idle
@idlewog.bsky.social
Doing stuff in #cybersec i suppose ... #CTF 1dl3 for mushd00m
Reposted by idle
Comme l'agile qui déqualifie les chefs de projets et les devs en remplaçant l'exercice strucuturant de la rédaction de cahier des charges et de doc, par du dansage de claquette.
Le problème du métier n'est pas technique mais managerial.
Dev, sysadmin, cdp c'est des métiers distincts et nécessaires
Le problème du métier n'est pas technique mais managerial.
Dev, sysadmin, cdp c'est des métiers distincts et nécessaires
December 20, 2025 at 8:13 AM
Comme l'agile qui déqualifie les chefs de projets et les devs en remplaçant l'exercice strucuturant de la rédaction de cahier des charges et de doc, par du dansage de claquette.
Le problème du métier n'est pas technique mais managerial.
Dev, sysadmin, cdp c'est des métiers distincts et nécessaires
Le problème du métier n'est pas technique mais managerial.
Dev, sysadmin, cdp c'est des métiers distincts et nécessaires
Reposted by idle
Que penser de la DGSI qui rempile avec Palantir au moment même où l'entreprise américaine s'affiche comme le bras armé du trumpisme et forge une théorie de l'Etat qui vise à privatiser le régalien ? "La solution sera temporaire", jurait le patron du service, il y a... dix ans.
December 14, 2025 at 8:11 PM
Que penser de la DGSI qui rempile avec Palantir au moment même où l'entreprise américaine s'affiche comme le bras armé du trumpisme et forge une théorie de l'Etat qui vise à privatiser le régalien ? "La solution sera temporaire", jurait le patron du service, il y a... dix ans.
Reposted by idle
I published an #IDA importer for the REShare #ReverseEngineering exchange format:
github.com ->
I also wrote up my development experiences, incl. tips for IDA's type info API:
REshare Ramblings - Bad Vibes with IDA
1/2
github.com ->
I also wrote up my development experiences, incl. tips for IDA's type info API:
REshare Ramblings - Bad Vibes with IDA
1/2
December 13, 2025 at 11:32 AM
I published an #IDA importer for the REShare #ReverseEngineering exchange format:
github.com ->
I also wrote up my development experiences, incl. tips for IDA's type info API:
REshare Ramblings - Bad Vibes with IDA
1/2
github.com ->
I also wrote up my development experiences, incl. tips for IDA's type info API:
REshare Ramblings - Bad Vibes with IDA
1/2
Reposted by idle
BREAKING: New data from the United States Department of Labor suggests you're statistically more likely to find a job launching your resume into Ansky, a super massive blackhole located in SDSS J133519.91+072807.4, than submitting a resume to HR portals on the internet
December 12, 2025 at 4:58 PM
BREAKING: New data from the United States Department of Labor suggests you're statistically more likely to find a job launching your resume into Ansky, a super massive blackhole located in SDSS J133519.91+072807.4, than submitting a resume to HR portals on the internet
Reposted by idle
The wait is over! Phrack 72 40th Anniversary Edition is available now.
Order straight to your doorstep — the perfect gift for your fellow hacker, just in time for the holidays 🎄
No need to go to rely on the warez scene with scans anymore 😅
Order here: www.lulu.com/shop/phrack-...
Order straight to your doorstep — the perfect gift for your fellow hacker, just in time for the holidays 🎄
No need to go to rely on the warez scene with scans anymore 😅
Order here: www.lulu.com/shop/phrack-...
December 13, 2025 at 9:34 AM
The wait is over! Phrack 72 40th Anniversary Edition is available now.
Order straight to your doorstep — the perfect gift for your fellow hacker, just in time for the holidays 🎄
No need to go to rely on the warez scene with scans anymore 😅
Order here: www.lulu.com/shop/phrack-...
Order straight to your doorstep — the perfect gift for your fellow hacker, just in time for the holidays 🎄
No need to go to rely on the warez scene with scans anymore 😅
Order here: www.lulu.com/shop/phrack-...
Reposted by idle
Et voilà le travail www.euronews.com/my-europe/20...
