Antoine Roly
@aroly.bsky.social
Hacker, Bug Bounty Hunter, Pentester,...
From Namur, BE.
From Namur, BE.
Reposted by Antoine Roly
“We should have banned government use of face recognition when we had the chance because it is dangerous, invasive, and an inherent threat to civil liberties,” EFF’s @MGuariglia.bsky.social told @404Media.co. www.404media.co/ice-and-cbp...
ICE and CBP Agents Are Scanning Peoples’ Faces on the Street To Verify Citizenship
Videos on social media show officers from ICE and CBP using facial recognition technology on people in the field. One expert described the practice as “pure dystopian creep.”
www.404media.co
October 29, 2025 at 8:03 PM
“We should have banned government use of face recognition when we had the chance because it is dangerous, invasive, and an inherent threat to civil liberties,” EFF’s @MGuariglia.bsky.social told @404Media.co. www.404media.co/ice-and-cbp...
Reposted by Antoine Roly
« On est en train de discuter des livres que va lire Nicolas Sarkozy en prison ? Alors qu'il a été condamné pour "association de malfaiteurs". »
@fabricearfi.bsky.social Journaliste d’investigation
La suite :
⏰ 22h50 sur france·tv
➡️https://bit.ly/SarkozyEnPrisonHonneurDeshonneur
🎧en podcast
@fabricearfi.bsky.social Journaliste d’investigation
La suite :
⏰ 22h50 sur france·tv
➡️https://bit.ly/SarkozyEnPrisonHonneurDeshonneur
🎧en podcast
October 21, 2025 at 6:52 PM
« On est en train de discuter des livres que va lire Nicolas Sarkozy en prison ? Alors qu'il a été condamné pour "association de malfaiteurs". »
@fabricearfi.bsky.social Journaliste d’investigation
La suite :
⏰ 22h50 sur france·tv
➡️https://bit.ly/SarkozyEnPrisonHonneurDeshonneur
🎧en podcast
@fabricearfi.bsky.social Journaliste d’investigation
La suite :
⏰ 22h50 sur france·tv
➡️https://bit.ly/SarkozyEnPrisonHonneurDeshonneur
🎧en podcast
🤣🤣🤣
October 21, 2025 at 1:49 PM
🤣🤣🤣
Reposted by Antoine Roly
I’m excited to announce that I’ll be presenting The Fragile Lock: Novel Bypasses for SAML Authentication at Black Hat Europe! In this talk, I’ll show how I was able to continuously bypass security patches to achieve complete auth bypass for major libraries. #BHEU @blackhatevents.bsky.social
October 7, 2025 at 2:55 PM
I’m excited to announce that I’ll be presenting The Fragile Lock: Novel Bypasses for SAML Authentication at Black Hat Europe! In this talk, I’ll show how I was able to continuously bypass security patches to achieve complete auth bypass for major libraries. #BHEU @blackhatevents.bsky.social
Reposted by Antoine Roly
Je lance une bouteille à la mer ...
Les @restosducoeur 💞cherchent beaucoup d’ordinateurs portables et tiny (Linux friendly 🐧). Si votre entreprise a du stock dormant ou autre, ça nous aiderait beaucoup !
Repost apprécié :)🫶🏻
Les @restosducoeur 💞cherchent beaucoup d’ordinateurs portables et tiny (Linux friendly 🐧). Si votre entreprise a du stock dormant ou autre, ça nous aiderait beaucoup !
Repost apprécié :)🫶🏻
October 6, 2025 at 7:57 AM
Je lance une bouteille à la mer ...
Les @restosducoeur 💞cherchent beaucoup d’ordinateurs portables et tiny (Linux friendly 🐧). Si votre entreprise a du stock dormant ou autre, ça nous aiderait beaucoup !
Repost apprécié :)🫶🏻
Les @restosducoeur 💞cherchent beaucoup d’ordinateurs portables et tiny (Linux friendly 🐧). Si votre entreprise a du stock dormant ou autre, ça nous aiderait beaucoup !
Repost apprécié :)🫶🏻
Reposted by Antoine Roly
In case you missed it, AWS updated its policy about pentesting, and "Amazon API Gateway" (used by the extension "IP Rotate") isn't allowed anymore
aws.amazon.com/fr/security/...
aws.amazon.com/fr/security/...
Penetration Testing
Request a penetration test for your AWS cloud infrastructure here.
aws.amazon.com
October 1, 2025 at 9:21 AM
In case you missed it, AWS updated its policy about pentesting, and "Amazon API Gateway" (used by the extension "IP Rotate") isn't allowed anymore
aws.amazon.com/fr/security/...
aws.amazon.com/fr/security/...
