Pablo Artuso 🗿🇦🇷

Just finished our presentation at #BHUSA of how attackers may root your enterprise servers! I hope attendees understood and enjoyed our research. Now is time to grab a beer and enjoy the rest of the conference @BlackHatEvents. @_1ggy, it was a pleasure working with you mate!

Arranca la @ekoparty mañana, arme unas calcos y un challenge usando Raspberry Pi Pico. Mañana publico más información del challenge para los que quieran participar, se pueden ganar unas Raspberry Pi Pico y algún otro premio sorpresa. #ekoparty #hardwarehacking

No tires tus electrónicos en la calle, llévalos a la @ekoparty y deja que alguien los reutilice o los recicle. Si no tomamos conciencia ahora, dudo que pueda escalar mucho más tirar las cosas fuera de nuestra vista. #basuraelectronica #etrash #reducir #reutilizar #reciclar

Así como el año pasado, este año también se va a poder llevar dispositivos electrónicos a la @ekoparty para ser reutilizados o reciclados. No tiremos dispositivos electrónicos, hagamos un esfuerzo para que haya menos basura electrónica. Si tenes algo llévalo, por favor colabora.

I'm thrilled to announce that my talk "Gotta Cache Em All: Bending the Rules of Web Cache Exploitation" was accepted at Black Hat USA 2024! I'll be showing how to abuse web cache parsers to completely compromise thousands of sites! #BHUSA @BlackHatEvents #gotta-cache-em-all-bending-the-rules-of-web-cache-exploitation-40242" target="_blank" rel="nofollow noopener">blackhat.com/us-24/briefing…

My talk at Ekoparty about how I was able to combine two independent research projects in order to compromise SAP systems though the Internet and without authentication is out! Thanks #ekoparty for everything! It was an outstanding experience! youtube.com/watch?v=qNZ6R4…

A todos los participantes de la @ekoparty les recomiendo que traigan su hardware viejo y en desuso. Esto incluye computadoras, teléfonos, tableta, baterías, etc. Colaboremos entre todos para que la “basura” electrónica sea tratada de forma responsable.

👀 .@lmkalg and @_1ggy killing it at #BHUSA last week! And #ICYMI the full report around their recent #P4CHAINS findings is live 🎉 Check it out here: bit.ly/44ZrJ8P #SAPsecurity

We have a special recommendation for you: @BlackHatEvents talks that are not to be missed! 🎉 🔗 #chained-to-hit-discovering-new-vectors-to-gain-remote-and-root-access-in-sap-enterprise-software-31340" target="_blank" rel="nofollow noopener">blackhat.com/us-23/briefing… by @lmkalg & @_1ggy 🔗 #windows-agentless-c2-abusing-the-mdm-client-stack-32549" target="_blank" rel="nofollow noopener">blackhat.com/us-23/briefing… by @marcosd4h & @thezachw 🔗 #secrets-of-submitting-to-black-hat-a-guide-to-writing-a-successful-submission-34199" target="_blank" rel="nofollow noopener">blackhat.com/us-23/features… by @UnaPibaGeek Good luck to everyone! ⚡

* +18 years * Full academic status at College/Univ * College/Univ id card Keep in mind that you should deal the rest of the expenses (hotel, food, travel, etc) If you want to apply, DM me explaining why would you like to be part, and with @_1ggy we'll try to select some of you.

@BlackHatEvents has this amazing idea of letting speakers propose students who will receive a complimentary briefing pass for the conference. An exciting opportunity to keep building the security industry. There are some requirements you must accomplish to be a fit:

Are you a student willing to be part of the security industry? Would you like to receive a complimentary briefing pass for this year's @BlackHatEvents ? If you may be a fit, keep reading .. (Retweets to help spread the word will be really much appreciated)

Our talk was accepted for @BlackHatEvents. I'm super happy but still shocked about this news. I wrote some paragraphs about this achievement linkedin.com/posts/pablo-ag… Hope you enjoy our new talk with @_1ggy

Sunday read. This is hilarious. Engineers are competing who creates the worst UI on Reddit. I think the winners are: 1/ Enter your phone number

⛓️Confirmed, Intel OEM private key leaked, causing an impact on the entire ecosystem. It appears that Intel BootGuard may not be effective on certain devices based on the 11th Tiger Lake, 12th Adler Lake, and 13th Raptor Lake. Our investigation is ongoing, stay tuned for updates.

It was decided to name this chainable bugs as #P4CHAINS. Want to read a bit more about it? * onapsis.com/blog/p4chains-… * linkedin.com/pulse/p4chains… Still interested? Join Onapsis' briefing: linkedin.com/posts/onapsis_…

Since 12/22, SAP is patching critical vulnerabilities as a result of a research project that I've been doing for some time. Today, my key finding was patched: CVE-2023-28761. An innocent 6.5 bug, that opens the door to abusing all those critical patched bugs through the Internet.

¡A las 10.30hs inicia el Sponsor Track en la SALA E de la #Eko202 con la charla de @idfavro de @onapsis: "Lessons learned from pentesting 100's of SAP systems"!

¿Queres aprender sobre hardware hacking? ¿Tu empresa o productos utiliza hardware de terceros y no sabes cómo auditarlos? ¿Tenes dispositivos IoT en tu red y queres hacer un pentest? Anótate en mi training de la @ekoparty y aprende de forma práctica. ekoparty.org/en_US/eko2022/…

@Enno_Insinuator @nicowaisman @ERNW_ITSec Indeed! An ex-Intern here :)

@nicowaisman .@ERNW_ITSec do

Hey Twitter! Need your help here. What companies that you know open internships in offensive security?

Hice la versión 0.01 del training y me voló la cabeza. Ni me imagino lo que debe ser la final. Y en español? Diría que es único. Súper recomendado!