EU agrees to indefinitely immobilise €210 billion of Russian assets
The EU has decided to keep the assets of the Russian Central Bank immobilised for the foreseeable future. The ban, which is based on a provision for economic emergencies, pushes back against external attempts to release the €210 billion in assets before Ukraine is compensated.
www.euronews.com
December 11, 2025 at 9:23 PM
Et voilà le travail www.euronews.com/my-europe/20...
Reposted by idle
TFW the cookie expired, but the attack path didn’t. 😒
Andrew Gomez explains how BloodHound graph analysis and Azure Seamless SSO enabled pivoting into the cloud.
Read more: ghst.ly/3MwapV8
Andrew Gomez explains how BloodHound graph analysis and Azure Seamless SSO enabled pivoting into the cloud.
Read more: ghst.ly/3MwapV8
Azure Seamless SSO: When Cookie Theft Doesn’t Cut It - SpecterOps
The cookie crumbled when it expired, but the attack path didn’t. Learn how BloodHound graph analysis and Azure Seamless SSO enabled pivoting into the cloud.
ghst.ly
December 11, 2025 at 10:23 PM
TFW the cookie expired, but the attack path didn’t. 😒
Andrew Gomez explains how BloodHound graph analysis and Azure Seamless SSO enabled pivoting into the cloud.
Read more: ghst.ly/3MwapV8
Andrew Gomez explains how BloodHound graph analysis and Azure Seamless SSO enabled pivoting into the cloud.
Read more: ghst.ly/3MwapV8
Reposted by idle
The BloodHound Query Library, launched by @martinsohn.dk & @joeydreijer.bsky.social, democratizes tradecraft with a shared, searchable ecosystem. With 180+ Cypher queries & counting, the library is an increasingly valuable tool for the BloodHound community!
Browse ➡️ ghst.ly/bql_eoybsky
Browse ➡️ ghst.ly/bql_eoybsky
December 11, 2025 at 11:07 PM
The BloodHound Query Library, launched by @martinsohn.dk & @joeydreijer.bsky.social, democratizes tradecraft with a shared, searchable ecosystem. With 180+ Cypher queries & counting, the library is an increasingly valuable tool for the BloodHound community!
Browse ➡️ ghst.ly/bql_eoybsky
Browse ➡️ ghst.ly/bql_eoybsky
Reposted by idle
Miod Vallat recently shared an OpenBSD story: ProPolice (the stack protector).
Amazing read. ☺️
Amazing read. ☺️
The story of Propolice
Come to think of it, while old-timers will immediately recognize what the lyrics are referring to, the name ``Propolice'' has slowly fallen into oblivion, and I wouldn't be surprised if many people, nowadays, do not have a clue about this.
miod.online.fr
December 11, 2025 at 8:26 PM
Miod Vallat recently shared an OpenBSD story: ProPolice (the stack protector).
Amazing read. ☺️
Amazing read. ☺️
Reposted by idle
Level up your #pentest skills in 2026 🚀
Join Synacktiv’s hands-on trainings: from Kubernetes & cloud hacks to web app attacks & AD intrusion.
More information & registration : www.synacktiv.com/en/offers/tr...
#cybersecurity
Join Synacktiv’s hands-on trainings: from Kubernetes & cloud hacks to web app attacks & AD intrusion.
More information & registration : www.synacktiv.com/en/offers/tr...
#cybersecurity
Trainings
Synacktiv
www.synacktiv.com
December 11, 2025 at 12:22 PM
Level up your #pentest skills in 2026 🚀
Join Synacktiv’s hands-on trainings: from Kubernetes & cloud hacks to web app attacks & AD intrusion.
More information & registration : www.synacktiv.com/en/offers/tr...
#cybersecurity
Join Synacktiv’s hands-on trainings: from Kubernetes & cloud hacks to web app attacks & AD intrusion.
More information & registration : www.synacktiv.com/en/offers/tr...
#cybersecurity
Reposted by idle
Hoy !
Pas de stream ce soir... MAIS !
Release d'une petite série que j'ai pris plaisir à vivre, tourner, et réaliser sur le travail fait ave d'autres nombreux bénévoles pour Hack4Values (X) !
www.youtube.com/playlist?lis...
Pas de stream ce soir... MAIS !
