We like to welcome Thore as our newest member to the Y-Security Team. Thore joined us in October as an Advanced Attack Simulation Specialist. We are excited to have in our team! y-security.de/news-en/welcom… #Y #Team #Security

"Aaaand It's Gone" - This is something that shouldn't be said during an offensive security assessment. Find out more about our Risk Managing process at y-security.de/news-en/risk-m… #BetterSafeThanSorry #Y #KRITIS

Vielen Dank für das in uns gesetzte Vertrauen im Jahr 2022 – wir freuen uns darauf in 2023 all die neuen und spannenden Projekte gemeinsam zu bewältigen. y-security.de/news-en/ynacht… #Ynachten #2023 #ysecurity

Looking forward to this :)

I recently looked into Hack The Box 's BlackSky Cloud Hacking Labs for AWS. The presented scenario and vulnerabilities are realistic and could even exist as part of a real network. You can read about it at: y-security.de/news-en/hack-t… #Y #HackTheBox #AWS #Hailstorm #BugBounty

I recently wrote my feedback on Hack The Box's BlackSky Cloud Hacking Labs for AWS. imth took the challenge of reviewing the Cyclone: Microsoft Azure scenario: y-security.de/news-en/hack-t… It's a fantastic one. #Y #HackTheBox #Cloud #Azure #Cyclone #BugBounty

Nur noch VIER Tage, dann schließt der Call for Presentations des German #OWASP Days seine Pforten. Wer also was Berichtenswertes am 31.5. in Frankfurt der deutschen AppsSec Community präsentieren möchte, sollte sich ranhalten: god.owasp.de/2023/cfp/ #OWASP_D2023

Have you ever wondered how to start #AWS penetration testing? We have published AWS penetration testing: A step-by-step guide at the Hack The Box website: hackthebox.com/blog/aws-pente… #HTB #BugBounty #Y #Security #Cloud

Looking to strengthen your cloud security and safeguard your data from cyber threats? Then don't miss our latest blog post about the Advantages of Cloud Audit and Cloud Penetration Testing: y-security.de/news-en/advant… #cloud #cloudsecurity #bugbounty #Y #penetrationtesting

Y-Security carries out projects in a climate-neutral way. Companies that work with Y-Security have the option of taking over a share to offset the CO2 produced in our projects too. We have just claimed 2,98 tons CO2 via Compensators e.V. compensators.org/en/how-it-work… #climateaction

Check out our blog post by Thore on our Mobile Application Testing service utilizing Apple Silicon. y-security.de/news-en/mobile… #pentest #mobile #jailbreak #apple #ios #testing #m1 #ysecurity

We have moved our twitter account to Y-Security - All our new content will be available here. Followers have been moved to the new account. Thanks for following Y-Security

Happy #WorldDogDay

Our team recently took the challenge of mastering the Red Team Ops I and Red Team Ops II exam offered by zero . After completion, we received both the Red Team Operator and Red Team Lead certifications. Read our recent post: y-security.de/news-en/red-te… #RedTeam #RTO

Our tool StealthGuardian has been accepted for Black Hat ARSENAL USA 2024. The Y-Security team will be in Las Vegas to present on protecting Red Team payloads from Blue Teams. y-security.de/news-en/black-… #BlackHat #BHUSA #RedTeam #VegasBaby

Are you taking steps towards a career as an Attack Simulation Specialist? Maybe you already have experience as a Penetration Tester or with platforms like Hack The Box or certifications like OSCP? If so, we would love to talk to you! #job #redteam #pentest #germany

We are extending our team :) Looking for a new opportunity?

Wir suchen derzeit zur Unterstützung Werkstudent:innen im Bereich Anwendungsentwicklung. Wenn du Lust auf ein innovatives Unternehmen mit flexiblen Arbeitsmöglichkeiten hast, dann freuen wir uns, von dir zu hören. #Werkstudent #Job #Germany #Business #Development

We have publicly released our internal tool StealthGuardian at Black Hat USA 2024. It can be combined with adversary simulation tools to verify the resistance, detection level and behaviour detection of defence mechanisms. y-security.de/news-en/stealt… #bhusa #blackhat #redteam

Our security team at Y-Security has identified a vulnerability in AXESS Auto Configuration Server (CVE-2024-56316) which allows unauthenticated remote attackers to trigger a permanent DoS. Advisory + Mitigation: y-security.de/news-de/axess-… #YSecurity #CVE202456316 #TR069 #ACS