Had a lot of fun (co) running & organizing this CTF.
People were suprisingly effective in solving my three CodeQL challenges in semi intended ways :D
If you liked it, feel free to ask me questions, DMs open.
Also checkout the bounties 💸GitHub is offering: securitylab.github.com/bounties/
Follow
Jorge
@jorge_ctf
19 | Research | CTFs | Employers are my own and not the views of my opinion
Jorge’s Tweets
KITCTFCTF 2022 has started.
Good luck everyone and happy hacking!
ctf.kitctf.me
Quote Tweet
The CTF will be jeopardy-style with challenges from all major categories such as crypto, pwn, reversing, web, misc and more exotic ones like #CodeQL as well.
If you ever wanted to try CodeQL, this is your excuse for spending time on it :P
Prizes:
1st: $500
2nd: $300
3rd: $200 twitter.com/KITCTF/status/…
Show this thread
3
4
🎉 CoPilot for CodeQL queries to find security bugs!
0:58
1.9K views
2
12
39
Hey all! My org at GitHub is hiring a manager for the Paved Paths team! 🧵 boards.greenhouse.io/github/jobs/41
boards.greenhouse.io/github/jobs/41
1
1
3
Show this thread
Hey y'all!!
Advent of code just got easier with a codespace pre-installed with the latest languages and frameworks. To get you started quickly, github.com/codespaces.
What’s your favorite template? 🤔 #AdventOfCode2022 #adventofcode
1
8
32
My blog post "Pre-Auth RCE with CodeQL in Under 20 Minutes"
3
95
245
Thanks to and for helping us by reporting a serious security vulnerability.
We take security very seriously and managed to patch the issue within one hour. You can find more details about the vulnerability in the quoted article.
Quote Tweet
GHSL-2022-069: Remote Code Execution (RCE) in CircuitVerse - CVE-2022-36038 securitylab.github.com/advisories/GHS
9
18
(1/2) Very happy that my JWT query has been highlighted by from the at #githubuniverse as an example for community-driven security contributions.
See intrigus.org/research/2022/ for the high-quality and slightly longer version!
2:18
735 views
1
11
16
Show this thread
GitHub security researchers have disclosed an unpatched RCE vulnerability in Nepxion Discovery, an open source project that provides functionality for the Spring Cloud framework
4
8
And to celebrate CodeQL for Ruby, we launched a special and limited program as part of our CodeQL bounty program, with up to $2000 bonus for high quality submissions. Secure open source and get rewarded. Check it out:
2
5
Show this thread
ICYMI GitHub announced the general availability of #CodeQL for Ruby 🎉 The RCE and DoS that disclosed today in Ruby open source projects were found thanks to CodeQL: securitylab.github.com/advisories GHSL-2022-073, GHSL-2022-067 and GHSL-2022-063.
1
4
12
Show this thread
NEW Security Feature:
🎉 PRIVATE VULNERABILITY REPORTING 🎉
0:57
6.6K views
7
42
126
Show this thread
¡Hoy a las 15.30 nos vemos en la #NN10ED para hablar de vulnerabilidades en aplicaciones Android, CodeQL, radare2 y Frida! Con el gran .
navajanegra.com/2022/class/to-
1
6
11
Show this thread
So if you maintain an open source project, head to Settings → Code security and analysis, then click "Enable" next to "Private vulnerability reporting"
1
5
15
Show this thread
mentioned that a great way for security researchers to give back to the community is by contributing CodeQL rules. Folks can submit to the bounty program and make $$ doing so too! securitylab.github.com/bounties/ #GitHubUniverse
2
3
"Owners and administrators of public repositories can enable private vulnerability reporting on their repositories" - Do it!! 💪
Quote Tweet
Privately reporting a security vulnerability (a new beta feature on @github)
docs.github.com/en/code-securi
4
5
GitHub Codespaces for all, GitHub Copilot for Business, improved code navigation on GitHub.com, and much, much more. 🚀 Check out all the exciting updates that we announced today at #GitHubUniverse:
2
47
106
just in case infosec.exchange/@jorgectf
3
這次 hack. lu CTF 的 web 題難度及有趣度應該是打過的比賽中排前三的,學到了不少東西,內文包含:
1. Electron relaunch
2. Python decorator 執行程式碼
3. 讓 Apache 不輸出 content type
4. GIF + JS polyglot
5. 繞過 SQLite 不合法欄位
6. JS 註解 <!--
7. superjson
2
16
101
Made it to the 2022 Q3 Security Researcher Leaderboard 🎉
(Only place 61, but still happy^^)
Quote Tweet
Congratulations to all the researchers recognized in this quarter’s MSRC 2022 Q3 Security Researcher Leaderboard! For more information, check out our blog post: msrc-blog.microsoft.com/2022/10/24/con #securityresearch #msrc
1
1
6
La próxima semana se celebra en Buenos Aires la #Eko2022 y allí estaré junto con mis compañeros de disfrutando del evento.
