Antoine Gql @_bluesheet
Chief Stagiaire Officer (titre honorifique) @Synacktiv bluesheet.fr Joined February 2015-
Tweets147
-
Followers160
-
Following295
-
Likes250
#SaveTheDate 🏆 Le France Cyber Security Challenge #FCSC est de retour. 🗓️ RDV du 5/04 au 14/04. 🏛️ Entraînez-vous dès à présent sur la plateforme #Hackropole pour être au top le jour-J. 🔗 hackropole.fr/fr/ Prêts à relever le défi ?
Only a few days until #Pwn2Own Automotive in Tokyo. Our ninjas will bring some interesting entries with them ;)
Bored of managing multiple proxychains configurations? @hugoclout developed bbs, a swiss army knife proxy manager for red teamers! The project is available on our GitHub: github.com/synacktiv/bbs
Dive deep into WordPress internals with the latest article by @_bluesheet from the "Web Architect" series, tailored for security researchers looking to understand the core mechanisms of WordPress. synacktiv.com/publications/w…
A new platform gathering all the French challenges for the ECSC qualifier since 2019 is now live! Please come and try your CTF skills and join the wonderful French community on Discord! 🥖 🇫🇷 Website: hackropole.fr/en/
Stream is up ! :) Fin estimée à 23:30
Uncovering the hidden risks of a one-year-old Magento CVE! The next article by @_bluesheet in our web frameworks analysis series delves into the intricacies of CVE-2022-24086, a template engine flaw leading to a Remote Code Execution in this popular CMS. synacktiv.com/publications/m…
Nous proposons un stage à Télécom SudParis (site d'Evry ou de Palaiseau) autour des technologies eBPF et de la provenance. Ce stage pourrait ensuite donner lieu à une thèse CIFRE avec Orange, sur le site de Caen. Plus d'information sur cs.ip-paris.fr/courses/tracks…
Have the recent articles by members of our pentest team stirred your curiosity as to how research and publications are handled within the team? That, and much more, is covered in the pentest team presentation article: synacktiv.com/publications/p…
The first CMS covered is Magento, the well known e-commerce platform synacktiv.com/publications/m…
Rare are the pentesters who have never come across an up-to-date CMS installation during a 3 days audit, wondering what to do next. We are starting a blogpost series covering CMSs and web frameworks internals, with two articles by @_bluesheet synacktiv.com/publications/w…
Cette édition de BarbHack se termine avec la fin du CTF, bravo à tous les participants. A l’année prochaine !
We've just published 'Smashing the state machine: the true potential of web race conditions' by @albinowax! Dive in to arm yourself with novel techniques & tooling, and help reshape this attack class: portswigger.net/research/smash…
📸 Retour en images sur l’entraînement de la #TeamFrance #ECSC Bravo à tous les participants et merci à l' @enisa_eu pour l’organisation de cet événement inédit 👏 Rendez-vous en Norvège du 24 au 27 octobre 2023 ! #CTF #SSI #cybersécurité
@mubix GoSecure Nettitude Code White MDSec Synacktiv
[#FCSC2023] L’ouverture des inscriptions arrive bientôt, tenez-vous prêt pour une épreuve teasing du FCSC23 🕵️ #CTF #CHALLENGE
CTF is over! Congrats to @justCatTheFish, @BushwhackersCTF & @0rganizers! Thanks everyone for participating @1ns0mn1h4ck #INS23! Here's the final scoreboard of the CTF.