Release d'une petite série que j'ai pris plaisir à vivre, tourner, et réaliser sur le travail fait ave d'autres nombreux bénévoles pour Hack4Values (X) !
www.youtube.com/playlist?lis...
December 9, 2025 at 3:48 PM
Hoy !
Pas de stream ce soir... MAIS !
Release d'une petite série que j'ai pris plaisir à vivre, tourner, et réaliser sur le travail fait ave d'autres nombreux bénévoles pour Hack4Values (X) !
www.youtube.com/playlist?lis...
Pas de stream ce soir... MAIS !
Release d'une petite série que j'ai pris plaisir à vivre, tourner, et réaliser sur le travail fait ave d'autres nombreux bénévoles pour Hack4Values (X) !
www.youtube.com/playlist?lis...
Reposted by idle
Variants of 2025 of Symbiote and BPFDoor support IPv6, UDP communication with C2.
Reverse engineering the samples with r2ai and r2mcp.
www.fortinet.com/blog/threat-...
#malware #Linux #BPF #r2ai #r2mcp
Reverse engineering the samples with r2ai and r2mcp.
www.fortinet.com/blog/threat-...
#malware #Linux #BPF #r2ai #r2mcp
New eBPF Filters for Symbiote and BPFdoor Malware | FortiGuard Lab
FortiGuard Labs discovered new Symbiote and BPFDoor variants exploiting eBPF filters to enhance stealth through IPv6 support, UDP traffic, and dynamic port hopping for covert C2 communication.…
www.fortinet.com
December 8, 2025 at 8:40 AM
Reposted by idle
PatchworkOS is a modular non-POSIX operating system for the x86_64 architecture that rigorously follows an "everything is a file" philosophy, in the style of Plan9. Built from scratch in C and assembly : github.com/KaiNorberg/P...
GitHub - KaiNorberg/PatchworkOS: A modular, non-POSIX operating system for x86_64, built from scratch in C and assembly. Intended to be an educational and experimental project that rigorously follows ...
A modular, non-POSIX operating system for x86_64, built from scratch in C and assembly. Intended to be an educational and experimental project that rigorously follows a Plan9-style "everything...
github.com
December 7, 2025 at 8:31 AM
PatchworkOS is a modular non-POSIX operating system for the x86_64 architecture that rigorously follows an "everything is a file" philosophy, in the style of Plan9. Built from scratch in C and assembly : github.com/KaiNorberg/P...
Reposted by idle
Audacity est disponible en version 3.7.6. Cette nouvelle version du logiciel de traitement audio apporte des corrections mais apporte aussi le support de ffmpeg 8 des améliorations des imports et exports, un spectrogramme par ondelettes, etc ...⬇️
github.com/audacity/aud...
github.com/audacity/aud...
Release Audacity 3.7.6 · audacity/audacity
This is a patch release. It contains the following changes:
#9742 Added FFmpeg 8 support
#9709 Added Spectrogram Wavelet analysis (Thanks, Klaus Gram-Hansen (@kgramhans))
#9565 Added middle-mouse ...
github.com
December 7, 2025 at 9:43 AM
Audacity est disponible en version 3.7.6. Cette nouvelle version du logiciel de traitement audio apporte des corrections mais apporte aussi le support de ffmpeg 8 des améliorations des imports et exports, un spectrogramme par ondelettes, etc ...⬇️
github.com/audacity/aud...
github.com/audacity/aud...
Reposted by idle
📜 L’4N551 4 un3 m1551on 9our vou5.
S1 vou5 l’4cc3973z, vou5 s3r3z 4m3n3 4 :
*53rv1r l’1nt3r37 g3n3r4l 37 9ro73g3r l4 N471on f4c3 4 l4 m3n4c3 cy83r ;
*1nc4rn3r l’3xc3ll3nc3 fr4nç4153 3n m4713r3 d3 cy83rd3f3n53.
9our 7rouv3r vo7r3 m1551on :
🔗 www.welcometothejungle.com/fr/companies...
S1 vou5 l’4cc3973z, vou5 s3r3z 4m3n3 4 :
*53rv1r l’1nt3r37 g3n3r4l 37 9ro73g3r l4 N471on f4c3 4 l4 m3n4c3 cy83r ;
*1nc4rn3r l’3xc3ll3nc3 fr4nç4153 3n m4713r3 d3 cy83rd3f3n53.
