CVE-2025-29927

We (BKISC) placed 12th in Codegate 2025 CTF Preliminary, secured a slot in the Finals. Here is my writeup for C0D3Matr1x and protoss_58 - two Reverse challenges in the CTF: blog.fazect.com/blog/codegate-… See you onsite in Seoul, South Korea! #codegate25

Ubuntu: spend hours debugging a system you don't understand. ArchLinux: know your system because you installed it.

1/6 Tired of manually testing every parameter hoping to find an XSS? Yeah us too. It's time-consuming, repetitive, and let's be honest, not the most exciting part of the job. So we built a Burp Suite extension OneTest to automate the entire process (Caido coming soon).

Ill just leave this right here

Je termine premier dans la catégorie reverse junior au FCSC 2025 ! J'ai publié sur mon blog deux write-ups de challenges que j'ai trouvés intéressants. N'hésitez pas à aller y jeter un oeil :-) - trikkss.github.io/posts/fcsc2025… - trikkss.github.io/posts/fcsc2025…

This is why script kiddies are becoming even more like script kiddies-relying on tools and performing actions without understanding what they are doing. 😔 If you are new to cybersecurity, please take the time to learn how things work. That knowledge is more than enough. 😊

On ne va quand même pas tout révéler d’un coup😉 Stay tuned 🎧 Save the date : 27/05 à Rennes. #accessgranted

#ACCESSGRANTED 27/05 à Rennes, places limitées ! Les guests dévoilés 🤩 🤫 Plus d'info ce soir sur un stream🤫

Tu veux ta place 👇 🔥 my.weezevent.com/access-granted 🔥 #accessgranted

🚨Leaking The Email Address of any YouTube User, $10K Bounty Credit: youtube.com/@skull Write up: brutecat.com/articles/leaki…

#ACCESSGRANTED - On vous en dévoile un peu plus sur le programme ! L'appel confs & rumps est ouvert, contactez-nous : [email protected] Billetterie de l'event : my.weezevent.com/access-granted

I just love looking at C code can't really explain why

🔥🔥🔥Write-up - Challenge active directory by KlemouLeZoZo ➡️ acceis.fr/write-up-barbh… #barbhack24 road to 25 💪

#ACCESSGRANTED - Lexter, 7h30th3r0n3 flavien, BitK, Laluka@OffenSkill, PiX (Officieux), KlemouLeZoZo 🙏 Le replay des conf : youtube.com/live/uAMVBpuBJ… 🔥 Qui est chaud pour une v2 ?

Today was my last day as a pentester at Bsecure, and it feels a bit surreal. After a three-year journey of hunting on the side, I’m finally ready to go all-in as a full-time bug bounty hunter. To celebrate this milestone, I've written an article sharing the full story. It’s a

Don't say JWT Token... Don't say JWT Token... Don't say JWT Token... Don't say JWT Token... Don't say JWT Token... Don't say JWT Token... Don't say JWT Token... Don't say JWT Token... Don't say JWT Token...

Let's speak about real bugs. This one was found this year on a huge public program on bugcrowd with クロマタエ. TL;DR: A misuse of a Microsoft SSO token led to an ATO and a nice $3,500 bounty :D Enjoy reading! secarius.fr/bugbounty/usin…