Te animo a pasarte por nuestro stand y conocer algunas de las últimas novedades en cuanto a seguridad
1
6
19
For the first time, GitHub has surpassed $1 billion in ARR. This achievement is a direct testament to the ingenuity and dedication of our Hubbers, and the longstanding trust held in us by the developer community and our customers. And we know this is just our beginning.(1/3)
20
176
1,180
Show this thread
Advisory for CVE-2022-42889 #Act4Shell (RCE via Apache Commons Text interpolation). Regardless of the similarities with #log4shell this one should be much less prevalent
Quote Tweet
GHSL-2022-018: Arbitrary Code Execution in Apache Commons Text - CVE-2022-42889 securitylab.github.com/advisories/GHS
1
29
84
GHSL-2022-018: Arbitrary Code Execution in Apache Commons Text - CVE-2022-42889
44
98
👀
Quote Tweet
¡Volvió el Main CTF de la #Eko2022!
Otra vez en formato PRESENCIAL, vuelve el Main CTF de la Eko de la mano de @NullLifeTeam y con el apoyo de @GHSecurityLab 
¡Hay 2000 USD para el Primer Puesto! + Swag + Goodies
Inscribí a tu equipo: ctf.ekoparty.org
3
We have some exciting things to share with you at !
I am literally counting the days 📅😊🥳
githubuniverse.com/events/detail/
1
12
I wrote 3 web challenges for SekaiCTF 2022 last weekend!
Some very cool techniques were used! In one chall, you had to leak requests through the connection pool and another had you break document.cookie to cause an error.
Check out the writeups here:
1
27
73
Our CodeQL Bug Bounty program aims at scaling the security research community’s work. Like you can submit a query that protects OSS against future vulnerabilities of the same pattern! And get rewarded for it! securitylab.github.com/bounties/
Quote Tweet
Woohoo, I submitted my first pull request to @GHSecurityLab's CodeQL
github.com/github/securit
github.com/github/securitShow this thread
16
32
4
8
I often get the question about internships during my public office hours, so with the collaboration of people that answer my last 🧵I put together a spreadsheet with the ones focused on offensive sec. Feel free to send me any corrections or new additions:
6
35
55
Show this thread
SQL Fiddle (sqlfiddle.com) and DB Fiddle (dbfiddle.uk) are underrated resources if you want to play around with SQL injection concepts in multiple database variants.
5
133
465
📖 enjoy another article reiterating the need to destigmatize having a CVE assigned to a vul in your open source project that we first published on earlier this year 😉 CVEs aren't bad or inherently severe, and help ensure the right info gets to ALL of YOUR users! 🙌
Quote Tweet
True or false? CVEs are bad for the reputation of the software and its vendor or maintainer.
Our very own @taladrane debunks these 
myths about CVEs in @thenewstack thenewstack.io/five-myths-abo
myths about CVEs in @thenewstack thenewstack.io/five-myths-abo1
3
Hi everyone, we're looking for travel sponsorships to compete in the LakeCTF finals in Switzerland. Do ping this account if you're interested!
cc
4
8
Collaborating with , I've created over 150+ automatically generated pull requests to fix the Zip Slip #vulnerability across the Open Source JVM ecosystem. My mission is to find and fix widespread common security vulnerabilities across #OSS. Curious how I did it?
Quote Tweet
Recording of “Scaling the Security Researcher to Eliminate OSS Vulnerabilities Once and For All” by @JLLeitschuh is up: youtube.com/watch?v=WkdzWi youtube.com/watch?v=WkdzWi
3
12
My colleague discovered a pre-authentication remote command execution vulnerability in Atlassian Bitbucket. You can read his writeup here: blog.assetnote.io/2022/09/14/rce -- this blog post goes into the root cause analysis for why this was possible.
13
102
301
It seems finally my exploit is public, stay tuned for my writeup though.
Quote Tweet
9
47
250
