Has reliance on SSO left orgs with a single point of exploitation? Our latest research by @lacerenza_fra explores various IdP compromise scenarios as well as how to harden and detect attacks in @goteleport installations. #doyensec #teleport #security.

📢Just published - Our new white paper comparing @semgrep's Code and Community editions! We dove into both versions of this popular tool to see what the differences were and how they performed against each other. #doyensec #appsec #security #semgrep

Several members of the @doyensec team are heading to @TumpiConIT 🇮🇹 for our Norbert Szetei's (@73696e65) presentation on his awesome ksmbd security research. If you're around, make sure to talk to @lucacarettoni & the team!.#doyensec #appsec #TumpiCon .

🚀We have just released a new Security Advisory for @NASA's CFITSIO library 🛰️. Click the link for details on the Heap Overflow, Type Confusion, Out-of-Bound Writes and other vulnerabilities discovered by our @a_denkiewicz !. #doyensec #appsec #security

Thanks to inspiration and support from @goteleport, #doyensec is proud to release the Security Policy Evaluation Framework, a tool for testing security policy engines!.cc:@OpenPolicyAgent,@OpenFGA,@AWSSecurityInfo. #appsec #rigo #cedar #openfga #security

🚨Just posted🚨: Learn about real-world API authorization vulnerabilities we frequently see with the slides from @tell1c0's recent presentation at @CONFidenceConf in Krakow. #doyensec #appsec #security

We'd like to welcome 👋@imarcex_ as our latest Application Security Intern. Welcome aboard! 🎉. #doyensec #appsec #internship

Attending @confidenceconf in Krakow 🇵🇱 this weekend? Be sure to check out our @tell1c0's presentation - API Authorization Antipatterns: #doyensec #appsec #confidencecon.

Several members of the #doyensec team are here in Berlin 🇩🇪attending @offensive_con this weekend! Ping us or just say "hallo" in person, if you'd like to talk #appsec or grab a coffee. We're looking forward to some amazing talks! .#offensivecon #security

We'd also like to recognize @b0n0b0__ 's cooperation on this advisory! 🙏.

🚨 Advisory Alert!🚨 We've just published our @drw0if's advisory regarding a heap overflow in @HAProxy as part of our coordinated disclosure process. Read all the details here: #doyensec #appsec #security #haproxy

We'd like to welcome the latest member of our team - Diego Perez, our new Application Security Intern! Welcome aboard! 🎉. #doyensec #appsec #security #internships

Going beyond SSO, our @lacerenza_fra decided to take a deep dive into SCIM in our latest blog post. Read it today to learn how including this user identity standard in your next test's scope can reap big rewards!. #doyensec #appsec #security #scim

Our @73696e65's latest research has resulted in at least 1⃣5⃣ CVEs in ksmbd🤯, including multiple use-after-frees, bounds checks, type confusion and overflows‼️ Check it out today!. #doyensec #appsec #security #linux

Thanks to all the people who make @BSSidesSF happen every year. We're always happy to sponsor such a great conference! All of the #Doyensec team who attended had a great time! See you next year!.#bsides #bsidessf

RT @tell1c0: After many late nights and busted apps as security consultant at @Doyensec , I trained my spidey senses 🕷️ to detect when an….

Also, congratulations to the winner of our Flipper Zero prize - happy hacking! .#doyensec #flipperzero

If you're attending @BSidesSF , make sure to stop by the Doyensec booth and say hello! You'll find several our team members in the vendor area and throughout the conference!.#doyensec #appsec #security

The #Doyensec team is proud to sponsor @BSidesSF again this year ! If you're in the 🌉San Francisco🌉 area this weekend come meet several of our team members in person 🫂! Plus, stop by our booth for a chance to win a Flipper Zero 🐬!. #appsec #security #bsidessf #flipperzero

Happy Friday! Here are links to the other two #ComfyUI advisories published as part of our coordinated disclosure process. #doyensec #appsec #security

📢 Upset about losing CVE data? Our @MaitaiThe & @lokiuox dropped new 🔥 critical #ComfyUI vulnerabilities, including this RCE, to cheer you up 😉. These are published as part of our coordinated disclosure process. #doyensec #appsec #security