We are alarmed by reports that Germany is on the verge of a catastrophic about-face, reversing its longstanding and principled opposition to the EU’s Chat Control proposal which, if passed, could spell the end of the right to privacy in Europe. signal.org/blog/pdfs/ge...
03.10.2025 16:14 — 👍 4006 🔁 2428 💬 40 📌 143
Qilin targeting a French critical infrastructure again.
01.10.2025 17:15 — 👍 1 🔁 0 💬 0 📌 0
The Salesloft–Drift Breach: An Attack Path Case Study - SpecterOps
This post analyzes the Salesloft–Drift incident through an attack path lens, showing how violations of the clean source principle, identities in transit, and hidden hybrid paths combined to turn a sin...
It's time to change how you think about SaaS integrations.
The Salesloft attack shows how GitHub → AWS → Drift → Salesforce created an attack highway defenders never saw coming.
Jared Atkinson's analysis details the patterns we should look out for. ghst.ly/4ngDQrD
24.09.2025 17:53 — 👍 1 🔁 1 💬 0 📌 0
4 research institute march together hand in hand for diversity and inclusion in science © Franck Aubry
© Franck Aubry
© Franck Aubry
🌈 United for diversity in science 🌈
Researchers from Institut Pasteur joined the 2025 Pride March alongside @institutcurie.bsky.social, Les Cordeliers Research Center, @institutcochin.bsky.social @institutimagine.bsky.social
👩🔬 Because diverse labs make better science.
#DiversityInScience
30.06.2025 12:36 — 👍 50 🔁 20 💬 0 📌 2
La Société Générale revient sur le TT, je crois qu'il y a des bons profils à recruter au CERT :) #JUSTSayin
19.06.2025 19:05 — 👍 7 🔁 2 💬 1 📌 0
French scams over SMS now requiring human interactions likely to protect from automated remediation and better identify vulnerable targets
13.06.2025 09:23 — 👍 0 🔁 0 💬 0 📌 0
Mapping Hidden Alliances in Russian-Affiliated Ransomware
dti.domaintools.com/mapping-hidd...
08.06.2025 11:05 — 👍 21 🔁 8 💬 1 📌 0
License Plate Reader Company Flock Is Building a Massive People Lookup Tool, Leak Shows
Flock, which has license plate readers (LPRs) all around the country, wants police to be able to “jump from LPR to person,” according to leaked audio obtained by 404 Media.
New from 404 Media: Flock, the license plate reader company that has cameras all across the U.S., is now building a massive people lookup tool using hacked data. The plan is to "jump from LPR to person." Won't require a warrant. This is according to leak we obtained.
www.404media.co/license-plat...
14.05.2025 13:57 — 👍 611 🔁 339 💬 25 📌 69
This DTEX report on North Korea's hacking capabilities, along with Viginum's Russian info op report from last week, are probably the best reports of the year so far
You MUST read it!
PDF: reports.dtexsystems.com/DTEX-Exposin...
15.05.2025 08:52 — 👍 22 🔁 12 💬 0 📌 0
Announcing the Official Parity Release of Volatility 3!
Visit the post for more.
We are very excited to announce that Volatility 3 has reached parity with Volatility 2! With this achievement, Volatility 2 is now deprecated. See the full details in our blog post: volatilityfoundation.org/announcing-t...
16.05.2025 14:56 — 👍 26 🔁 13 💬 0 📌 3
Let me know should you need to test on another system.
16.05.2025 19:32 — 👍 1 🔁 0 💬 0 📌 0
PS C:\Users\Administrator> Get-AADIntSyncCredentialsUnable to get sync credent - Pastebin.com
Pastebin.com is the number one paste tool since 2002. Pastebin is a website where you can store text online for a set period of time.
@drazuread.com Hi, Entra Connect Sync now uses a MSA account for its service by default. Is Get-LSASecrets handling MSA accounts already or just gMSA?
AD sync itself is still performed by a MSOL_ account.
Thank you!
AADInternals 0.9.8
Microsoft Entra Connect Sync 2.4.131.0
pastebin.com/UU4u7YZR
11.05.2025 08:24 — 👍 1 🔁 0 💬 1 📌 0
Dear Americans, what have you done…
28.02.2025 22:26 — 👍 0 🔁 0 💬 0 📌 0
Abusing multicast poisoning for pre-authenticated Kerberos relay over HTTP with Responder and krbrelayx
In our latest article, @croco_byte proposes an implementation of a trick discovered by James Forshaw in his research regarding Kerberos relaying. Discover how to perform pre-authenticated Kerberos relay over HTTP with our Responder and krbrelayx pull requests!
www.synacktiv.com/publications...
27.01.2025 12:06 — 👍 16 🔁 12 💬 0 📌 1
« LSA SECRETS: REVISITING SECRETSDUMP » by @synacktiv.com www.synacktiv.com/lsa-secrets-...
23.02.2025 09:21 — 👍 0 🔁 0 💬 0 📌 0
Everyone knows your location
How I tracked myself down using leaked location data in the in-app ads, and what I found along the way.
An eye-opening blog post on ads-based tracking: « Everyone knows your location: tracking myself down through in-app ads » timsh.org/tracking-mys...
01.02.2025 12:04 — 👍 9 🔁 7 💬 0 📌 0
ADFS — Living in the Legacy of DRS
It’s no secret that Microsoft have been trying to move customers away from ADFS for a while. Short of slapping a “deprecated” label on it…
Achievement unlocked, my first blog with SpecterOps 🤗 This post looks at ADFS OAuth2 support, Device Registration, Enterprise PRT, and a brain dump of things that I didn’t want to leave sat on Notion. buff.ly/4j41VQU
07.01.2025 14:33 — 👍 36 🔁 18 💬 2 📌 1
Could anyone in this business explain to me how a random app can share PII with 800+ companies?
16.12.2024 12:27 — 👍 1 🔁 0 💬 0 📌 0
New #AADInternals version is finally out now:
▪ Moved endpoint related stuff to new module: AADInternals-Endpoints
▪ Added blue team stuff
▪ Added red team stuff
See full change log at: aadinternals.com/aadinternals...
10.12.2024 16:53 — 👍 45 🔁 21 💬 1 📌 2
This is an IACIS BCFE kinda joke.
#Digitalforensics #MobileForensics #DFIR
06.12.2024 13:35 — 👍 8 🔁 1 💬 0 📌 0
Surement une des meilleurs conf�rence en cybers�curit� en Europe !
07.12.2024 13:26 — 👍 1 🔁 1 💬 0 📌 0
Romania legal system 1 - 0 Russian IO
06.12.2024 18:07 — 👍 0 🔁 0 💬 0 📌 0
Rédac' chef de LeMagIT (fr)
Accro #cybersécurité #infosec
Collectionneur de #ransomware
follow: https://linktr.ee/valerymarchive
independent cybersecurity researcher.
I have many leather-bound books and my apartment smells of rich mahogany. thanks for all the xor
Fighting malware and botnets
27 EU governments making decisions together in the European Council & Council of the EU.
Learn, participate, share. Latest news @press.consilium.europa.eu
#eucouncil #euco
Centre gouvernemental et national de veille, d'alerte et de réponse aux attaques informatiques.
Pour toute question : cert-fr@ssi.gouv.fr ou par téléphone au 3218
Microsoft MVP | IT Systems Engineer | Professional Pokémon Trainer 👩🏻💻 | Tech Enthusiast
📍Seattle, WA
Twitter: https://x.com/AllwaysHyPe
Github: https://github.com/AllwaysHyPe
Website: https://www.allwayshype.com/
Loves Jesus, loves others | Husband, father of 4, security solutions architect, love to learn and teach | Microsoft MVP | @TribeOfHackers | 🐘infosec.exchange@nathanmcnulty
Product Manager @microsoft | Creator of bluesky.ms • cmd.ms • idPowerToys.merill.net • Graph X-Ray • 🇦🇺 • 🇱🇰 • Posts my own
http://youtube.com/@merillx
Sign up to my newsletter https://entra.news
Cloud and container security • Security research and open source at Datadog
🇨🇭🇫🇷
https://christophetd.fr
Hacker at outsidersecurity.nl. Researches Entra ID, AD and occasionally Windows security. I write open source security tools and do blogs/talks to educate others on these topics. Blog: dirkjanm.io
Security Researcher @ Datadog. 🐶 Head in the (Azure) clouds.
Sometimes blogging, always curious. Aim to be, rather than to seem.
Blogs at https://kknowl.es.
Hacker for hire at @specterops.bsky.social
Blog: https://blog.xpnsec.com
Creators of BloodHound | Experts in Adversary Tradecraft | Leaders in Identity Attack Path Management
Principal Identity Security Researcher @Microsoft. Ex-Secureworks (PhD, MSc, MEng, CITP, CCSK).
And yes, opinions are my own ;)
Offensive security company. Dojo of many ninjas. Red teaming, reverse engineering, vuln research, dev of security tools and incident response.
Actualité de la Mairie du 15e arrondissement de Paris.
Inscrivez-vous à notre newsletter : http://bit.ly/3iK1k89
Instagram : https://www.instagram.com/mairie15
