Shielder
@ShielderSec
Followers
2K
Following
280
Media
150
Statuses
456
InfoSec boutique. Owning things since 2014. We love to go for the extra mile, where we usually find the best π¦ππͺ²πͺ³πππ· the others miss.
Italy
Joined July 2014
In Lausanne for @1ns0mn1h4ck? Donβt miss the chance to meet our very own @not4nhacker! If you're into cursed OAuth hacking techniques or breaking mobile apps, find a comfy spot -- you might be there for a while!
5
3
5
RT @OSTIFofficial: #Karmada showed camaraderie with their security audit! Navigated with support from the @CloudNativeFdn and auditing by @β¦.
0
1
0
RT @OSTIFofficial: It was smooth sailing with the Karmada maintainer team, @ShielderSec, and the CNCF for this audit!.
0
3
0
π¨ New Open Source Audit Alert! π¨. Shielder, with @OSTIFofficial & @CloudNativeFdn, audited @karmada_io:.π 6 issues found (1 high, 1 medium, 2 low, 2 info).βοΈ Most fixed, others planned. π£οΈ to @suidpit and @Th3Zer0. Full details in the blog post!.
0
8
20
RT @gbergel: Muy buena la charla βRiding the DYLD Rocket: Escaping from macOS Sandbox at Mach 1337β de @suidpit en #theSAS2024
https://t.coβ¦.
0
1
0
0
1
0
Attending @TheSAScon in the beautiful BaliποΈ?.Make sure not to miss @suidpit's talk about his novel research on the macOS π sandbox and how to bypass it. ποΈ Wednesday, October 23 - 15:10
0
5
15
RT @smaury92: ππΏ hackers!.I'm looking for an #AppSec π₯·πΏ/π§πΏ to join our team at @ShielderSec!.If you are looking for a chill company which wβ¦.
0
17
0
It's a pleasure to sponsor once again @cybersaiyanIT for #RomHack2024!. We are looking forward to meet y'all in Rome next week. ICYMI we're #hiring, you can find the job post here:
#RomHack2024 is 9 days away and today we want to thank our #sponsors!. This edition was sponsored by 20 companies and you can have a look to the full list here. Take your time to visit their website, without their support RomHack could not be organized.β¬οΈ
0
6
13
Our very own @suidpit will present his novel #macOS research at @TheSAScon - if you want to learn more about the macOS sandbox and how to escape it make sure to be in Bali ποΈ from Oct 22 to Oct 25 at #TheSAS2024.
π With many #macOS security mechanisms at work, one might wonder how malware manages to bypass them. Get ready for a deep dive into macOS security architecture and novel evasion techniques during Pietro Tirenna's (@suidpit) talk at #TheSAS2024. π Secure your seat:
1
7
22
During a recent engagement @Mindlaess_ hacked his way through @vtigercrm which led to discover a privilege escalation and a SQL injection. Learn more in the dedicated advisories:.- CVE-2024-42994 #sqli - CVE-2024-42995 #privesc
0
9
18
RT @OSTIFofficial: What do you do when boost needs a boost? You pull in @ShielderSec and let them cook. This OSTIF audit, with sponsorshipβ¦.
0
2
0
Back in December 2023 our researchers @Th3Zer0 @suidpit and @Mindlaess_ performed an audit sponsored by @awscloud and facilitated by @OSTIFofficial on boost. It resulted in 7 findings and 15 new fuzzers. The report is now public, check the details here:
0
14
18
In early 2023 we (@Th3Zer0 & @smaury92) collaborated with @SecureDrop to start designing and prototyping the #E2EE messaging protocol for a future version of SecureDrop. π blog post: π» poc code:
Today, weβre publishing a proposed end-to-end encrypted messaging protocol for a future version of SecureDrop. Seeking feedback from cryptographers and protocol designers!.
0
6
17
RT @smaury92: A couple of weeks ago I was in Paris sponsored by @yeswehack to hack @LouisVuitton - it has been GREAT!.I scored the 5th placβ¦.
0
2
0
RT @InfoSecComm: π° Featuring articles by @malcolmst, @Microsoft, @ozgur_bbh, @ShielderSec, @Synacktiv. 𧡠Trending threads by @Rhynorater, @β¦.
0
1
0