Evariste
@evaristegal0is.bsky.social
🏳️🌈🦄 don't drink and root 🦄🏳️🌈
My cat died today. His name was Cosimo Frattini: Cosimo in honor of Italo Calvino's "The Baron in the Trees", and Frattini in honor of the Italian mathematician Giovanni Frattini. This day sucks.
October 22, 2025 at 5:06 PM
My cat died today. His name was Cosimo Frattini: Cosimo in honor of Italo Calvino's "The Baron in the Trees", and Frattini in honor of the Italian mathematician Giovanni Frattini. This day sucks.
[🧵 short] This is an RCE in the Granola app for macOS, I found in December 2024 (patched). Every time I have an Electron-based app that integrates AI, I am quite confident that developers trust AI output, because AI is not a user (untrusted input), but if you act like a user, you are a user. 1/
July 3, 2025 at 3:27 PM
[🧵 short] This is an RCE in the Granola app for macOS, I found in December 2024 (patched). Every time I have an Electron-based app that integrates AI, I am quite confident that developers trust AI output, because AI is not a user (untrusted input), but if you act like a user, you are a user. 1/
Feel free to have fun and report this to Microsoft (user-interaction required, XSS in OneDrive using Firefox)
July 3, 2025 at 11:43 AM
Feel free to have fun and report this to Microsoft (user-interaction required, XSS in OneDrive using Firefox)
See you in Kraków to talk about a niche topic: PDF, web applications, and JavaScript injections! :)
June 26, 2025 at 5:56 PM
See you in Kraków to talk about a niche topic: PDF, web applications, and JavaScript injections! :)
Ogni volta che si utilizza un'analogia militare per la sicurezza informatica, un pezzettino di me muore, sono praticamente uno zombie ormai
June 16, 2025 at 1:23 PM
Ogni volta che si utilizza un'analogia militare per la sicurezza informatica, un pezzettino di me muore, sono praticamente uno zombie ormai
non mi resta che memare oramai
April 18, 2025 at 2:57 PM
non mi resta che memare oramai
February 18, 2025 at 3:43 PM
What I know until now:
- On 9th Dec, a data leak was shared on the XSS forum, apparently the entire AWS infrastructure was compromised [1];
- On 12th Dec, Arduino communicated "no evidence that the incident can result in harm to the security of our Arduino Web and Cloud services" [2]
- On 9th Dec, a data leak was shared on the XSS forum, apparently the entire AWS infrastructure was compromised [1];
- On 12th Dec, Arduino communicated "no evidence that the incident can result in harm to the security of our Arduino Web and Cloud services" [2]
February 3, 2025 at 4:46 PM
What I know until now:
- On 9th Dec, a data leak was shared on the XSS forum, apparently the entire AWS infrastructure was compromised [1];
- On 12th Dec, Arduino communicated "no evidence that the incident can result in harm to the security of our Arduino Web and Cloud services" [2]
- On 9th Dec, a data leak was shared on the XSS forum, apparently the entire AWS infrastructure was compromised [1];
- On 12th Dec, Arduino communicated "no evidence that the incident can result in harm to the security of our Arduino Web and Cloud services" [2]
🧵 [1/2] If you are an Arduino customer and use their online service, you should probably know that it could be compromised - but I am waiting for official updates. Arduino sent an e-mail today communicating they are rotating *all* the IoT devices' credentials, for all customers.
February 3, 2025 at 4:46 PM
🧵 [1/2] If you are an Arduino customer and use their online service, you should probably know that it could be compromised - but I am waiting for official updates. Arduino sent an e-mail today communicating they are rotating *all* the IoT devices' credentials, for all customers.
Q: Ciao, giornalismo italiano, come te la passi?
A: Bene, dai, "intervisto" large language models e pubblico questa "intervista" dietro paywall.
L'informazione è finita, morta, non vedo davvero speranza.
A: Bene, dai, "intervisto" large language models e pubblico questa "intervista" dietro paywall.
L'informazione è finita, morta, non vedo davvero speranza.
January 28, 2025 at 3:20 PM
Q: Ciao, giornalismo italiano, come te la passi?
A: Bene, dai, "intervisto" large language models e pubblico questa "intervista" dietro paywall.
L'informazione è finita, morta, non vedo davvero speranza.
A: Bene, dai, "intervisto" large language models e pubblico questa "intervista" dietro paywall.
L'informazione è finita, morta, non vedo davvero speranza.
Magari hanno ragione, ma - almeno nel mio lavoro - gli imprevisti, e gli incidenti, me li aspetto statisticamente dal lunedì al venerdì dalle 9:00 alle 17:00, cioè esattamente quando ci sono più eventi legittimi che accadono sull'infrastruttura. E non con origine dolosa.
January 15, 2025 at 4:52 PM
Magari hanno ragione, ma - almeno nel mio lavoro - gli imprevisti, e gli incidenti, me li aspetto statisticamente dal lunedì al venerdì dalle 9:00 alle 17:00, cioè esattamente quando ci sono più eventi legittimi che accadono sull'infrastruttura. E non con origine dolosa.
What should happen in your browser if you open this HTML file locally?
1. The browser blocks the script
2. The browser loads the script
3. Browsers, except Safari, block the script
1. The browser blocks the script
2. The browser loads the script
3. Browsers, except Safari, block the script
January 4, 2025 at 2:05 PM
What should happen in your browser if you open this HTML file locally?
1. The browser blocks the script
2. The browser loads the script
3. Browsers, except Safari, block the script
1. The browser blocks the script
2. The browser loads the script
3. Browsers, except Safari, block the script
🚨 At least 143 high-value phishing domains were registered in the last two months by the actor leonidbo4kariev@gmail.com. All the domains were registered on the registrar GMO Internet Group. These domains have multiple subdomains. They are not detected on VT.
List: viewdns.info/reversewhois...
List: viewdns.info/reversewhois...
November 28, 2024 at 7:30 PM
🚨 At least 143 high-value phishing domains were registered in the last two months by the actor leonidbo4kariev@gmail.com. All the domains were registered on the registrar GMO Internet Group. These domains have multiple subdomains. They are not detected on VT.
List: viewdns.info/reversewhois...
List: viewdns.info/reversewhois...
PDF is not a static format, even in your browser; and for AI SaaS? 👀
November 25, 2024 at 6:16 PM
PDF is not a static format, even in your browser; and for AI SaaS? 👀
Post a pic YOU took (no description) to bring some zen to the timeline
November 17, 2024 at 1:57 PM
Post a pic YOU took (no description) to bring some zen to the timeline
Each deprecated or unmaintained project should be assigned a specific critical CVE ID by default. Change my mind.
March 18, 2024 at 11:16 PM
Each deprecated or unmaintained project should be assigned a specific critical CVE ID by default. Change my mind.