9our 7rouv3r vo7r3 m1551on :
🔗 www.welcometothejungle.com/fr/companies...
December 3, 2025 at 10:57 AM
📜 L’4N551 4 un3 m1551on 9our vou5.
S1 vou5 l’4cc3973z, vou5 s3r3z 4m3n3 4 :
*53rv1r l’1nt3r37 g3n3r4l 37 9ro73g3r l4 N471on f4c3 4 l4 m3n4c3 cy83r ;
*1nc4rn3r l’3xc3ll3nc3 fr4nç4153 3n m4713r3 d3 cy83rd3f3n53.
9our 7rouv3r vo7r3 m1551on :
🔗 www.welcometothejungle.com/fr/companies...
S1 vou5 l’4cc3973z, vou5 s3r3z 4m3n3 4 :
*53rv1r l’1nt3r37 g3n3r4l 37 9ro73g3r l4 N471on f4c3 4 l4 m3n4c3 cy83r ;
*1nc4rn3r l’3xc3ll3nc3 fr4nç4153 3n m4713r3 d3 cy83rd3f3n53.
9our 7rouv3r vo7r3 m1551on :
🔗 www.welcometothejungle.com/fr/companies...
Reposted by idle
Building the PERFECT Linux PC with Linus Torvalds.
Watch full episode on YouTube www.youtube.com/watch?v=mfv0...
Watch full episode on YouTube www.youtube.com/watch?v=mfv0...
Building the PERFECT Linux PC with Linus Torvalds
YouTube video by Linus Tech Tips
www.youtube.com
December 1, 2025 at 1:23 AM
Building the PERFECT Linux PC with Linus Torvalds.
Watch full episode on YouTube www.youtube.com/watch?v=mfv0...
Watch full episode on YouTube www.youtube.com/watch?v=mfv0...
Reposted by idle
Nvidia graphics acceleration working on the Raspberry Pi 5: www.youtube.com/watch?v=SPTY...
November 26, 2025 at 11:49 PM
Nvidia graphics acceleration working on the Raspberry Pi 5: www.youtube.com/watch?v=SPTY...
Reposted by idle
The 2026 online public sessions of my "Mastering Burp Suite Pro" course have been published 📅
- March 24th to 27th, in French 🇫🇷
- April 14th to 17th, in English 🇬🇧
hackademy.agarri.fr/2026
PS: feel free to ping me if you'd like to temporarily block a seat or are looking for a 10% coupon 🎁
- March 24th to 27th, in French 🇫🇷
- April 14th to 17th, in English 🇬🇧
hackademy.agarri.fr/2026
PS: feel free to ping me if you'd like to temporarily block a seat or are looking for a 10% coupon 🎁
Agarri
Training
hackademy.agarri.fr
November 24, 2025 at 10:14 AM
The 2026 online public sessions of my "Mastering Burp Suite Pro" course have been published 📅
- March 24th to 27th, in French 🇫🇷
- April 14th to 17th, in English 🇬🇧
hackademy.agarri.fr/2026
PS: feel free to ping me if you'd like to temporarily block a seat or are looking for a 10% coupon 🎁
- March 24th to 27th, in French 🇫🇷
- April 14th to 17th, in English 🇬🇧
hackademy.agarri.fr/2026
PS: feel free to ping me if you'd like to temporarily block a seat or are looking for a 10% coupon 🎁
Reposted by idle
📲 Votre #smartphone est précieux pour vous… et peut l’être encore plus pour les cybercriminels.
📓 Découvrez l'état de la #menace de l'ANSSI sur les téléphones mobiles : cert.ssi.gouv.fr/cti/CERTFR-2...
📓 Découvrez l'état de la #menace de l'ANSSI sur les téléphones mobiles : cert.ssi.gouv.fr/cti/CERTFR-2...
November 26, 2025 at 10:27 AM
📲 Votre #smartphone est précieux pour vous… et peut l’être encore plus pour les cybercriminels.
📓 Découvrez l'état de la #menace de l'ANSSI sur les téléphones mobiles : cert.ssi.gouv.fr/cti/CERTFR-2...
