Had the chance to be part of a great Live Hacking Event organised by @yeswehack Amazing event where I had the chance to collaborate & discuss with other skilled hunters big s/o to @myst404_ with his incredible recon game that helped us shoot the first critical vuln of the event

Manque d'enseignants : les étudiants en informatique risquent de perdre 30% de cours à la fac des sciences de Limoges ➡️ https://t.co/OtU1OJZ8WQ

We’re teaming up with #BZHunt and @AnDaolVras to organise a Live #BugBounty event dedicated to students, on Nov 7! Students from six schools will get 9 hours to find bugs on exclusive targets during @UYBHYS. May the best team win ⚡ More info:

PoV: you wakeup and go run a pwn2own exploit @thezdi

My imposter syndrome now that I know there’s no entry for Brother printer at this p2o edition. Still looking forward to seeing what others found - especially this WhatsApp zero-click bug (or bugs).

💣 We caught @ycombinator–backed @gecko_sec stealing two of our CVEs, one on @ollama , one on @Gradio. They copied our PoCs, claimed CVE IDs, and even back-dated their blog posts. Here’s the full story 👇

Today at 11AM PT! This will be an interesting session on Windows Shellcode. You can watch on X, LinkedIn, or YouTube here: https://t.co/bYgQKgf7hW

Learning vs Working, Be locked in and DomLogger++ https://t.co/nROSPxylR2

Anotha week, another VR newsletter 🏴‍☠️📰 @NCCGroupInfosec (@_mccaulay, @alexjplaskett) pop a Tesla TCU unit kCTF 1-day breakdowns from @farazsth98 & @u1f383 @tehjh talks potential remote ASLR leaks + Jobs and MORE 👇 https://t.co/vaAmZCzGnH

@Synacktiv @volker_carstein @BsecureFr @OrangeCyberFR @b1two_ 📢 #GreHack25 program release! We're kicking off this weekend with a bang by announcing our guest speaker for this edition 👀 👤 @gynvael from HexArcana ➡️ CTF in a box ? The weirdest NETGEAR network switch 2021 exploit chain See you tomorrow for a next talk 🔥

Looks like I’ve got a printer for sale 😅😒

I'm not good enough at guessing obvious things, so it took me way too many DLLs to reverse and a few rabbit holes to go down, only to find that the final payload was a very classic one. Still, the research journey was really fun, with a happy ending 😁

Please join me on the next @offby1security stream with guest Eugene Lim (@spaceraccoonsec ) on 4-Sept at 6PM PT for a session on "0-day Hunting Strategy!" This will be a great session for those interested in vulnerability research! Note the time at 6PM PT https://t.co/y1zyY6qA5U

Imagine you have a XSS vulnerability but you have a undefined variable before your injection. Is all hope lost? Not at all you can use a technique called XSS Hoisting to declare the variable and continue your exploit. Big thanks to @ycam_asafety for the XSS cheat sheet submission

Slow bounties, AI and travel https://t.co/dPdDwdgcGw

Infosec folks when porn needs ID verification: 🗣️🗣️🗣️🗣️🗣️ Infosec folks when children are being killed by the IDF: 😴🧑‍🦯🙊🙈

Today I have a more serious topic than usual, please consider reposting for reach: My wife and I are urgently looking for a specialist in neuropediatrics or a similar field for our autistic child with a diagnosed, but not further specified, movement disorder [1/3]

Hello everyone, A little out of context this time, I'm leaving my current job to start a new adventure on my own. I wanted to thank you for all the strength you give me and for all your feedback on my tools ! 🤜🤛❤️ I love what I do and I'll keep doing it, but it's always nice

$5 Membership sale is live for the next 24 hours:

You can watch the recording of today's @offby1security stream with @albinowax here: https://t.co/ocPGae56ol

Such a good read!