Romain || BZHugs
LightNews LightNews
banner
jouetromain.fr
Romain || BZHugs
@jouetromain.fr
91 followers 96 following 1 posts
📍Rennes
Posts Replies Media Videos
Reposted by Romain || BZHugs
synacktiv.com
A technical look at @grapheneos.org Hardened Malloc, a memory allocator designed to mitigate heap corruption vulnerabilities (UAF, overflows) and break common exploit primitives.
Deep dive for security researchers & exploit developers by @nicoski.bsky.social
www.synacktiv.com/en/publicati...
Exploring GrapheneOS secure allocator: Hardened Malloc
Exploring GrapheneOS secure allocator: Hardened Malloc
www.synacktiv.com
September 22, 2025 at 1:41 PM
jouetromain.fr
0x2bad 🫠
June 10, 2025 at 4:30 PM
Reposted by Romain || BZHugs
synacktiv.com
From firmware dumps to wireless exploration — check out our latest dive into DVB receiver analysis and the hidden attack surface it exposes!
www.synacktiv.com/en/publicati...
Hack the channel: A Deep Dive into DVB Receiver Security
Introduction During a garage cleaning, we found a DVB receiver and thought it would be a great target for vulnerability research.
www.synacktiv.com
April 9, 2025 at 6:36 AM
Reposted by Romain || BZHugs
synacktiv.com
In iOS 18.4, Apple introduced a bug in dynamic symbol resolutions for some specific exports. @0xf4b.bsky.social took a long journey down a rabbit hole to understand its root cause.
www.synacktiv.com/en/publicati...
iOS 18.4 - dlsym considered harmful
Observations We first observed the bug in a custom iOS application compiled for the arm64e architecture (thus supporting PAC instructions).
www.synacktiv.com
April 10, 2025 at 1:22 PM
Reposted by Romain || BZHugs
louisgrasset.fr
S’agirait d’accepter que ne pas dépendre de l’étranger signifie produire localement
April 1, 2025 at 1:08 PM
Reposted by Romain || BZHugs
synacktiv.com
A few months ago, Microsoft released a critical patch for CVE-2024-43468, an unauthenticated SQL injection vulnerability in SCCM/ConfigMgr leading to remote code execution, discovered by @kalimer0x00.bsky.social.
www.synacktiv.com/advisories/m...
Microsoft Configuration Manager (ConfigMgr) 2403 Unauthenticated SQL injections
Microsoft Configuration Manager (ConfigMgr) 2403 Unauthenticated SQL injections
www.synacktiv.com
January 16, 2025 at 1:25 PM
Reposted by Romain || BZHugs
synacktiv.com
The 2025 training season is here! 🚀
Join our best ninjas for 5-day sessions on pentesting, reverse-engineering, and forensics (in French). Check out all the dates and topics on our website: www.synacktiv.com/offres/forma...
Les formations
Synacktiv - IT Security expertise - Penetration tests, Security audits, Code review, Training, Consulting, Vulnerability research
www.synacktiv.com
December 11, 2024 at 12:59 PM
Reposted by Romain || BZHugs
synacktiv.com
Did you ever wonder how IDS/IPS like Snort or Suricata were able to interact with the network stack of the Linux kernel? Do you also happen to like Rust?
Check our latest blogpost!
www.synacktiv.com/publications...
Automated Network Security with Rust: Detecting and Blocking Port Scanners
www.synacktiv.com
December 6, 2024 at 3:05 PM
Reposted by Romain || BZHugs
nicoski.bsky.social
Discover a new tool for reverse engineers: "Frinet", by myr and hexabeast
Frinet: reverse-engineering made easier
www.synacktiv.com
December 18, 2023 at 11:38 PM