Shiro

89 posts

Shiro

@ShiroPycatchown

Vulnerability researcher @Synacktiv, pwn and reverse enthusiast; doing some CTF on my freetime @ @RMUBYGG

Katılım Eylül 2014

166 Takip Edilen219 Takipçiler

Shiro retweetledi

Synacktiv@Synacktiv·4 Haz

For our first talk, Ambre presents her previous research about firmware images identification #SSTIC2025

English

2.6K

Shiro retweetledi

Hell Diner@DinerHell·16 Mar

🔥Introducing Arion🔥 A high-performance C++ framework for emulating executable binaries. Based on Unicorn and inspired by Qiling, Arion offers an easy-to-use interface and super low execution times making it a great ally for fuzzing or other applications. github.com/h311d1n3r/Arion

English

4.3K

Shiro retweetledi

Synacktiv@Synacktiv·23 Nis

The FastCGI library, mostly used in embedded equipment, was vulnerable for decades to an integer overflow over the IPC socket in 32-bits architecture. Check out how @ShiroPycatchown found it and exploited it for RCE! synacktiv.com/en/publication…

English

140

9.2K

Shiro retweetledi

Barbhack@_barbhack_·1 Ağu

📢 Workshop #hardware confirmé ! ➡️ @Phil_BARR3TT 🗓 "Introduction au Car-Hacking : comment construire sa "Car in a Box"" 👉 barbhack.fr 🚗🏴‍☠️⚒️ #car #hacking #ot #iot #barbhack23

Français

1.6K

Shiro@ShiroPycatchown·15 Tem

@und3ath1 Best of luck mate, hope to see you back and ready asap

English

und3ath@und3ath1·15 Tem

2nd pneumothorax in 2 months.. time for a painful surgery :/ .

English

362

Shiro retweetledi

Barbhack@_barbhack_·31 May

🏴‍☠️Hackers ! Speakers ! Sponsors ! 🏁 Ouverture généraleeeee 🏁 🎫 Billets. 🔊CFP 🎁 Kit sponsors >> 26 août Barbhack 2023 << 🏝 barbhack.fr/2023/fr/ #hacking #conference #barbhack23 cc @asso_hzv

GIF

Français

12.5K

Shiro@ShiroPycatchown·24 Mar

@Synacktiv @_p0ly_ @vdehors Really looking forward the blogpost/conference if it's planed, amazing job

English

951

Synacktiv@Synacktiv·23 Mar

After having finished their exploit in an hotel room, @_p0ly_ and @vdehors successfully compromised the Tesla Model 3 infotainment through bluetooth and elevated their privileges to root! Combined with the previous entry, this could have been a full chain to take over the car!

TrendAI Zero Day Initiative@thezdi

👀👀👀👀👀

English

272

45.2K

Shiro retweetledi

voydstack@voydstack·13 Oca

Le site de la THCon fait peau neuve pour la prochaine édition qui se tiendra du 20 au 21 Avril ! N'hésitez pas à y faire un tour pour prévoir votre venue ! 🥰 @ToulouseHacking

THConvention@ToulouseHacking

Happy new year ! 🎉 Our website is now updated !!! Quick reminder for our Call For Paper ! If you are interested in being a speaker for the THCon 2023 the 20th or 21th of April, feel free to submit your work to our CFP on our Website. 📝 #THCon2023 #CyberSecurity

Français

969

Shiro@ShiroPycatchown·27 Haz

Si des gens vous disent qu'une version NSFW de ce logo a existé, c'est bien évidemment faux.

RootMeUpBeforeYouGoGo@RMUBYGG

We had the chance to team up with some friends of @AperiKube and @navalgroup for this edition of #leHack CTF and managed to win the first place ! 🥳🤘 Thanks @_leHACK_ for the whole event and congratulations to the Capgemini alliance and @Synacktiv ! See u next year

Français

Shiro retweetledi

RootMeUpBeforeYouGoGo@RMUBYGG·26 Haz

English

Shiro retweetledi

RootMeUpBeforeYouGoGo@RMUBYGG·17 Haz

Congratz @voydstack and @_Worty for being once again in the #TeamFR ! You guys rock 🤘

ANSSI@ANSSI_FR

#ECSC2022 arrive à grand pas 🚀 Bienvenue à l’équipe France 2022. 😎#cybersécurité #CTF 📅 RDV du 13 au 17 septembre pour suivre la #TeamFR. 🇫🇷 @enisa_eu Pour plus d’infos ⤵ ssi.gouv.fr/agence/cyberse…

