On a récemment parlé de la collecte de statistiques d'utilisation dans TousAntiCovid, mais TousAntiCovid Verif a insidieusement ajouté un système comparable. Moins bavard, ce dispositif reste problématique et peu éthique. cc CNIL #PassSanitaire ⬇

topjohnwu.medium.com/state-of-magis…

$ for n in $(seq 1 156); do dig +short -x 198.49.126.$n; sleep 0.5; done

age (WIP) + age-plugin-yubikey + passage + fzf ✨

A short story of extracting KeePassXC passphrase from memory using strings. Providing the resulting dump of strings as a wordlist to hashcat (13400) I cracked the database in a few seconds 😐

I updated whoami.filippo.io over the holidays! If you don't know what that is, skip the spoilers and run $ ssh whoami.filippo.io I wrote up how that works and how I fetched the new dataset for Cryptography Dispatches at words.filippo.io/dispatches/who…. 📮

Did you know #PowerShell has a mechanism for suspending execution in the current scope and provide an interactive prompt? $Host.EnterNestedPrompt() FTW!

Début d’une série d’articles sur le NTDS #ActiveDirectory xmco.fr/active-directo…

Bash Strict Mode redsymbol.net/articles/unoff…

Quick Linux tip 💡 Easily find your gateway IP using the ping command! $ ping _gateway It's one of the hidden ping options and not many people know about it. Follow us Linux Handbook for more such Linux tips daily 🐧🙏

Allez, ça part sur les serveurs

We are releasing #BloodHound 4.3 on April 18. New attack paths to Get Global Admin More Often. Plus: how #BloodHoundEnterprise helps identify and eliminate the same attack paths. See all the details first in this webinar: specterops.zoom.us/webinar/regist…

Heya bunbuns!!!! 🐇 We're part of the Steam Puzzle Fest!! 🎀 There's a new demo of Bunburrows with so much new content!! 🥰 Also new keyart? 🐰 *gasp* OMG Come get outsmarted by bnuuiies: store.steampowered.com/app/1628610/Pa… 🤓 #Steam | #IndieGameDev | #PuzzleFest

But it's running! reddit.com/r/programmerhu…

Hey gang, just a quick update about Silksong. We had planned to release in the 1st half of 2023, but development is still continuing. We're excited by how the game is shaping up, and it's gotten quite big, so we want to take the time to make the game as good as we can. Expect

JSend - Burpsuite Community extension to fetch endpoints from all URL's from Proxy:- github.com/rook1337/jsend Load jsendburp.py file #bugbountytips #infosec Regex credit: github.com/0xsha/GoLinkFi…

Criteo a gagné des milliards à partir de données collectées et traitées illégalement, avec l'aide de la BPI. La CNIL n'exige pas la suppression des données et se contente de 40M€ d'amende. Il ne faut pas nuire à une « pépite » française. Mon analyse complète de la sanction :

OK, I just learned about port reuse in MacOS, and it is a bit wild. 🦓🐺🦏 Here's what happened: 1. Start NextJS app on port 3000. 2. Point browser to localhost:3000. Next looks good. 3. Start Rails app on port 3000. 4. Refresh. Rails looks good. WTF?

If you are not proficient in JavaScript, understanding the prototype pollution vulnerability can be confusing. So, I've written an article for beginners that provides a deeper understanding of objects, constructors, and the prototype chain. rootxsudip.github.io/posts/prototyp… #bugbountytip

AUJOURD'HUI, C'EST LES DEMI DES WORLDS ! AUJOURD'HUI, C'EST LES DEMI DES WORLDS ! AUJOURD'HUI, C'EST LES DEMI DES WORLDS !