The slides of our REcon talk on the next generation of virtualization-based obfuscators are now available. Moritz Schloegel & I show how to break current VMs and why these attacks will no longer work. We also discuss the next steps in deobfuscation research. synthesis.to/presentations/…

Your IoT devices have been comprised! Sensitive data or keys are disclosed. What to do then? Let's (re)secure the devices! To deep-dive into the topic, find us stand 4-457 at #Ew22 for a demo & join our talk with STMicroelectronics June 21, 11h30! #STAuthorizedPartner #STAuthorizedPartner

Back to Wonderland, and through the looking glass we go: this time, let's all talk together and see how secure messaging works for groups. An in-depth explanation of group protocols in secure messaging by Angèle Bossuat= cryptopote at infosec dot exchange & Laurent Grémy blog.quarkslab.com/secure-messagi… #SecureMessaging

Oops, they did it again! The Titan-M chip is the root of all security in Google's Pixel phones Damiano Melotti & Maxime Rossi Bellom will talk about their journey from Reversing & Fuzzing to Code Execution & leaking its encryption keys tomorrow at TROOPERS Conference troopers.de/troopers22/age…

Mattermost: now with "crypto", as in cryptography 🔥🚀🕵️‍♀️🕵️‍♂️ #pts22

Let your firmware analysis bloom! On the second day of Pass the SALT Conference Quarkslab's Damien Cauquil (Damien Cauquil (@[email protected])@mamot.fr) talked about more, better firmware analysis with Binbloom v2, an Open Source tool originally developed by Guillaume Heilles and further improved by @virtualabs #pts22 github.com/quarkslab/binb…

What does Philippe Teuwen do when he is not playing with wired things? Well of course, he plays with wireless things instead, and tomorrow at Pass the SALT Conference he will explain how in his "RFID/NFC: Rise of Proxmark3" Hands On workshop. #pts22 cfp.pass-the-salt.org/pts2022/talk/M…

The Quantum Menace! Have a look at our tables summarizing the current landscape of (French) certification process for Post-Quantum Cryptography. If you’re looking for ways to navigate it, come and talk to us! github.com/quarkslab/pqc_…

Today I presented a joint work with iarce erynian and bcreusillet from quarkslab at the French Academy of Technologies Académie des technologies to answer “why is it so hard to build secure software?” Obviously a tricky question that will deserve a longer development than a tweet :)

Master English Accent for Frogs - où comment présenter en *anglais* et être compris (par des anglophones), à l’usage des speakers français de conférences de sécurité informatique/hacking… cryptax.medium.com/english-accent…

Ça recrute ! Quarkslab: deeptech experte en protection logicielle 💼👉 : ingénieur sécurité blockchain / R&D cryptographie, développeurs et ingénieurs, marketing digital… 🎙️ Marion Videau (quarkslab), Lorraine Goumot, Sandra Gandoin

Our MSVC Windows-based compilers are back. Sorry for the inconvenience -mg

C’est l’heure de se plonger dans le dernier HS de MISCmag où 3 de nos ingénieurs vous expliquent les enjeux du cloud : - Isoler ses resources avec Azure - Les nouveautés de sécurité de Kubernetes - Attaquer GCP, AWS et Azure Bonne lecture <3

Slides and videos are now available for most KLEE 2022 workshop presentations. Thanks again to all participants for the great talks! srg.doc.ic.ac.uk/klee22/schedul…

Congratulations dm !! Yesterday Alexis Challande successfully defended his PhD thesis: "Towards 1-day Vulnerability Detection using Semantic Patch Signatures" Detecting a patch in a binary is hard, that's why he worked on it :) Congrats thesis co-director Robin David too

Our 2022-2023 internship season is open! Looking for a 6-month immersion in a top-notch security research environment? Searching for final answers to "pain au chocolat or chocolatine", "emacs or vi"? Check out these other important topics & apply soon blog.quarkslab.com/internship-off…

The week is not over if you are at Hexacon Join Thierry Doré at 12:30 tomorrow and learn about his journey into the wilderness of fuzzing NVIDIA GPU drivers and then exploiting them hexacon.fr/conference/spe… #WTFuzz #GPU #Fuzzing

WhiteBox Cryptanalysis Christmas has come early this year and it brought a gift: Introducing Blue Galaxy Energy by Philippe Teuwen and Nicolas Subayrole, the first open source implementation of the BGE attack that turns 20 years old in 2024. blog.quarkslab.com/blue-galaxy-en…

A decade is an eternity in security. 🛡️ Ten years ago, we released the Clang Hardening Cheat Sheet. Today, the landscape has changed. TRIKKSS & bcreusillet break down the latest mitigations to keep your code secure. 🔗Read the update: blog.quarkslab.com/clang-hardenin…