List of a ton of internal twitter servers available on GitHub

Disclosed: 2016-10-17 18:32:15 By a0005 To x

Unknown

Vulnerability Details

The page at https://raw.githubusercontent.com/adi2909/basic-py/0532539f86cbb584aa7bfd8cc357fc9df4c25c03/data/allHostInfo.json has a ton of internal info about twitter hosts, including MACs, NICs, other hardware info, and hostnames. This data, albeit a little dated, gives an attacker an excellent view into hardware, patching status, and network topology. I've uploaded a parsed JSON of this information

Actions

View on HackerOne

Report Stats

Report ID: 137404
State: Closed
Substate: informative
Upvotes: 4

List of a ton of internal twitter servers available on GitHub

Vulnerability Details

Actions

Report Stats

Share this report