switch

I'm glad to announce the release of my VS Code Extension: Multi-Search 🔍 If you find it useful, don't hesitate to share it with your colleagues or friends 🙏 - github.com/Ghizmoo/multi-… - marketplace.visualstudio.com/items?itemName…

still looking for 39th ccc tickets if someone have a contact ...

thanks to everyone who attended my #TheSAS2025 talk "Typographic hit job: when fonts pull the trigger". 🙏 I've written an accompanying blogpost that goes over all the details: haxx.in/posts/2025-09-…

The NSA guy who worked 24/7 to find this bug reading the p2o announcements:

La team @acceis @besecuregroup gagne des bons d'achats 🍖, des médailles d'argent gravées Barbhack, des bières édition limitée, un module #flipperzero Messenger, une édition du magazine #phrack édition limitée en provenance de la @defcon

📣 Gagnants hashtag#CTF BarbHack 2025 ! 🥇 Team @Synacktiv 🥈 Team @acceis @besecuregroup 🥉 Team @FlatNetworkOrg tfns.fr Suivis de EternalBlue CTF Team & heartbleed Félicitations à tous, rdv en 2026 ! barbhack.fr ▶️

@0xdeadc0de___ @EA you are lucky some anti cheat don’t even say which soft lol

😃😃😃😃 @EA why tho, i can't leave what i'm doing in the background and play the game

hashcat v7.0.0 released! After nearly 3 years of development and over 900,000 lines of code changed, this is easily the largest release we have ever had. Detailed writeup is available here: hashcat.net/forum/thread-1…

@NoobosaurusR3x @Formation_bzh

Guillaume Chouquet, fondateur et directeur de l'ESNA, viré de sa propre école par l'@Formation_bzh !!! Je suis consterné et en colère. C'est affligeant de prendre une telle décision quand on sait tout ce que le bonhomme a fait pour l'école et les alternants !

B-2 stealth bombers, brought to you by Coinbase

« Adversaries could potentially exploit pizza delivery patterns to seed confusion or create false signals, turning this intelligence tool into a weapon of information warfare » journee-mondiale.com/en/pentagons-s…

Microsoft just released the patch for CVE-2025-33073, a critical vulnerability allowing a standard user to remotely compromise any machine with SMB signing not enforced! Checkout the details in the blogpost by @yaumn_ and @wil_fri3d. synacktiv.com/publications/n…

First userland ropchain exploit on the Switch 2 Source: bsky.app/profile/retr0.…

Took @akamai_research's script for BadSuccessor and improved it a bit. - runs from non domain joined systems - works in forests - prints the rights each entity has on a OU - pre-flight check if 2025 DCs are present - code changes here and there github.com/LuemmelSec/Pen…

IngressNightmare: 9.8 Critical Unauthenticated Remote Code Execution Vulnerabilities in Ingress NGINX - @wiz_io wiz.io/blog/ingress-n…

#ACCESSGRANTED - On vous en dévoile un peu plus sur le programme ! L'appel confs & rumps est ouvert, contactez-nous : adrien@acceis.fr Billetterie de l'event : my.weezevent.com/access-granted

Hello twitter, made an IDA script/plugin to comment your decompiled Rust code with... Rust source code ! It fetches panic information and reads fetch the associated source code to print it to you in the form of a comment. github.com/N0fix/IDA_rust…

Tu veux ta place 👇 🔥 my.weezevent.com/access-granted 🔥 #accessgranted

Shoutout to the homies at "IObit Malware Fighter". Their IMFForceDelete driver is so wildly vulnerable, and poorly written, you can have their driver arbitrarily delete any file on the machine with 0 privileges and literally 1 line of code Thanks @_mmpte_software for sharing

Here's my research about Python dirty Arbitrary File Write to RCE via overwriting shared object files or overwriting bytecode files. Enjoy! siunam321.github.io/research/pytho… #Research #WebAppSec