September 26, 2025 at 4:03 PM
Reposted by Antoine Roly
🚨NEW: "The Late Show with Stephen Colbert" just dropped its first response to ABC, FCC chair, and Disney firing Jimmy Kimmel.
Trump ain't sleeping tonight. 🤣
This is a must-watch. 🔥
Trump ain't sleeping tonight. 🤣
This is a must-watch. 🔥
September 19, 2025 at 3:02 AM
🚨NEW: "The Late Show with Stephen Colbert" just dropped its first response to ABC, FCC chair, and Disney firing Jimmy Kimmel.
Trump ain't sleeping tonight. 🤣
This is a must-watch. 🔥
Trump ain't sleeping tonight. 🤣
This is a must-watch. 🔥
Reposted by Antoine Roly
We've just published a novel technique to bypass the __Host and __Secure cookie flags, to achieve maximum impact for your cookie injection findings: portswigger.net/research/coo...
Cookie Chaos: How to bypass __Host and __Secure cookie prefixes
Browsers added cookie prefixes to protect your sessions and stop attackers from setting harmful cookies. In this post, you’ll see how to bypass cookie defenses using discrepancies in browser and serve
portswigger.net
September 3, 2025 at 2:54 PM
We've just published a novel technique to bypass the __Host and __Secure cookie flags, to achieve maximum impact for your cookie injection findings: portswigger.net/research/coo...
1st time I start Burp to do bug bounty since the begining of June. Let's see if I still enjoy it or if I need more time to get back at it...
August 18, 2025 at 4:41 PM
1st time I start Burp to do bug bounty since the begining of June. Let's see if I still enjoy it or if I need more time to get back at it...
Reposted by Antoine Roly
How to make $$$ from request smuggling
Step 1) Pick the right target:
Step 1) Pick the right target:
July 11, 2025 at 12:15 PM
How to make $$$ from request smuggling
Step 1) Pick the right target:
Step 1) Pick the right target:
Euro de basket : les Belgian Cats brillent face à l’Allemagne et filent en demi-finale (83-59)
www.lesoir.be/684043/artic... #belgiancats
www.lesoir.be/684043/artic... #belgiancats
Euro de basket : les Belgian Cats brillent face à l’Allemagne et filent en demi-finale (83-59)
L’équipe nationale féminine belge de basket a poursuivi sur la lancée de son excellent début de tournoi ce mercredi. Une victoire qui leur permet de rejoindre l’Italie en demi-finale.
www.lesoir.be
June 25, 2025 at 7:55 PM
Euro de basket : les Belgian Cats brillent face à l’Allemagne et filent en demi-finale (83-59)
www.lesoir.be/684043/artic... #belgiancats
www.lesoir.be/684043/artic... #belgiancats
Reposted by Antoine Roly
"Ce qu’on est en train de vivre aujourd’hui, c’est les trajectoires qu’on avait imaginées il y a 20 ans. La communauté des climatologues n’est pas du tout surprise par la vague de chaleur qui arrive. Elle est effrayée." @cassouman40.bsky.social ce matin sur @franceinfo.fr #VagueDeChaleur #DontLookUp
June 20, 2025 at 10:34 AM
"Ce qu’on est en train de vivre aujourd’hui, c’est les trajectoires qu’on avait imaginées il y a 20 ans. La communauté des climatologues n’est pas du tout surprise par la vague de chaleur qui arrive. Elle est effrayée." @cassouman40.bsky.social ce matin sur @franceinfo.fr #VagueDeChaleur #DontLookUp
Reposted by Antoine Roly
I'm thrilled to announce "HTTP/1 Must Die! The Desync Endgame" is coming to #DEFCON33! This talk will feature multiple new classes of desync attack, mass exploitation spanning multiple CDNs, and over $200k in bug bounties. See you there!
June 10, 2025 at 2:21 PM
I'm thrilled to announce "HTTP/1 Must Die! The Desync Endgame" is coming to #DEFCON33! This talk will feature multiple new classes of desync attack, mass exploitation spanning multiple CDNs, and over $200k in bug bounties. See you there!
Mais putain 🤦
Enfin, au moins on sait pour qui ils roulent...
Enfin, au moins on sait pour qui ils roulent...
