Forwarded from Turan Security
🏆 BlackHat MEA 2025 CTF musobaqasida 12-o'rin!
Turan Security va O'zbekiston shahafini himoya qilgan jamoa dunyoning eng nufuzli kiberxavfsizlik musobaqalaridan birida 125 jamoa orasidan TOP-12 talikdan joy oldi!
Saudiya Arabistoning Ar-Riyod shahrida o‘tkazilgan BlackHat MEA tadbiri - global miqyosdagi eng kuchli mutaxassislar, ekspertlar va jahonning yetakchi kiberxavfsizlik jamoalari uchrashadigan maydon.
TOP jamoalar orasida Team lead’imiz qiyinlik darajasi yuqori bo'lgan 3 ta taskda:
Bizning maqsadimiz xalqaro maydonda O‘zbekistonni nufuzini oshirish, yoshlarga ilhom berish va kiberxavfsizlik sohasini rivojlantirish.
Turan Security va O'zbekiston shahafini himoya qilgan jamoa dunyoning eng nufuzli kiberxavfsizlik musobaqalaridan birida 125 jamoa orasidan TOP-12 talikdan joy oldi!
Saudiya Arabistoning Ar-Riyod shahrida o‘tkazilgan BlackHat MEA tadbiri - global miqyosdagi eng kuchli mutaxassislar, ekspertlar va jahonning yetakchi kiberxavfsizlik jamoalari uchrashadigan maydon.
TOP jamoalar orasida Team lead’imiz qiyinlik darajasi yuqori bo'lgan 3 ta taskda:
🚩Firstblood - web, birinchi;
🚩Firstblood - forensics, birinchi;
🚩Secondblood - web, ikkinchi bo'lib flagni aniqlashga erishdi.
Bizning maqsadimiz xalqaro maydonda O‘zbekistonni nufuzini oshirish, yoshlarga ilhom berish va kiberxavfsizlik sohasini rivojlantirish.
1🔥7❤2🤝1
Please open Telegram to view this post
VIEW IN TELEGRAM
2🔥12❤🔥3🕊1
JavaSec
Why mid-January🤔
Nvidia also hacked 😎
Please open Telegram to view this post
VIEW IN TELEGRAM
🔥5🤡3🕊2
CPTS (HTB) o'rganayotganlar uchun aloxida notelar
https://github.com/sachinn403/PentestCodeX/tree/main/courses/cpts-main
https://github.com/sachinn403/PentestCodeX/tree/main/courses/cpts-main
GitHub
PentestCodeX/courses/cpts-main at main · sachinn403/PentestCodeX
Notes. Contribute to sachinn403/PentestCodeX development by creating an account on GitHub.
👏7❤1👍1
3 ta zero-day va uchunchi 0day zaifligi accepted va 👀000💲 bounty!
1-zero-day zaifligi uchun reject olganimda menimcha Zero Day Initiativedan accepted olishni iloji yoq deb oylagan edim
Demak iloji bor…
1-zero-day zaifligi uchun reject olganimda menimcha Zero Day Initiativedan accepted olishni iloji yoq deb oylagan edim
Zero Day Initiative (ZDI) — Trend Micro tomonidan yuritiladigan, dunyodagi eng yirik va nufuzli vulnerability research dasturlaridan biri. Ushbu dastur mustaqil xavfsizlik tadqiqotchilari (researcherlar) tomonidan topilgan zero-day va kritik zaifliklarni sotib oladi, ularni ishlab chiqaruvchi (vendor) bilan hamkorlikda yopilishini ta’minlaydi va foydalanuvchilar xavfsizligini oshiradi.
Shu dastur orqali topgan zaifligim ZDI laboratoriyasida to‘liq tekshirilib, tasdiqlandi va rasmiy ravishda qabul qilindi. Natijada bounty oldim va ZDI researcher sifatida tan olindim.
