First image is taken at previous Cyberkent 2.0 (2024). Second one is from the last Cyberkent 3.0
This time, my team showed TuranSec's capability to work on multiple complex processes (blue team, red team, etc) at once and make it in perfect quality at the same time.
This is not some PR words, just recap of how team did it.
So, here we are, expanded, learned a lot.
This time, my team showed TuranSec's capability to work on multiple complex processes (blue team, red team, etc) at once and make it in perfect quality at the same time.
This is not some PR words, just recap of how team did it.
So, here we are, expanded, learned a lot.
6๐5๐ฅ4โค1๐ฅฑ1
Forwarded from Turan Security
๐ BlackHat MEA 2025 Final CTF musobaqasida 12-o'rin!
Turan Security va O'zbekiston sharafini himoya qilgan xalqaro jamoa dunyoning eng nufuzli kiberxavfsizlik musobaqalaridan birida 125 jamoa orasidan TOP-12 talikdan joy oldi!
Saudiya Arabistoning Ar-Riyod shahrida oโtkazilgan BlackHat MEA 2025 tadbiri - global miqyosdagi eng kuchli mutaxassislar, ekspertlar va jahonning yetakchi kiberxavfsizlik jamoalari uchrashadigan maydon.
TOP jamoalar orasida Team leadโimiz 3 ta topshiriqda:
Birinchi marta uchun eng kuchli jamoalar o'rtasida topshiriqlarni birinchi bo'lib ishlash juda qiyin va kamdan-kam uchratiladigan natija! Ushbu yutuq uchun Team lead'imiz tashkilotchilar tomonidan maxsus "Firstblood coin"lar bilan taqdirlandi, bunday natija O'zbekiston uchun birinchisi hisoblanadi๐ฅ
Bizning maqsadimiz xalqaro maydonda Oโzbekistonni nufuzini oshirish, yoshlarga ilhom berish va kiberxavfsizlik sohasini rivojlantirish.
Turan Security va O'zbekiston sharafini himoya qilgan xalqaro jamoa dunyoning eng nufuzli kiberxavfsizlik musobaqalaridan birida 125 jamoa orasidan TOP-12 talikdan joy oldi!
Saudiya Arabistoning Ar-Riyod shahrida oโtkazilgan BlackHat MEA 2025 tadbiri - global miqyosdagi eng kuchli mutaxassislar, ekspertlar va jahonning yetakchi kiberxavfsizlik jamoalari uchrashadigan maydon.
TOP jamoalar orasida Team leadโimiz 3 ta topshiriqda:
๐ฉFirstblood - web, birinchi;
๐ฉFirstblood - forensics, birinchi;
๐ฉSecondblood - web, ikkinchi bo'lib topshiriqni barajarishga erishdi.
Birinchi marta uchun eng kuchli jamoalar o'rtasida topshiriqlarni birinchi bo'lib ishlash juda qiyin va kamdan-kam uchratiladigan natija! Ushbu yutuq uchun Team lead'imiz tashkilotchilar tomonidan maxsus "Firstblood coin"lar bilan taqdirlandi, bunday natija O'zbekiston uchun birinchisi hisoblanadi๐ฅ
Bizning maqsadimiz xalqaro maydonda Oโzbekistonni nufuzini oshirish, yoshlarga ilhom berish va kiberxavfsizlik sohasini rivojlantirish.
๐5๐3๐ฅ2
i was able to get 2 firstblood, 1 secondblood
it was impossible to solve tasks earlier than R3kapig, FMC, bios, Odin, etc who are the most elite teams but i did it๐ฅ
it was impossible to solve tasks earlier than R3kapig, FMC, bios, Odin, etc who are the most elite teams but i did it๐ฅ
1๐ฅ15๐2
Forwarded from JavaSec
3 ta zero-day va uchunchi 0day zaifligi accepted va ๐000๐ฒ bounty!
1-zero-day zaifligi uchun reject olganimda menimcha Zero Day Initiativedan accepted olishni iloji yoq deb oylagan edim
Demak iloji borโฆ
1-zero-day zaifligi uchun reject olganimda menimcha Zero Day Initiativedan accepted olishni iloji yoq deb oylagan edim
Zero Day Initiative (ZDI) โ Trend Micro tomonidan yuritiladigan, dunyodagi eng yirik va nufuzli vulnerability research dasturlaridan biri. Ushbu dastur mustaqil xavfsizlik tadqiqotchilari (researcherlar) tomonidan topilgan zero-day va kritik zaifliklarni sotib oladi, ularni ishlab chiqaruvchi (vendor) bilan hamkorlikda yopilishini taโminlaydi va foydalanuvchilar xavfsizligini oshiradi.
Shu dastur orqali topgan zaifligim ZDI laboratoriyasida toโliq tekshirilib, tasdiqlandi va rasmiy ravishda qabul qilindi. Natijada bounty oldim va ZDI researcher sifatida tan olindim.
Demak iloji borโฆ
๐ฅ6
JavaSec
3 ta zero-day va uchunchi 0day zaifligi accepted va ๐000๐ฒ bounty! 1-zero-day zaifligi uchun reject olganimda menimcha Zero Day Initiativedan accepted olishni iloji yoq deb oylagan edim Zero Day Initiative (ZDI) โ Trend Micro tomonidan yuritiladigan, dunyodagiโฆ
One of the first Uzbeks to sell zeroday on ZDI๐ฅ
2๐ฅ7
image_2026-01-01_00-23-48.png
56.5 KB
Let's start this year with insane challenge
It's just a joke, let me try guys.
Btw, im late for 20 minutes, but yes, happy new year, i mean hope we can make some good things this year.
It's just a joke, let me try guys.
Btw, im late for 20 minutes, but yes, happy new year, i mean hope we can make some good things this year.
๐ฅ2๐ค1
AppSec Guy
https://youtu.be/TmWM51mTY_c?si=H9oeSxnZcnhBy_ar
AI helps to reduce our need for world's elites, it enables them to lay off as much as possible employees while saving the budget.
There is no meaning to pay for loose, they have been doing this for decades. So, they don't need population who they really don't need on running this world, so they start small wars to erase mass population while keeping most part still to run what AI cannot make it done.
They are waiting for the evolution of AI, so they have no dependency on us.
They don't care about us, they don't care if AI goes rogue (it's sht from movies), peace.
There is no meaning to pay for loose, they have been doing this for decades. So, they don't need population who they really don't need on running this world, so they start small wars to erase mass population while keeping most part still to run what AI cannot make it done.
They are waiting for the evolution of AI, so they have no dependency on us.
They don't care about us, they don't care if AI goes rogue (it's sht from movies), peace.
some conspiracy theory same as flat earth
This media is not supported in your browser
VIEW IN TELEGRAM
RCE on Google Chrome up to 141.0.7390.65 version through Use after free in Storage (CVE-2025-11460) - ASLR, CFG bypass
PoC exploit: https://issues.chromium.org/issues/446722008
Bounty: $100,000
PoC exploit: https://issues.chromium.org/issues/446722008
Bounty: $100,000
๐ฅ6