Thanks to all the people who make @BSSidesSF happen every year. We're always happy to sponsor such a great conference! All of the #Doyensec team who attended had a great time! See you next year! #bsides #bsidessf

Our 73696e65's latest research has resulted in at least 1⃣5⃣ CVEs in ksmbd🤯, including multiple use-after-frees, bounds checks, type confusion and overflows‼️ Check it out today! doyensec.com/research.html#… #doyensec #appsec #security #linux

Going beyond SSO, our Anaximander decided to take a deep dive into SCIM in our latest blog post. Read it today to learn how including this user identity standard in your next test's scope can reap big rewards! blog.doyensec.com/2025/05/08/sci… #doyensec #appsec #security #scim

We'd like to welcome the latest member of our team - Diego Perez, our new Application Security Intern! Welcome aboard! 🎉 #doyensec #appsec #security #internships

🚨 Advisory Alert!🚨 We've just published our Aleandro's advisory regarding a heap overflow in HAProxy Technologies as part of our coordinated disclosure process. Read all the details here: doyensec.com/research.html#… #doyensec #appsec #security #haproxy

We'd also like to recognize b0n0b0 's cooperation on this advisory! 🙏

Several members of the #doyensec team are here in Berlin 🇩🇪attending offensivecon this weekend! Ping us or just say "hallo" in person, if you'd like to talk #appsec or grab a coffee. We're looking forward to some amazing talks! #offensivecon #security

Attending @confidenceconf in Krakow 🇵🇱 this weekend? Be sure to check out our Szymon Drosdzol's presentation - API Authorization Antipatterns: confidence-conference.org/lecture-2025/#… #doyensec #appsec #confidencecon

We'd like to welcome 👋marce as our latest Application Security Intern. Welcome aboard! 🎉 #doyensec #appsec #internship

🚨Just posted🚨: Learn about real-world API authorization vulnerabilities we frequently see with the slides from Szymon Drosdzol's recent presentation at confidenceconf in Krakow. doyensec.com/resources/CONF… #doyensec #appsec #security

Thanks to inspiration and support from Teleport, #doyensec is proud to release the Security Policy Evaluation Framework, a tool for testing security policy engines! cc:Open Policy Agent,OpenFGA,AWS Security github.com/gravitational/… #appsec #rigo #cedar #openfga #security

🚀We have just released a new Security Advisory for NASA's CFITSIO library 🛰️. Click the link for details on the Heap Overflow, Type Confusion, Out-of-Bound Writes and other vulnerabilities discovered by our Adrian Denkiewicz ! doyensec.com/resources/Doye… #doyensec #appsec #security

Several members of the @doyensec team are heading to TumpiCon 🇮🇹 for our Norbert Szetei's (73696e65) presentation on his awesome ksmbd security research. If you're around, make sure to talk to Luca Carettoni & the team! #doyensec #appsec #TumpiCon tumpicon.org

📢Just published - Our new white paper comparing Semgrep's Code and Community editions! We dove into both versions of this popular tool to see what the differences were and how they performed against each other. doyensec.com/resources/Comp… #doyensec #appsec #security #semgrep

Our latest 🚨Security Advisory🚨 includes multiple vulnerabilities affecting the immersed platform (Immersed). The findings include an RCE via Session Overwriting, an RCE via CSRF and a Privilege Escalation flaw. doyensec.com/resources/Doye… #doyensec #appsec #security

🚨Security Advisories🚨: multiple vulnerabilities in Retool (Retool), including host header injection and CSRF - discovered by Doyensec and the Robinhood (Robinhood) Red team! docs.retool.com/disclosures/cv… docs.retool.com/disclosures/cv… #doyensec #appsec #security #retool #robinhood

Are you located in the US/EU? passionate about #appsec? Maybe you follow #bugbountytips or are an avid #ctf player and are ready to take the next step. If so, we're looking for our next #intern, so consider applying today - hackers.doyensec.com. #doyensec #security #internship

📖Read about a real-world C# #cryptography vulnerability we've discovered in the wild in our latest blog post! No math required (unless you're into that sort of thing)! blog.doyensec.com/2025/08/19/tri… #doyensec #appsec #security #csharp