PAULINE FERRAND-PRÉVOT EST CHAMPIONNE OLYMPIIIIIIIQUE !!! Elle a collectionné 15 titres de championne du Monde (route, cyclo-cross, VTT, gravel), il ne lui en manquait qu'un... L'anomalie est corrigée, à domicile ! PLUS GRANDE ATHLÈTE FRANÇAISE DE TOUS LES TEMPS !

C’est quoi ce pylône qui gâche la vue ?

A few months ago, the FreeBSD Foundation appointed us to audit two #FreeBSD critical components: the Bhyve hypervisor and the Capsicum sandboxing framework. Today, related advisories and patches have come out 🧵 1. Multiple vulnerabilities in libnv freebsd.org/security/advis…

This year, we plan to give away 2 students tickets for #HEXACON2024! Reply to this post and we will draw the 2 winners in a week 🍀

Arrêtez de dire rétroprojecteur par pitié

Due to the current events I'm selling my #hexacon2024 ticket. If anyone wants it please DM me.

Nous avons quelques tickets pour #hexacon2024 à offrir, car certains collègues de Cellebrite Labs ne peuvent venir. Pour participer, il suffit de répondre à ce tweet, et nous sélectionnerons les gagnants demain (3 octobre) en début d'après-midi !

[ZDI-24-1321|CVE-2024-40841] Apple macOS AppleVADriver Out-Of-Bounds Write Remote Code Execution Vulnerability (CVSS 8.8; Credit: Michael DePlante (Michael DePlante) of Trend Micro's Zero Day Initiative) zerodayinitiative.com/advisories/ZDI…

It's SteakOverflow today (by ESN'HACK)! Baptiste M. and Romaiη  present how they compromised the BC500 during #Pwn2Own

Recordings of the #HEXACON2024 talks have been uploaded to our YouTube channel 🎬 youtube.com/playlist?list=… See you next year!

Strengthening #FreeBSD: Addressing Vulnerabilities through Synacktiv’s Synacktiv Code Audit focusing on the bhyve hypervisor and the Capsicum security framework - via #gcu freebsdfoundation.org/blog/strengthe…

We now have a #bsky account! Follow us on bsky.app/profile/synack…. We'll be posting on both platforms, so stay subscribed here 😉

The SRAM placement somehow has the same energy as this optimal packing of 17 squares inside a square

Les talks de Baptiste M. , Romaiη  , Virtualabs, Tog et Worty sont dispo en libre accès sur notre PeerTube : peertube.esnhack.fr 🎥 Rejoignez l’asso ici pour accéder à 15+ autres rediffs ! : helloasso.com/associations/e… Merci à tous les speakers et bonne année ! 🎉

Par contre, on est toujours sans nouvelles du renard et de la belette qui étaient partis nager avec lui.

In iOS 18.4, Apple introduced a bug in dynamic symbol resolutions for some specific exports. F4b took a long journey down a rabbit hole to understand its root cause. synacktiv.com/en/publication…

Azure intrusion for red teamers by Paul Barbé & Matthieu Barjole (aevy) hexacon.fr/trainer/barbe_…

0x2bad 🫠

There are still seats available for our "iOS for Security Engineers" training at #HEXACON2025! Book it while it's hot 😉 Conference tickets are also still available if you register for a training.

While performing security research on IoT control applications, Areizen and Cyp discovered critical vulnerabilities in the mobile app for the Eachine E58 drone. These flaws could potentially lead to remote code execution on the user's smartphone. synacktiv.com/en/publication…