Members from past ECSC Team France played the Insomni'hack Teaser CTF and we ranked 4th! Thanks @1ns0mn1h4ck for the organization and congrats to @justCatTheFish, 0daysober and @p4_team! We hope to see you all in Lausanne! md5("TeamFR_alumni") = 18b72b5a06dcd23f498e6e6339159924
Using the recent io_uring Linux kernel API, our ninja Maxime Desbrus built a fast and modular network scanner in the #Rust language. synacktiv.com/publications/b…
Imogen Dropinski @DropinskiI6940
75 Followers 5K FollowingEllora Bator @bator_ello
87 Followers 5K FollowingGene Borsa @GeneB61516
88 Followers 5K FollowingRolix @Rolix_cy
122 Followers 128 Following Cybersecurity student and serial flagger Member of @rhackgondinsSarai Hunker @hunk_sara
101 Followers 5K FollowingAlina Erin @AlinaErin10984
77 Followers 5K FollowingLiana Killay @LKillay37801
29 Followers 5K FollowingRylee Baenziger @BaenzigerR4346
76 Followers 5K FollowingYvetteCurts @YCurts71860
80 Followers 2K FollowingRomain du Marais @Romain_PourInfo
1K Followers 2K Following Auditeur en cyber sécurité et wanna-be vulgarisateur https://t.co/JrKbUPAm0v Membre @cafe_sciences et @CEFCYS_OfficielSamoth @Samoth690
55 Followers 356 Following Étudiant passionné d'informatique. Je joue à des jeux vidéos de temps en temps. Amateur photographe.Ectario @Ectari0
25 Followers 96 Following Cryptography & OffSec enjoyer: 🇨🇵 CTF Player w/ @MadeinFranceCTF & @Phreaks2600p0pey - Maxime @_P0pey
51 Followers 79 Following Cybersecurity Student @EPITA 🇫🇷 | Pentester @Synacktiv 🥷 | CTF member @HackDrinkFlag 🍺Random Robbie @Random_Robbie
15K Followers 5K Following Scanner of the internet and owner of your k8s. All opinions here are mine and do not represent my employer's views. @[email protected][email protected] @0xTHMS
717 Followers 3K Following GNU/Linux sysadmin with a taste for devops, cybersecurity, and programming. I tweet about my work, open source, cryptography, privacy, freedom, and jiat0218.Vincent BOUZON @b0l0k_
426 Followers 1K Following 🧑💼 Director @Ledger 🆓 https://t.co/yNkYBawMQL 🕸️ https://t.co/Nf8JfILyDnSwissky @pentest_swissky
17K Followers 2K Following RedTeam | Pentest Author of PayloadsAllTheThings & SSRFmap https://t.co/w1ZLRqoafGmars_452 @njbqnliugzbjn
0 Followers 1K FollowingCyberSecurity WTF @CyberSecWTF
138 Followers 45 Following #bugbountytips #pentestingtips #cybersecurity #redteaming #purpleteamingsudi @sudhanshur705
4K Followers 533 Following Remember, whatever happens... There's always a vulnerability./AbOdE @AbOdE_HaK
129 Followers 2K FollowingLoick PELET @greenbacktick
237 Followers 3K Following *nix & foss enthusiast. "Si vous acceptez le risque vous en acceptez les conséquences."Blue @BlueJ0k3r
183 Followers 2K Following Ma passion pour l'informatique n'a d'égal que ma haine pour les imprimantes.Benny @365_benny
30 Followers 346 FollowingSuperment @superment15
100 Followers 471 Following0xblank @0xblank
51 Followers 1K FollowingKondah Hamza 🦑 @kondah_ha
2K Followers 782 Following 👾 Ingénieur Cybersécurité Senior | Lead Cyber Trainer | Ⓜ️icrosoft MVP | ⚒️CRTP, CRTE, CRTO,eJPT,eCPPTv2,eCPTXv2, BTL1, CBE, FOR508 ⚒️NOODLE @bragames2
403 Followers 954 Following Pentester @secnumcloud | Student at @Ecole2600, I like to learn about Windows/Active Directory pentesting, Red Team stuff & Maldev enjoyerEuz | Matthieu 🐙 @_Euzebius
2K Followers 2K Following Gamer, hacker. Purple teamer at 💜. Infosec swiss army knife. Love pentest, threat hunting, IR. HTB 🇫🇷 ambassador : euz. I didn't choose InfoSec, it chose me.makelaris @makelariss
1K Followers 2K Following I breathe content. 🏴 CTF Technical Manager @hackthebox_eu. Opinions are my own. he/him9MF @n1neMF
138 Followers 3K Followingflomb @flomb_