Sécurité sociale : les tranches salariales supérieures à 340.000 euros seront exonérées de cotisations patronales
Sécurité sociale : les tranches salariales supérieures à 340.000 euros seront exonérées de cotisations patronales
Pour le gouvernement, il s'agit d'un moyen de gagner en compétitivité "dans un monde toujours plus concurrentiel où...
www.rtbf.be
May 31, 2025 at 6:39 AM
Mais putain 🤦
Enfin, au moins on sait pour qui ils roulent...
Enfin, au moins on sait pour qui ils roulent...
Bye bye full time bug bounty hunting. It's been a hell of a ride, but it's time to move on...
May 30, 2025 at 4:33 PM
Bye bye full time bug bounty hunting. It's been a hell of a ride, but it's time to move on...
Reposted by Antoine Roly
Reposted by Antoine Roly
Active Scan++ just got sharper - we’ve added new checks for OS command injection, powered by our latest ASCII Control Characters research. Install via Extensions -> BApp Store
May 28, 2025 at 2:56 PM
Active Scan++ just got sharper - we’ve added new checks for OS command injection, powered by our latest ASCII Control Characters research. Install via Extensions -> BApp Store
No clue if this will be exploitable, but it's at least interesting: when I add an incorrect "X-Forwarded-Port" header using HTTP Request Splitting (CRLF injection with Nginx proxy), I trigger a HTTP 400 and I can then tunnel other HTTP1 requests to the backend. Poke @t0xodile.com for the tunneling
May 28, 2025 at 6:51 AM
No clue if this will be exploitable, but it's at least interesting: when I add an incorrect "X-Forwarded-Port" header using HTTP Request Splitting (CRLF injection with Nginx proxy), I trigger a HTTP 400 and I can then tunnel other HTTP1 requests to the backend. Poke @t0xodile.com for the tunneling
I often end up testing weird things, but my current test is so weird that @burpsuite.bsky.social can't even handle in propery if I use the Repeater custom action 😅
May 27, 2025 at 1:04 PM
I often end up testing weird things, but my current test is so weird that @burpsuite.bsky.social can't even handle in propery if I use the Repeater custom action 😅
First one on @yeswehack.bsky.social :)
May 27, 2025 at 12:50 PM
First one on @yeswehack.bsky.social :)
Reposted by Antoine Roly
Thrilled to finally release my latest research "The Single-Packet Shovel: Digging for Desync-Powered Request Tunnelling".
Desync vulnerabilities stemming from HP2 downgrading continue to plague even the largest vendors, have a read to find out how!
Desync vulnerabilities stemming from HP2 downgrading continue to plague even the largest vendors, have a read to find out how!
The Single-Packet Shovel: Digging for Desync-Powered Request Tunnelling
In this paper I will reveal the discovery of wide-spread cases of request tunnelling in applications powered by popular servers including IIS, Azure Front Door and AWS' application load balancer inclu...
www.assured.se
May 22, 2025 at 4:03 PM
Thrilled to finally release my latest research "The Single-Packet Shovel: Digging for Desync-Powered Request Tunnelling".
Desync vulnerabilities stemming from HP2 downgrading continue to plague even the largest vendors, have a read to find out how!
Desync vulnerabilities stemming from HP2 downgrading continue to plague even the largest vendors, have a read to find out how!
Reposted by Antoine Roly
If you’re into bug bounty hunting and like finding weird XSS bugs (like me 😊) in places most people overlook, come check out my talk at NahamCon 2025 this Friday, May 23.
"Widgets Gone Wild: Exploiting XSS Through Flawed postMessage Checks"
"Widgets Gone Wild: Exploiting XSS Through Flawed postMessage Checks"
May 20, 2025 at 9:04 AM
If you’re into bug bounty hunting and like finding weird XSS bugs (like me 😊) in places most people overlook, come check out my talk at NahamCon 2025 this Friday, May 23.
"Widgets Gone Wild: Exploiting XSS Through Flawed postMessage Checks"
"Widgets Gone Wild: Exploiting XSS Through Flawed postMessage Checks"
I'm a big fan of these issues, but I always struggle to actually exploit them 😅
May 15, 2025 at 9:01 AM
I'm a big fan of these issues, but I always struggle to actually exploit them 😅
Reposted by Antoine Roly
I'm thrilled to announce "HTTP/1 Must Die! The Desync Endgame", at #BHUSA! This is going to be epic, check out the abstract for a teaser ↓
May 14, 2025 at 1:31 PM
I'm thrilled to announce "HTTP/1 Must Die! The Desync Endgame", at #BHUSA! This is going to be epic, check out the abstract for a teaser ↓