Florian

430 posts

Florian

@flgy

Synacktiv Katılım Nisan 2011

247 Takip Edilen237 Takipçiler

Florian retweetledi

Synacktiv@Synacktiv·12 Eyl

🧑‍🎓 Boost your offensive Active Directory skills with our Entry & Advanced trainings. Hands-on labs with dozens of machines + latest research from DEFCON, x33fcon & more! Seats are limited, don’t miss out! 🔗 Entry: synacktiv.com/en/offers/trai… 🔗 Advanced: synacktiv.com/en/offers/trai…

English

2.9K

Florian retweetledi

Hexacon@hexacon_fr·15 Nis

Azure intrusion for red teamers by Paul Barbé & Matthieu Barjole (@aevy__) hexacon.fr/trainer/barbe_…

Français

6.3K

Florian retweetledi

Synacktiv@Synacktiv·17 Mar

Want to master cutting-edge techniques for attacking Azure? Join us this summer at @BlackHatEvents in Vegas for a deep dive into red teaming on Azure, M365, Azure DevOps, and hybrid infrastructures. Early bird tickets available until May 23rd! #azure-intrusion-for-red-teamers-44458" target="_blank" rel="nofollow noopener">blackhat.com/us-25/training…

English

2.8K

Florian retweetledi

Synacktiv@Synacktiv·7 Eki

GitLab recently released a patch for the Ruby-SAML / GitLab Authentication Bypass (CVE-2024-45409). Our ninjas @alexisdanizan and @b1two_ analyzed the patch and wrote the exploit code! github.com/synacktiv/CVE-…

English

127

8.1K

Florian retweetledi

Synacktiv@Synacktiv·31 Ağu

It's @_barbhack_ time! @croco_byte is on stage to present OU exploitation in AD environments.

English

3.6K

Florian retweetledi

Synacktiv@Synacktiv·14 Ağu

In our latest blogpost, @croco_byte explores the inner workings of SCCM policies and introduces SCCMSecrets.py, a tool targeting secret policies in order to exploit misconfigurations, harvest credentials, and pivot across collections by impersonating legitimate clients. synacktiv.com/publications/s…

English

132

11.5K

Florian retweetledi

Hugow@hugow_vincent·2 Tem

Here is the second part of my GitHub action exploitation series. You will find some exploitation scenarios on popular projects like Microsoft, Apache, FreeRDP, AutoGPT, Ant-Design, Cypress and others 👨‍💻

Synacktiv@Synacktiv

Want to know how we prevented some CI/CD supply chain attacks against Microsoft, FreeRDP, AutoGPT, Ant-Design, Cypress, Excalidraw and others? Read the second article in our series on exploiting GitHub Actions by @hugow_vincent. synacktiv.com/publications/g…

English

497

Florian retweetledi

Synacktiv@Synacktiv·27 Haz

For @WEareTROOPERS second day, @Scouty__ and Paul are presenting their research on Kubernetes bootstrap tokens and AKS

English

4.4K

Florian@flgy·2 Haz

@xarkes_ “Text editor: Helix” ❤️

Filipino

154

xarkes@xarkes_·2 Haz

It's Sunday, you want to binge-watch something but still want to be coding while doing it, and yet you only have one screen? Do like me: xarkes.com/b/coding-while…

English

525

Florian retweetledi

Nicolas Krassas@Dinosn·31 May

A PowerShell script to perform PKINIT authentication with the Windows API from a non domain-joined machine. github.com/synacktiv/Invo…

English

2.3K

Florian retweetledi

Hugow@hugow_vincent·22 May

Checkout my new article if you want to know how to compromise a #GitHub organization by hijacking #CICD runners 🌚

Synacktiv@Synacktiv

Exploiting GitHub Actions jobs by registering a rogue #CICD runner to exfiltrate secrets, @hugow_vincent developed a tool for a real engagement, successfully compromising the GitHub organization! synacktiv.com/publications/h…

English

Florian retweetledi

Guillaume André@yaumn_·6 May

A fun research I did, check it out!

Synacktiv@Synacktiv

In his latest blogpost, @yaumn_ analyzes MDI's detection of PKINIT authentication, explains how to bypass it and releases Invoke-RunAsWithCert, a tool to perform Kerberos authentication via PKINIT with the Windows API from a non domain-joined machine. synacktiv.com/publications/u…

English

1.3K

Florian retweetledi

Hexacon@hexacon_fr·12 Nis

☁️ Whether it's on premises or in the cloud, a domain is a domain. 💪 Flex your intrusion muscles with @tiyeuse and @hugow_vincent's training! ➡️ hexacon.fr/trainer/vincen… 📆 30/09-03/10 2024 📍Espace Vinci, Rue des Jeuneurs, Paris

English

3.4K

Florian retweetledi

Synacktiv@Synacktiv·13 Haz

A while ago during a security assessment, @0hexit identified multiple vulnerabilities on the PRTG Network Monitor application version 21.3.69.1333, allowing an attacker to perform XSS attacks. Read the technical details in the advisory: synacktiv.com/sites/default/…

English

Florian retweetledi

Synacktiv@Synacktiv·13 Haz

We have updated nord-stream, our #CI/CD secrets extraction tool to support GitLab. Turns out it is way easier to dump all the creds on GitLab, check out the updated version of our blogpost to understand why. synacktiv.com/publications/c…

English

9.3K

Florian retweetledi

Synacktiv@Synacktiv·19 Oca

Good news, Synacktiv 2023 trainings are open! Come and get trained by our best ninjas about pentesting Active Directory environments over 5 days, from 27 to 31/03 in our Parisian offices. 🇫🇷 More details here: synacktiv.com/offres/formati… Register at sales@synacktiv.com

GIF

English

10.1K

Florian retweetledi

Synacktiv@Synacktiv·18 Oca

Watchout! CVE-2023-22809 on Sudo was patched today to prevent a privilege escalation on sudoedit. Read the security advisory by @aevy__ and @v1csec: synacktiv.com/sites/default/…

English

153

300

49.9K

Florian retweetledi

Nicolas Krassas@Dinosn·19 Ara

In-depth ldap enumeration utility github.com/franc-pentest/…

English

3.8K

Florian@flgy·8 Ara

@blueshhit You should use the mighty Socat instead anyway ;)

English

Antoine Gql@_bluesheet·8 Ara

[2/2] "-p source_port [...] It is an error to use this option in conjunction with the -l option." As a result: `nc -nvl 8888` works as well as `nc -nvlp 8888`, is shorter and complies with the best practices. So why do we keep seeing the latter in every blogpost / video ?

English

Antoine Gql@_bluesheet·8 Ara

[1/2] Today, I read the netcat man page (linux.die.net/man/1/nc) and I had a lightbulb moment: "-l' Used to specify that nc should listen for an incoming connection [...]. It is an error to use this option in conjunction with the -p, -s, or -z options."

English

Florian retweetledi

Synacktiv@Synacktiv·10 Eki

Through a case study inspired by a recent intrusion test, @ROLANDQuentin2 provides an overview of the different techniques allowing to smuggle PHP payloads into PNG files. Discover how to reliably inject PHP code into images, even in tricky situations! synacktiv.com/publications/p…

English

Keşfet

@BlackHatEvents @alexisdanizan @b1two_ @_barbhack_ @croco_byte @WEareTROOPERS @Scouty__ @xarkes_