C:\hristian Mehlmauer's Avatar

C:\hristian Mehlmauer

@firefart.bsky.social

107 Followers  |  566 Following  |  3 Posts  |  Joined: 03.08.2023  |  1.5659

Latest posts by firefart.bsky.social on Bluesky

Lockpicking? Of course! But this year, #BSidesVienna is cracking open some extra workshop slots. If your idea involves breaking, building, or teaching something useful β€” CfP and CfW will launch together soon. Get your ideas ready!

28.07.2025 15:54 β€” πŸ‘ 2    πŸ” 3    πŸ’¬ 0    πŸ“Œ 0
Preview
Venue BSidesVienna

It begins! On November 22nd, 2025, #BSidesVienna is back at Urania Sternwarte. Fresh insights, familiar faces, and the same legendary venue. More to comeβ€”stay tuned. bsidesvienna.at/venue/

24.07.2025 20:48 β€” πŸ‘ 5    πŸ” 4    πŸ’¬ 0    πŸ“Œ 0
Preview
Let Me Cook You a Vulnerability: Exploiting the Thermomix TM5 Hardware Analysis The Thermomix TM5 is a multifunctional kitchen appliance composed of two key electronic boards: the power board, which handles the motor and heating functions, and the main board, w

Ever thought your kitchen appliance could harbor a persistent threat?
We reverse-engineered the Thermomix TM5 and uncovered vulnerabilities allowing arbitrary code execution, persistence, and secure boot bypass.
Discover our step-by-step breakdown!
www.synacktiv.com/en/publicati...

11.07.2025 08:44 β€” πŸ‘ 6    πŸ” 6    πŸ’¬ 0    πŸ“Œ 0
Preview
Release v3.7.0 Β· OJ/gobuster use new cli library a lot more short options due to the new cli library more user friendly error messages clean up DNS mode renamed show-cname to check-cname in dns mode got rid of verbose flag and...

Long time no see - Gobuster v.3.7.0 is released with a bunch of new features
github.com/OJ/gobuster/...

30.06.2025 15:50 β€” πŸ‘ 0    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Preview
Features removed or no longer developed starting with Windows Server 2025 Learn about the features and functionalities removed or no longer developed starting with Windows Server 2025.

It looks like Microsoft finally removed NTLMv1 from Windows Server 2025 πŸ₯³
learn.microsoft.com/en-us/window...

06.12.2024 09:14 β€” πŸ‘ 2    πŸ” 0    πŸ’¬ 1    πŸ“Œ 0

Exclusive: The backdoor inserted in v1.95.7 adds an "addToQueue" function which exfiltrates the private key through seemingly-legitimate CloudFlare headers.

Calls to this function are then inserted in various places that (legitimately) access the private key.

03.12.2024 23:47 β€” πŸ‘ 50    πŸ” 32    πŸ’¬ 3    πŸ“Œ 2
Preview
CVEs of SSH A talk about recent high-profile issues related to the SSH ecosystem.

We're doing a cool online talk tomorrow btw – hexarcana.ch/workshops/cv...

20.11.2024 19:11 β€” πŸ‘ 21    πŸ” 8    πŸ’¬ 2    πŸ“Œ 0
Preview
GitHub - wagoodman/dive: A tool for exploring each layer in a docker image A tool for exploring each layer in a docker image. Contribute to wagoodman/dive development by creating an account on GitHub.

If you ever find yourself investigating random docker images, dive (github.com/wagoodman/dive) is amazingly useful. It lets you see which files changed in each filesystem layer. I've used it to spot config files accidentally left in images :)

20.11.2024 12:17 β€” πŸ‘ 26    πŸ” 5    πŸ’¬ 0    πŸ“Œ 0
Preview
Reverse Engineering iOS 18 Inactivity Reboot Wireless and firmware hacking, PhD life, Technology

How does the new iOS inactivity reboot work? What does it protect from?

I reverse engineered the kernel extension and the secure enclave processor, where this feature is implemented.

naehrdine.blogspot.com/2024/11/reve...

17.11.2024 21:42 β€” πŸ‘ 282    πŸ” 107    πŸ’¬ 12    πŸ“Œ 11

Just added a whole bunch more people to my Hackers starter pack πŸ₯° go.bsky.app/NRP3ecE

14.11.2024 12:19 β€” πŸ‘ 129    πŸ” 47    πŸ’¬ 20    πŸ“Œ 4
https://cfp.bsidesvienna.at/bsv2024/schedule/ BSidesVienna 0x7e8 Get different formats: curl https://cfp.bsidesvienna.at/bsv2024/schedule/\?format=table (default) curl https://cfp.bsidesvienna.at/bsv2024/schedule/\?format=list ...

We have gotten a pretty much finalized shedule, you can check it out here:
cfp.bsidesvienna.at/bsv2024/sche...

22.10.2024 20:25 β€” πŸ‘ 0    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Ports used by TeamViewer TeamViewer is designed to connect easily to remote computers without any special firewall configurations being necessary. This article applies to all users in all licenses. In the vast majority of cases, TeamViewer will always work if surfing on the internet is possible. TeamViewer makes outbound connections to the…

If you want to quickly identify clients on your corporate network using teamviewer just search your firewall logs for port 5938. Teamviewer will first try this port before "falling back" to the http protocol: www.teamviewer.com/en/global/su...

27.06.2024 20:17 β€” πŸ‘ 3    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0

@firefart is following 20 prominent accounts