RT @fwdcloudsec: We're happy to announce WithSecure is a Bronze sponsor for fwd:cloudsec! @WithSecure https://t.co/….

Don't worry though, @realmatthours is also nice enough that he's tried to make it easier to spot and kick those pesky hackers out of your estate as well:.

What did the printer say when it saw @TimoHirvonen and @dark_k3y? Oh sheet! . Read how the @FSecureLabs Red Team is Printing off the land by printing their own shellz - CVE-2021-39237 ( & CVE-2021-39238 (

We heard y'all might be having problems playing with the Financial Information eXchange protocol. Can we FIX it? Yes we^@AppSecOllie can! He's developed a Burp extension, it's a bit janky, and you might say it's a bit of a Fixer Upper.

Web proxies got ya down when it Mattermost (thanks @mariuszbit)? JIRA at those pesky sysadmins and keep the Discord with your C2 agents - Please enjoy responsibly! - #C3 #RedTeam #BlueTeam #PurpleTeam.

Ooooof @PaloAltoNtwks out of the frying pan(GPS) and into the fire that is @FSecureLabs @1njected discovery of yet another LPE in GlobalProtect VPN Client adding CVE-2021-3057 (& to the @CrowdStrike fry-up (.

cc @pajp.

See how Rasmus caught Gatekeeper Gatesleepering on the job at and #CVE-2021-1810 #macos.

William Söderberg strikes again, disclosing a privesc in Qiata FTA. But Kudos to Secudos, who patches faster than a Miata for Qiata!.

As @__invictus_ shows - you are never too old to play with PuTTY

A non OP-TEEmal configuration allows for LPE. Grab yourself a cup of TEE and read the advisory from F-Secure Foundry (, Andrej Rosano and @AndreaBarisani -

Enjoy unlimited Mimosa's at our bottomless breach

A prelude to ransomware - we have released our write up of analysis into SystemBC mapped to @MITREattack and with @sigma_hq rules for detection

Member when it was easy to break into your Samsung account? @yogehi members

If you couldn't make it to yesterday's workshop here's the recording: and the slides:

Ever explored the mystic vista of Azure attack detection? Join @_masande as he goes through the basics of detecting an end-to-end cloud-native attack

Heavy Metal Debugging - a how to on reverse engineering zOS apps by @Jabellz2

If you couldn't make yesterday's workshop here's the recording: and the presentation slides:

Sick of those leaky buckets? Put a SOC in it! Join @nojonesuk and @ajpc500 for a Prime delivery of AWS attack detection

If you couldn't make yesterday's workshop here's the recording: and the presentation slides: