ValekoZ
LightNews LightNews
valekoz.bsky.social
ValekoZ
@valekoz.bsky.social
80 followers 72 following 0 posts
Ninja reverser at @Synacktiv.com
Posts Replies Media Videos
Reposted by ValekoZ
synacktiv.com
Here we are! Come by our booth and say hi 😀
May 16, 2025 at 9:51 AM
Reposted by ValekoZ
synacktiv.com
Don't miss our 2 trainings 😉
🍎 iOS for Security Engineers
☁️ Azure intrusion for red teamers
May 5, 2025 at 12:37 PM
Reposted by ValekoZ
synacktiv.com
From firmware dumps to wireless exploration — check out our latest dive into DVB receiver analysis and the hidden attack surface it exposes!
www.synacktiv.com/en/publicati...
Hack the channel: A Deep Dive into DVB Receiver Security
Introduction During a garage cleaning, we found a DVB receiver and thought it would be a great target for vulnerability research.
www.synacktiv.com
April 9, 2025 at 6:36 AM
Reposted by ValekoZ
synacktiv.com
In iOS 18.4, Apple introduced a bug in dynamic symbol resolutions for some specific exports. @0xf4b.bsky.social took a long journey down a rabbit hole to understand its root cause.
www.synacktiv.com/en/publicati...
iOS 18.4 - dlsym considered harmful
Observations We first observed the bug in a custom iOS application compiled for the arm64e architecture (thus supporting PAC instructions).
www.synacktiv.com
April 10, 2025 at 1:22 PM
Reposted by ValekoZ
synacktiv.com
Synacktiv was at THCON this week!
For the first talk, Quentin presented "Tapping into the SCCM policies goldmine".
For the second talk, Rémi and Mickaël presented "Deep dive in Laravel encryption".

#THCON2025
April 11, 2025 at 2:52 PM
Reposted by ValekoZ
synacktiv.com
In our latest article, @croco_byte proposes an implementation of a trick discovered by James Forshaw in his research regarding Kerberos relaying. Discover how to perform pre-authenticated Kerberos relay over HTTP with our Responder and krbrelayx pull requests!
www.synacktiv.com/publications...
Abusing multicast poisoning for pre-authenticated Kerberos relay over HTTP with Responder and krbrelayx
www.synacktiv.com
January 27, 2025 at 12:06 PM
Reposted by ValekoZ
synacktiv.com
Yay! Our offensive Azure training was accepted at BlackHat USA 2025 🥳 Can't wait to see you there and share cutting-edge techniques for attacking Azure environments!
January 20, 2025 at 9:25 AM
Reposted by ValekoZ
synacktiv.com
A few months ago, Microsoft released a critical patch for CVE-2024-43468, an unauthenticated SQL injection vulnerability in SCCM/ConfigMgr leading to remote code execution, discovered by @kalimer0x00.bsky.social.
www.synacktiv.com/advisories/m...
Microsoft Configuration Manager (ConfigMgr) 2403 Unauthenticated SQL injections
Microsoft Configuration Manager (ConfigMgr) 2403 Unauthenticated SQL injections
www.synacktiv.com
January 16, 2025 at 1:25 PM
Reposted by ValekoZ
synacktiv.com
Tonight, we're sponsoring Ambrosia organized by ESN'HACK in Bruz.
Join us for a tartiflette 🧀 and a presentation from @creased.re!
January 10, 2025 at 1:51 PM
Reposted by ValekoZ
synacktiv.com
The 2025 training season is here! 🚀
Join our best ninjas for 5-day sessions on pentesting, reverse-engineering, and forensics (in French). Check out all the dates and topics on our website: www.synacktiv.com/offres/forma...
Les formations
Synacktiv - IT Security expertise - Penetration tests, Security audits, Code review, Training, Consulting, Vulnerability research
www.synacktiv.com
December 11, 2024 at 12:59 PM