24 Followers 1K Followingkalimero @kalimer0x00
273 Followers 829 FollowingAlex_ @Alex_ctf_
62 Followers 704 Following 🇫🇷 CTF Player for @idekCTF (Web/Forensic) | ECSC Team France 2023 | Bug Bounty hunterRobert Xiao @nneonneo
4K Followers 210 Following Assistant Professor at @UBC_CS; CTF player with PPP @PlaidCTF; electronics, hardware, software, HCI, securityEtoiles @AREtoiles
677K Followers 408 Following Smash Pac-Man Animateur - ingénieur - Streamer multigaming et même de culture générale sur Twitch - [email protected] je ferai QPUC un jour https://t.co/zEFgY37DraCaido @CaidoIO
6K Followers 29 FollowingDirk-jan @_dirkjan
25K Followers 175 Following Hacker at @OutsiderSec. Researches AD and Azure (AD) security. Likes to play around with Python and write tools that make work easier.Antonio Cocomazzi @splinter_code
8K Followers 319 Following offensive security - windows internals - reverse engineering | https://t.co/29suYwH66HJames Forshaw @tiraniddo
48K Followers 365 Following Security researcher in Google Project Zero. Author of Attacking Network Protocols. Tweets are my own etc. Mastodon: @[email protected]Romain du Marais @Romain_PourInfo
1K Followers 2K Following Auditeur en cyber sécurité et wanna-be vulgarisateur https://t.co/JrKbUPAm0v Membre @cafe_sciences et @CEFCYS_OfficielRandom Robbie @Random_Robbie
15K Followers 5K Following Scanner of the internet and owner of your k8s. All opinions here are mine and do not represent my employer's views. @[email protected][email protected] @0xTHMS
717 Followers 3K Following GNU/Linux sysadmin with a taste for devops, cybersecurity, and programming. I tweet about my work, open source, cryptography, privacy, freedom, and jiat0218.Kathrin Hövelmanns @quantum_bat
396 Followers 234 Following Irène Curie fellow at @TUeindhoven. I like quantum-resistant crypto, math and philosophy. 🐘 QuantumBat, roaming infosec.Vincent BOUZON @b0l0k_
426 Followers 1K Following 🧑💼 Director @Ledger 🆓 https://t.co/yNkYBawMQL 🕸️ https://t.co/Nf8JfILyDnSwissky @pentest_swissky
17K Followers 2K Following RedTeam | Pentest Author of PayloadsAllTheThings & SSRFmap https://t.co/w1ZLRqoafGLigne 4 @Ligne4_RATP
45K Followers 30 Following Trafic en temps réel, travaux & événements... Retrouvez-nous tous les jours sur votre #ligne4 ! La #RATP est opérateur de mobilités pour @idfmobilites.kalimero @kalimer0x00
273 Followers 829 FollowingArkunir @Arkunir
1.1M Followers 2K Following Memphis Depay est un crack interplanétaire / j’ai 21 ans / @MiraiMathiis @Sayfzu / Contact : [email protected] / @OLLexter @lxt33r
285 Followers 527 Following Reverse Engineer @fuzzinglabs , CTF Player for @thehackerscrew1 and @MadeinFranceCTFSimon Puech @Simon_Puech
54K Followers 682 Following Je parle de trucs qui m'intéressent, des gens disent que c'est cool alors je continueAptura ≽ܫ≼ @ApturaLink
94 Followers 98 Following Renard rusé passionné d'informatique et de protection des données. Militant pour l'écologie. #Sysadmin 🦊🌳Midniblue @Midniblue
245 Followers 302 Following XOCON incoming... ex #Infosec student @ENSIBS Working at Login sécuritéPuN @pun_sec
92 Followers 119 Following CTF Enthusiast, Challenge maker and Pentester 👀 I like driving things 🏎️✈️🥽 ROT13.B??.B??.B??.B??.B??.B32.XOR(B)Sonar @SonarSource
10K Followers 1K Following Trusted by 7M developers, Sonar helps you build high-quality code quickly and systematically. Our products @sonarlint, @SonarQube, @sonarcloud ensure clean codeEloi Benoist-Vanderbe.. @elvanderb
5K Followers 285 Following Enthusiast reverse engineer of obfuscated and protected binaries. Exploit things @Synacktiv. Very occasionally on twitter, email/discord if you want to ping me.Ivan Kwiatkowski @JusticeRage
