Style Sheet Injection; from 2015 ISSA KY InfoSec Conference;
0
10
10
Adding several new lab walkthroughs to Mutillidae; Two videos will drop each day this week;
0
2
9
Mutillidae 2.7.1 released; Minor bug fixes;
0
7
9
You asked; Here is the first vid on MS3; Hacking Metasploitable 3: Discovering Remote Services with NMap
#metasploit
2
8
9
New vid; Use SQL injections to create Cross Site Scripts dynamically; bypass filters;
http://t.co/JRcJcOA6.
May be
@irongeek_adc
site later.
1
10
9
New video posted: How to Create Wordlists from Web Sites using CEWL, the web crawling wordlist generator created by
@digininja
;
0
4
9
It's out. Introduction to Packet Analysis - Part 4: TCP Packets The entire playlist is at
0
3
8
Vid posted; Basic intro to exploiting network services with
#Metasploit
;
http://t.co/e3n4fD1N;
HW issue in recording; screen flickers;
0
6
9
Being a fan of irony, when an actual Mutillidae walked through my yard I had to snap a pic.
0
1
9
Mutillidae 2.6.61 released; Bug fix for "include file" error in MySQLHandler.php. Upgraded nusoap to 0.9.5.
0
3
9
Mutillidae 2.6.60 released; Add video tutorials into the CSRF hints page; GIT or ZIP;
1
5
9
Slowly rebuilding since YouTube purged "hacking" videos. 21 new videos uploaded this week.
3
2
9
Heard great talk on SQL injection to bypass WAF from Ryan Barnett at SANS DC. Most of the information available @
http://t.co/Hj7Rl7YU
0
8
9
Mutillidae 2.6.58 released; 5 bug fixes; x-content-type and x-xss-protection headers added; 4 new video tutorials;
0
4
9
Starting a workshop series on Packet Analysis. Part 1 is out: Introduction to Packet Analysis: Network Protocols
0
5
8
Several videos to help with VirtualBox released in a playlist;
0
1
8
Mutillidae 2.6.55 released; Added 10 new video tutorials; Updated hints for Burp, Zap, Method Tampering, Info Disclosure, Robots.txt;
0
3
8
Mutillidae 2.6.33 released; Added sample HTTP requests to SOAP web services; Go to service, click method to see;
2
11
8
New video posted: Getting Started with Metasploitable 2: How to Exploit the VSFTP 2.3.4 Service;
0
3
8
Mutillidae 2.8.25 released; A few dozen video tutorials added;
0
5
8
Mutillidae 2.7.9 released; Bug fix for database set-up error when using latest Maria DB;
1
5
8
Mutillidae 2.6.42 released; Mostly bug fixes but improved Remote File Inclusion hint on RFI web shell;
0
11
8