Demak iloji bor…
2❤9🔥6👍1🕊1
JavaSec
3 ta zero-day va uchunchi 0day zaifligi accepted va 👀000💲 bounty! 1-zero-day zaifligi uchun reject olganimda menimcha Zero Day Initiativedan accepted olishni iloji yoq deb oylagan edim Zero Day Initiative (ZDI) — Trend Micro tomonidan yuritiladigan, dunyodagi…
Nasb barchasi public bo’lganda video yoki post qilamiz POC bilan, qayerdan va qanday zaifligi haqida ham gaplashamiz.Foydali bo’ladi albatta
❤9👍4
JavaSec
https://www.youtube.com/playlist?list=PLM2v9hi8OtOVahKxVcnQcxDTvZgVY6E2g
old but gold
For OSWE prep
For OSWE prep
🔥3🕊1
2025 Year in Review: Offensive Security & Vulnerability Research
This past year has been defined by deep technical research and high-level offensive security challenges. Here is a summary of my key milestones:
Security Research & Exploit Development
▪️ NVIDIA CVE-2025-XXXXX: Identified a security vulnerability; official CVE release scheduled for January 2026.
▪️ Trend Micro Zero Day Initiative: Received a bounty offer for a 0-day vulnerability discovery.This also on the patching process.
Advanced Technical Certifications
▪️ HTB Certified Web Exploitation Expert (CWEE): 100/100 points | 6/6 flags
▪️ HTB Certified Penetration Testing Specialist (CPTS): 100/100 points | 14/14 flags
CTF & Competitive Achievements
▪️ HTB Cyber Apocalypse: Secured 18th place globally out of 8,100+ teams.
▪️ Cyber Orda in Kyrgyzstan (Central Asia): 1st Place + 3 first bloods🩸.
▪️ CyberKent (Uzbekistan): 2nd Place (Red Team).
▪️ We organized a CTF together with Turan Security team!
These achievements represent months of research and consistent effort. Huge thanks to my teammates and the Turan Security for the support. I’m looking forward to pushing the boundaries of offensive security even further in 2026.
This past year has been defined by deep technical research and high-level offensive security challenges. Here is a summary of my key milestones:
Security Research & Exploit Development
▪️ NVIDIA CVE-2025-XXXXX: Identified a security vulnerability; official CVE release scheduled for January 2026.
▪️ Trend Micro Zero Day Initiative: Received a bounty offer for a 0-day vulnerability discovery.This also on the patching process.
Advanced Technical Certifications
▪️ HTB Certified Web Exploitation Expert (CWEE): 100/100 points | 6/6 flags
▪️ HTB Certified Penetration Testing Specialist (CPTS): 100/100 points | 14/14 flags
CTF & Competitive Achievements
▪️ HTB Cyber Apocalypse: Secured 18th place globally out of 8,100+ teams.
▪️ Cyber Orda in Kyrgyzstan (Central Asia): 1st Place + 3 first bloods🩸.
▪️ CyberKent (Uzbekistan): 2nd Place (Red Team).
▪️ We organized a CTF together with Turan Security team!
These achievements represent months of research and consistent effort. Huge thanks to my teammates and the Turan Security for the support. I’m looking forward to pushing the boundaries of offensive security even further in 2026.
3🔥8🤡4❤3👏3🤣3🕊2🙊2❤🔥1👍1💊1
Assalomu alaykum hammaga!
2026-yilda yurtimizda cybersecurity’ni endi o‘rganayotganlar uchun foydali kontent qilishni rejalayapman.
O‘zimning tajribam, qilgan xatolarim va o‘rgangan bilimlarimni ulashmoqchiman.
Shu fikrga nima deysizlar fikringiz va takliflaringiz muhum, bu sohada yangi bo’lasizmi , tajribaga ega bo’lasizmi o’z fikringizni va takliflaringizni qoldiring @javasecc✈️
Ulashing: @JavaSecuz📱
2026-yilda yurtimizda cybersecurity’ni endi o‘rganayotganlar uchun foydali kontent qilishni rejalayapman.
O‘zimning tajribam, qilgan xatolarim va o‘rgangan bilimlarimni ulashmoqchiman.
Shu fikrga nima deysizlar fikringiz va takliflaringiz muhum, bu sohada yangi bo’lasizmi , tajribaga ega bo’lasizmi o’z fikringizni va takliflaringizni qoldiring @javasecc
Ulashing: @JavaSecuz
Please open Telegram to view this post
VIEW IN TELEGRAM
3👍9🔥3❤2❤🔥1🎉1🕊1