9K Followers 73 Following Lead cyber threat researcher @HarfangLab. Maintainer of Manalyze, Gepetto, and writer. Trolling on a purely personal capacity.Elf @CypElf
168 Followers 40 FollowingBellingcat @bellingcat
781K Followers 67 Following Want to support our charity? https://t.co/scuUINEvTN Buy our book "We Are Bellingcat" here: https://t.co/2JiuWFfTpO Our award-winning podcast series: https://t.co/S1rflrkXueREcon @reconmtl
14K Followers 671 Following REcon: Annual reverse engineering and security conference held in Montreal.Olivier🐿️ @gloupin
3K Followers 407 Following Professor Torturer of cryptographic primitives he/him/anyMelonSec @melon_sec
169 Followers 54 Following Leadership élitiste des melons de l'infosec , en croisade contre les égos fragilesPHREAKS 2600 @phreaks2600
302 Followers 19 Following Phreaks 2600 is a Capture the Flag (CTF) team of @ecole2600 🇫🇷 | @Deloitte Partnerhextree.io @hextreeio
5K Followers 2 Following 🌱 Grow your cybersecurity skills with concise and well-edited video courses - coming soon! Created by @LiveOverflow and @ghidraninja.[email protected].. @IAmMandatory
12K Followers 485 Following Red Teamer, meme archivist, XSS Hunter author, DNS/TLD/web security researcher.ValekoZ @valekoz_
192 Followers 383 Following CTF player at @phreaks2600, student at @ecole2600 and ninja at @SynacktivCharles Fol @cfreal_
3K Followers 544 Following employer: @LexfoSecurite @ambionics ~ blogs: https://t.co/cLoNdCGPU7 https://t.co/JVMLjUzTJU https://t.co/t9a5IcOXSUTrustedSec @TrustedSec
74K Followers 792 Following End-to-end Cybersecurity consulting team leading the industry, supporting organizations, and giving back. #Hacktheplanet Blogs, news, webinars, and tools!Boschko 🇨🇦 @olivier_boschko
4K Followers 2K Following just a french canadien | adversary emulation (red team) @ RBC | CISSP BSCP CRTL CRTO OSCP eWPTX eCPPT | goofing off @ https://t.co/aWC0YYEp9xpilvar @pilvar222
780 Followers 363 Following Computer Science student @EPFL | CTF player @polygl0ts and @0rganizers | ECSC Swiss National Hacking Team @TeamM0unt41n | Part-time bug hunter 🐞Troll In Paris @trollinparis
504 Followers 239 FollowingThalium Team @thalium_team
2K Followers 0 Following https://t.co/Sx05emsfNz Groupe Thales / Lutte Informatique / recherche de vulnérabilités / développements Red Teamvdehors @vdehors
999 Followers 228 FollowingThanks a lot to @kevin_mizu and @BitK_ for the challenge during the FCSC :) I've made two write ups for "Twisty Python" and "monopoly", you can found them here : github.com/W0rty/WU-FCSC2… Moreover, thanks again to @ANSSI_FR the CTF was amazing as every year 🩵
La plateforme du #FCSC2024 🐔 est ouverte ! 🎮 Prenez de l’avance en vous inscrivant et tentez d’ores et déjà de résoudre la première épreuve teasing : france-cybersecurity-challenge.fr 🔔 RDV le 5 avril à 14h pour le début des épreuves.
We got an email from the Serbian Registry of Internet Domain Names (RNIDS), the organisation that is responsible for the `.rs` top-level domain. Looks like they are a big fan of Rust. 😊
Confirmed!!! The @Synacktiv team used a single integer overflow to exploit the #Tesla ECU with Vehicle (VEH) CAN BUS Control. The win $200,000, 20 Master of Pwn points, and a new Tesla Model 3 (their second!). Awesome work as always. #Pwn2Own #P2OVancouver
During a security assessment on Ricoh Device Manager NX, our ninja @kalimer0x00 uncovered multiple vulnerabilities. When combined, these flaws could allow attackers to gain remote code execution on the server. Read the details in our advisory: synacktiv.com/sites/default/…
Congratulations to our ninja @_remsio_ for making it to the 4th place with his research about error-based oracles using PHP filter chains!
