🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

Watchout! CVE-2023-22809 on Sudo was patched today to prevent a privilege escalation on sudoedit. Read the security advisory by aevy and vic: synacktiv.com/sites/default/…

Attention, nous recevons de nombreux signalements liés à cette campagne ! A traiter en urgence !

Ninjas are getting ready for #P2OVancouver 💪 #Pwn2Own

Wow! It took the Synacktiv team less than two minutes to demonstrate their exploit of the #Tesla Gateway. If confirmed, they will win $100,000 and a Tesla Model 3 (plus these cool hockey pucks). #Pwn2Own #P2OVancouver

Due to the incredible bug chain used for this entry, ZDI decided it qualified for the first ever Tier2 in #Pwn2Own! Huge congratz David B and vdehors 💪 #P2OVancouver

After #Pwn2Own Austin in 2021, we are once again Masters of Pwn at #P2OVancouver! Huge congratulations to the team 🥷, it was amazing!

🚀 Introducing #DFIR_IRIS v2! 🎉 Our IR collaboration platform just got better: ✅ Group management, access control and LDAP ✅ Comments, MD editors & new reports formats ✅ New customers page and stats ✅ Improved integrations And much more! github.com/dfir-iris/iris…

I can vouch for vic and Etienne! Their training is a great opportunity to jump in iOS security FAST! (and you should also stay for Hexacon!) x.com/hexacon_fr/sta…

Microsoft offers a VPN solution called Remote Access Service. ekt0's latest research sheds light on Microsoft VPN service's inner workings, and provides forensic aspects to improve incident response and the monitoring of this service. synacktiv.com/publications/f…

🎙️🇫🇷 Nouvel épisode du podcast Hack'n Speak accompagné de Nonop 🥷 Un épisode enrichissant dédié au métier de la réponse à incident 🚒 Bonne écoute à toutes et à tous 🎶 podcasters.spotify.com/pod/show/hackn…

Ivanti recently disclosed two 0-days vulnerabilities affecting Connect Secure VPN allowing unauthenticated RCE. Based on recent threat reports, ekt0 provides in-depth analysis of Rust payloads executed on compromised ICS at post-exploitation stage: synacktiv.com/publications/k…

Digital forensic analyst chasing artifacts created by when they collected the data...

Freenginx: Core Nginx developer announces fork

If you're a regular Velociraptor user or just looking for a flexible forensic tool, come and discover how Velociraptor's new features make forensic analysis of VMware ESXi hypervisor possible. synacktiv.com/publications/v…

If you are a regular user, you'll no doubt have noticed new features since v0.7.1 that extend forensic capabilities on various systems. Nathanael Ndong shows us how to leverage those new features to perform forensic analysis of a VMware ESXi hypervisor. buff.ly/3W9l6Ql

New Golang ransomware called HexaLocker and developed by a former LAPSUS$ administrator is advertised on Telegram channels. Based on a recent sample, ekt0 provides in-depth analysis of this new strain: synacktiv.com/publications/l…

Want to collect forensic data from remote Veeam backups? Cybiosity's exploration of remote Veeam forensics with Velociraptor might be what you're looking for! synacktiv.com/publications/u…

For all those sketchy CTI and Threat intelligence folks.