.Nico Bst dans Le Monde du Droit "Doctrine fournit des solutions technologiques pour réaliser pleinement l’open data de la justice. L’ouverture des données joue un rôle capital pour assurer la transparence de la justice et la confiance des justiciables" bit.ly/2xtR4d7

“How Doctrine has massively improved its Node.js error analysis with Async Hooks” by @rchampeimont blog.doctrine.fr/how-doctrine-h…

Retrouvez l’article de Us3r777 dans le dernier MISCmag sur une injection d’objet sérialisé dans Pydio

Fifty shades darker: no safe wor(l)d in SMM by Bruno synacktiv.com/posts/exploit/…

//sec4dev Conference Talk (Feb 26-27) Vienna// "Modern #PHP #Security" presented by Léna David & Thomas Chauchefoin, Security Reserarchers at Synacktiv. This talk aims to present the most common "modern" vulnerabilities on PHP. sec4dev.io/sessions/moder…

Late writeup for the OverTheWire.org advent 2019 day2 :) Really fun challenge ! synacktiv.com/posts/challeng…

.@majin_42 published his writeup for OverTheWire.org's advent2019 day2 challenge on our blog: synacktiv.com/posts/challeng… ⚔️

Interested in learning Windows Kernel exploitation ? Synacktiv wrote 3 challenges to help you write your first Windows Kernel shellcodes ! You can already try the first one, or all of them if you're a premium member. root-me.org/en/breve/New-s…

L'équipe Synacktiv vous attend sur le pavillon Bretagne ! #FIC2020

New MISCmag release with 3 articles from the team 🤟: - Hunting vulnerabilities in open source web applications: the GLPI case, by Szlam - Common vulnerabilities in browsers, by Quentin M - Exploit mitigations on Safari for iOS, by F4b

Curious about SD-WAN (Software-Defined WAN) security? dzeta and Julien Legras broke into the Cisco Viptela solution, first batch of vulnerabilities (CVE-2019-16010, CVE-2019-16012) in this fresh new blog post: synacktiv.com/posts/pentest/… #sdwan 🌧️

Do you feel out of touch when your IRC friends talk about DMA attacks? Do you wonder if you should leave your laptop with lock screen in your hotel room? Join Fist0urs during his talk on IOMMU and DMA attacks tonight at 8.20pm (UTC+2) NorthSec !

Speaking JSON with your web app? You should try our new Burp extension: Burp JQ! Filtering JSON has never been easier :) Good job @__aevy__ ! github.com/synacktiv/burp…

Obviously, cryptography can't protect you from everything, such as arbitrary code execution... especially when you leak the private key. This is the story of a Typo3 CMS RCE by Hugow synacktiv.com/publications/t…

ALLES! CTF is over, it was a blast having you <3 Congrats to Synacktiv, C4T BuT S4D, Black Bauhinia for placing top three

I just solved ALLES 🔥 Sandbox Share (exploit of a macOS XPC server to get control of one of its client and steal its flag)... 36h too late (but with a reliable exploit!) Interesting challenge, I'll probably write a solution on Synacktiv blog, stay tuned :)

AppSec Ezine - 398th Edition pathonproject.com/zb/?071edfaf28… #AppSec #Security

Croissants, red wine and high-quality offensive security talks in a wonderful place? That's all the Hexacon team is promising for October 2022. Details and Call For Papers are coming very soon... Until then, a bit more teasing for you folks: hexacon.fr #HEXACON2022

After 3 years, yesterday was my last day at Synacktiv. It has been a pleasure to develop and pentest with you guys ! Thanks for the 🐟

Hey Stimulsoft, if someone discovered a vulnerability affecting one of your product, who should they contact ?