The results are in! We're proud to announce the Top 10 Web Hacking Techniques of 2023! portswigger.net/research/top-1…
Our ninjas are ready for next week with the first training of 2024 season: 🇫🇷 Active Directory pentesting! From anonymous access to the complete compromise of corporate networks with hands-on practice on 30+ machines! Find the course overview here: synacktiv.com/en/offers/trai…
Here we are! 🥷 Masters of pwn for the third time 🎉 Congratulations to all the ninjas involved! #Pwn2Own
During a security assessment, our ninja @l4x4 identified multiple vulnerabilities on Cisco UCM allowing to gain code execution, escalating privileges to root and then escaping the SELinux context. Patch asap and read the details here: synacktiv.com/sites/default/…
#SaveTheDate 🏆 Le France Cyber Security Challenge #FCSC est de retour. 🗓️ RDV du 5/04 au 14/04. 🏛️ Entraînez-vous dès à présent sur la plateforme #Hackropole pour être au top le jour-J. 🔗 hackropole.fr/fr/ Prêts à relever le défi ?
Only a few days until #Pwn2Own Automotive in Tokyo. Our ninjas will bring some interesting entries with them ;)
- @TheLaluka - Simplity your exploits, a one file for CVE-2023-4357 - @Maltemo - DomPurify WTF writeup from picoCTF - @j0y71d3 - NTLMv2 fini à la petite cuillière ? - @_bluesheet - QubesOS for CTF and ANYTHING 2/3
Merci à tous ceux qui étaient présents hier soir pour la DrinkLoveShare v1 ! En particulier aux rumpers qualitatifs : @rayanlecat @stdkat @pentest_swissky @Zk_Clown @Maltemo @j0y71d3 @_bluesheet & moi 😇 (Slides/Gits/replays incoming dans les jours à venir !) 1/2
Hi friendz ! 🧙♂️ Prochain Stream : Mardi 19 Décembre à 21h ! 🔥 Topics : - Releasing a new CLI tool "listen" - @TheLaluka 🎧 - Advanced PHP PoPChains - @_remsio_ 💣 - PHP'Exploit Chains - @_Worty 🥰 A très vite ! 😎🛠️ twitch.tv/thelaluka linktr.ee/TheLaluka
A very interesting read! 💎 Looking forward to the @DragonSectorCTF CCC talk being published 👀 badcyber.com/dieselgate-but…
L’@ANSSI_FR lance #Hackropole 🏛 une plateforme regroupant la quasi-totalité des épreuves du France Cybersecurity Challenge #FCSC. 🇫🇷 🏆 Une centaine d’épreuves est déjà disponible ! 💪 🚀Rendez-vous dès maintenant sur : cyber.gouv.fr/actualites/lan… #ANSSI #numérique #FCSC #ECSC
A new platform gathering all the French challenges for the ECSC qualifier since 2019 is now live! Please come and try your CTF skills and join the wonderful French community on Discord! 🥖 🇫🇷 Website: hackropole.fr/en/
L’@ANSSI_FR lance #Hackropole 🏛 une plateforme regroupant la quasi-totalité des épreuves du France Cybersecurity Challenge #FCSC. 🇫🇷 🏆 Une centaine d’épreuves est déjà disponible ! 💪 🚀Rendez-vous dès maintenant sur : cyber.gouv.fr/actualites/lan… #ANSSI #numérique #FCSC #ECSC
Our two ninjas @Aeinot_ and @l4x4 identified multiple vulnerabilities on Usercube. The most critical allows unauthenticated export and import of the application's configuration, leading to authentication bypass. synacktiv.com/advisories/use…
Hi friendz ! 🧙♂️ Prochain Stream : Mardi 28 Décembre à 21h ! 🔥 Topics: ON BULLY PHP ! 🧨 - Proc filesystem tricks & mlocate db abuse by @TheLaluka 🏹💣 - Filter chains & unserialize popchains by @_remsio_ 🥷📚 - Pentest methodology & examples per framework by @_bluesheet 💥🔫