English

Shiro@ShiroPycatchown·25 May

Toute dernière place étudiante récupérée, surfin' to the limits

Barbhack@_barbhack_

🔥 Places BarbHack 2022 : GO ! 🎟 Étudiants / Pros / Soutiens 🎁 Billet = 1 Entrée + 1 T-shirt + Repas midi + BBQ soir + Boissons + Conférences + Rumps + CTF + Workshops ... 🏖 Toulon, le 27 août 2022 🏴‍☠️ #hzv @asso_hzv #hacking #barbhack22 ▶️ helloasso.com/associations/h…

Français

Shiro@ShiroPycatchown·8 May

Terminé second dans ma spécialité derrière l'indétrônable @voydstack durant cette édition de l'FCSC. Voici deux writeups pwn écrits pour être compréhensible par des semi-débutants (enfin je l'espère). github.com/Pycatchown/wri… github.com/Pycatchown/wri…

Français

Shiro retweetledi

RootMeUpBeforeYouGoGo@RMUBYGG·29 Eyl

Let's go #TeamFR 🤘 Proud to be represented by those awesome hackers @DSpiricate @voydstack !

ANSSI@ANSSI_FR

L’#ÉquipeFrance est arrivée à Prague pour le challenge européen de #cybersecurité ! 🇫🇷 Suivez et soutenez votre équipe pendant toute la compétition avec les #ECSC2021 #ECSC et #TeamFR. @ecsc2021 @Cybersec_EU @enisa_eu

English

Shiro@ShiroPycatchown·4 Eyl

@TheLaluka @podalirius_ 'don't want to sound mean though, I just disagree with the idea, I think it could be a good one for specific cases, but not for a generic shellcode

English

Laluka@OffenSkill@TheLaluka·4 Eyl

@ShiroPycatchown @podalirius_ Well, might be a bit longer to generate the shellcode, but once you have it, it can be replayed anywhere independently from the shell type, so "a bit more portable", given you have python.. But you're right, the problem is just moved away :p

English

Rémi GASCOU (Podalirius)@podalirius_·4 Eyl

[thread] Isn't it annoying when you have a working shellcode, but the wrong rights in the spawned shell ? Newer versions of UNIX shells no longer transfer SUID rights by default. Here is the shells affected by this, as well as a new shellcode for tclsh: podalirius.net/en/articles/un…

English

Shiro@ShiroPycatchown·4 Eyl

@TheLaluka @podalirius_ Well, portable... You got to have the right python path, the right version for the binary, and hope for it to be there. While when you have a shell, if you want it to be persistent, well, you have a shell, so just write the commands

English

Shiro@ShiroPycatchown·4 Eyl

@TheLaluka @podalirius_ Honestly; that still sounds longer than just adding a setresuid call on the shellcode, or maybe I did not completely understand what you meant.

English

Laluka@OffenSkill@TheLaluka·4 Eyl

@podalirius_ Why copy it ? Just add the setuid bit on the main python instance, and then have a python snippet ready to spawn a clean shell and remove its own setuid bit ?

English

Shiro retweetledi

Abicom@AbicomIT·31 Ağu

👏Félicitations à notre #pentester Baptiste qui termine sur la seconde place du podium avec son équipe RootMeUpbeforeyouGoGo à l'occasion du #BarbhackCTF lors du #barbhack21 ce week-end à @Toulon 😎 #barbhack #CTF #hacking

Barbhack@_barbhack_

📣 Gagnants #CTF BarbHack 2021 ! 🏅Synacktiv 🥈RootMeUpbeforeyouGoGo 🥉NavHack 👏 Félicitations à tous rdv en 2022!

Français

Shiro retweetledi

RootMeUpBeforeYouGoGo@RMUBYGG·30 Ağu

We end up #2 of the Barbhack's CTF! Really proud of this result 🤘 Big GG to all the other teams, last hour was insane Thank you @_barbhack_ for this awesome event, we had a ton of fun meeting a lot of wonderful hackers and with the great confs/workshops. See u next year ❤️

Barbhack@_barbhack_

📣 Scoreboard #CTF #BarbHack21 👏 Bravo à toutes les #teams 💪 🏴‍☠️ A vos RT, Like et commentaires 🤓 Dites nous ce que vous avez pensé du #ctf 2021 #teamctf

English

Shiro retweetledi

Barbhack@_barbhack_·29 Ağu

📣 Gagnants #CTF BarbHack 2021 ! 🏅Synacktiv 🥈RootMeUpbeforeyouGoGo 🥉NavHack 👏 Félicitations à tous rdv en 2022!

Français

113

Keşfet

@Phil_BARR3TT @und3ath1 @asso_hzv @Synacktiv @_p0ly_ @vdehors @ToulouseHacking @AperiKube