📓 Découvrez l'état de la #menace de l'ANSSI sur les téléphones mobiles : cert.ssi.gouv.fr/cti/CERTFR-2...
Reposted by idle
ton lien renvoie vers un json au lieu de post.. bizarre.
copie d'écran du message:
copie d'écran du message:
November 24, 2025 at 5:15 PM
ton lien renvoie vers un json au lieu de post.. bizarre.
copie d'écran du message:
copie d'écran du message:
Reposted by idle
I've uploaded the slides of my recent talk "JS Engine Security in 2025": saelo.github.io/presentation.... I think there'll also be a recording available at some point (otherwise I can make one as not everything's in the slides).
Fantastic conference as usual, big thanks to the PoC Crew!
Fantastic conference as usual, big thanks to the PoC Crew!
saelo.github.io
November 24, 2025 at 9:58 AM
I've uploaded the slides of my recent talk "JS Engine Security in 2025": saelo.github.io/presentation.... I think there'll also be a recording available at some point (otherwise I can make one as not everything's in the slides).
Fantastic conference as usual, big thanks to the PoC Crew!
Fantastic conference as usual, big thanks to the PoC Crew!
Reposted by idle
Stream is UP ! 💌
P1 - Penthium2, Agrestic, Rolix, FrozenK, TheBidouilleur
P2 - Isis, Virtualabs, 7h30th3r0n3, Rhynorater
P3 - Fransosiche, Jdx, Doomerhunter, Geluchat, Swissky
P4 (Quizz) - Agarri, Maltemo, Dry, Nishacid, Atom_User, Geluchat
See you ~ www.twitch.tv/thelaluka
P1 - Penthium2, Agrestic, Rolix, FrozenK, TheBidouilleur
P2 - Isis, Virtualabs, 7h30th3r0n3, Rhynorater
P3 - Fransosiche, Jdx, Doomerhunter, Geluchat, Swissky
P4 (Quizz) - Agarri, Maltemo, Dry, Nishacid, Atom_User, Geluchat
See you ~ www.twitch.tv/thelaluka
November 18, 2025 at 7:57 PM
Stream is UP ! 💌
P1 - Penthium2, Agrestic, Rolix, FrozenK, TheBidouilleur
P2 - Isis, Virtualabs, 7h30th3r0n3, Rhynorater
P3 - Fransosiche, Jdx, Doomerhunter, Geluchat, Swissky
P4 (Quizz) - Agarri, Maltemo, Dry, Nishacid, Atom_User, Geluchat
See you ~ www.twitch.tv/thelaluka
P1 - Penthium2, Agrestic, Rolix, FrozenK, TheBidouilleur
P2 - Isis, Virtualabs, 7h30th3r0n3, Rhynorater
P3 - Fransosiche, Jdx, Doomerhunter, Geluchat, Swissky
P4 (Quizz) - Agarri, Maltemo, Dry, Nishacid, Atom_User, Geluchat
See you ~ www.twitch.tv/thelaluka
Reposted by idle
@bsidesmunich.bsky.social 2025 Wrap-up 🇩🇪
@yaumn.bsky.social & @wilfri3d.bsky.social presented their research on CVE-2025-33073, a critical #Windows auth reflection flaw (huge #ActiveDirectory impact!).
Full analysis below👇
🔗 www.synacktiv.com/en/publicati...
@yaumn.bsky.social & @wilfri3d.bsky.social presented their research on CVE-2025-33073, a critical #Windows auth reflection flaw (huge #ActiveDirectory impact!).
Full analysis below👇
🔗 www.synacktiv.com/en/publicati...
November 18, 2025 at 5:00 PM
@bsidesmunich.bsky.social 2025 Wrap-up 🇩🇪
@yaumn.bsky.social & @wilfri3d.bsky.social presented their research on CVE-2025-33073, a critical #Windows auth reflection flaw (huge #ActiveDirectory impact!).
Full analysis below👇
🔗 www.synacktiv.com/en/publicati...
@yaumn.bsky.social & @wilfri3d.bsky.social presented their research on CVE-2025-33073, a critical #Windows auth reflection flaw (huge #ActiveDirectory impact!).
Full analysis below👇
🔗 www.synacktiv.com/en/publicati...