Antoine Carossio

At that time I was a teenager fascinated by @Apple, dreaming of revolutionizing the world. 10 years later my passion and determination are always stronger. You inspire me in each of my decisions. Thank you Mr Steve Jobs. #RememberingSteve

I just requested an early access to #RunnerH Can't wait to try out their AI Agent ! #CES2025 demo below by @hcompany_ai x.com/hcompany_ai/st…

#BSidesBerlin Speaker Showcase @iCarossio and Nohé from @escapetechHQ uncover key vulnerabilities in GraphQL from 13,000 analyzed issues and share how to mitigate them using techniques like GraphQL Armor. @SecurityBSides #GraphQL #CyberSecurity

🇫🇷🇫🇷🇫🇷 Vive la France! 🇫🇷🇫🇷🇫🇷 Ville des Lumières #Paris2024

Diving into the gaps of auto-spec generation tools. Understand the challenges and areas for improvement in our latest blog post. Check it out! 👉 escape.tech/blog/limitatio… #TechInsights #DevTools #SoftwareEngineerin

Unlock the full potential of your financial services with the power of API discovery. Learn why it's crucial in our latest blog post. 🗝️💼 #APIDiscovery #FinanceTech escape.tech/blog/why-api-d…

Dive into the world of Access Control! Our latest article demystifies RBAC, ABAC, and DAC models. Keep your data secure with the right strategy. Learn more 👉 escape.tech/blog/access-co… #AccessControl #Cybersecurity #RBAC #ABAC #DAC

It’s about to get 🔥 in here!

🚀Les candidates du Prix de l’Innovation sélectionnées pour présenter leur projet devant un cercle d’investisseurs : @Defants35 @escapetechHQ @qevlarAI @SnowpackEU @CYBI_CYBER @DuoKeyCH @hadriansecurity @_reversense_ @Scovery_io Mokn Cybershen Open SEZAM Brain SECURITY Bistrustee

@Galydra @freemobile C’est réglé pour toi ?

@Galydra @freemobile Pareil ! De RED vers Free..

Nothing ‘Rainier’ than a day in Seattle, they say. We present you with an opportunity to escape the rain—join @TristanKalos and @iCarossio , who will present Escape's research at the Bsides Seattle. ⏰ When? 11:30 AM, April 27th 👀

@Raybeorn @psiinon @crashappsec @escapetechHQ Thanks @Raybeorn! Keep in mind this is not a scientific research article post but a popularization blog post that presents a simplified version of our tech (that was roughly our first iteration in fact). So if you want more details I’m happy to jump on a call with you ;) Best

@iCarossio @psiinon @crashappsec @escapetechHQ I’ll check out your blog posts. I haven’t heard of rest-ler seems interesting. Will check that out too

🚨 DAST is being sidelined by the rise of Business Logic Security Testing. Find out why this shift is crucial for safeguarding your applications! Dive into the insights here: escape.tech/blog/dast-is-d… #CyberSecuri

@crashappsec @escapetechHQ 3/ To enrich those results, we can integrate in Read-Onky to your Cloud Providers, Gateways and Development tools.

@iCarossio @escapetechHQ I don't think that answers my question. If you claim 100% visibility, how do you detect a build pipeline that you don't have your tools deployed in AKA shadow engineering?

@crashappsec @escapetechHQ Are you asking how we detect exposed Shadow APIs? 1/ Without any configuration, Discovery uses a combination of subdomain enumeration, reverse WHOIS, dorking, fingerprinting… to find all your exposed APIs. 2/ For internal APIs we need a reverse proxy github.com/Escape-Technol…

@crashappsec @escapetechHQ Hello @crashappsec, it's true the title can lead to confusion. For now, from a business POV, our Scanner enters the DAST Market category, although from a tech/product POV it's been designed from scratch to assess the business logic of modern APIs in a shift-left approach.

@escapetechHQ When are you retiring this product then? This post announcing its new features was 2 days ago escape.tech/blog/dast-prod… - or a click bait title perhaps? If so the industry needs better than that

@crashappsec @escapetechHQ It appears that you're wondering how Discovery works. Escape Testing (Business Logic DAST) & Discovery are 2 different technologies. Discovery requires no configuration and is used to trivialize Testing and prioritize its results. I'm writing another article about that ;)

@escapetechHQ And while we are at it, how do you "Discover and secure 100% of your APIs with ease "given no reasonable sized orgs have well defined central CI/CD ? I think you mean 100% of those where you have installed your tool don't you?

@Raybeorn @psiinon @crashappsec @escapetechHQ Hello @Raybeorn & @psiinon, it seems you're wondering if we are yet another wrapper of OWASP Zap. I invite you to read my article until the end, which links to a popularization article about our core technology: escape.tech/blog/escape-pr… Happy to answer your questions! // CTO

@psiinon @crashappsec @escapetechHQ Haha

Just unveiled: Our proprietary business logic security testing algorithm 🛡️! Discover innovation that's elevating cybersecurity - Read all about it 👉 escape.tech/blog/escape-pr…

🚨 Don't forget to join Escape's CTO, @iCarossio , along with @DoerrfeldBill , tech journalist and Editor-in-Chief at the @nordicapis, and @dret , OAI Ambassador at the @OpenApiSpec for a fireside chat on the challenges of API sprawl. Sign up here 👇app.getcontrast.io/register/escap…