RT @albinowax: How to make $$$ from request smuggling . Step 1) Pick the right target:

Ever wondered if Laravel secrets used for encryption are usually correctly managed? Well, we made statistics from all the internet regarding this specific topic during an entire year and summed up everything in this blog post, Hope you enjoy it! 😁.

RT @cfreal_: lightyear just got 6 times faster!. Although I now work at @Synacktiv, I proposed a PR for the tool to support threading and c….

RT @Synacktiv: 🚨 Still a few days to register for our Azure Intrusion for Red Teamers training at #BHUSA! Very hands-on, full kill chain fr….

RT @noraj_rawsec: You have all seen the hype around #XBOW: “the AI that climbed 1st on #HackerOne leaderboard”. XBOW achievements are im….

RT @ElS1carius: There we go, after 3 years of work, endless nights of dev and a truckload of coffee. We are finally releasing the biggest p….

RT @Synacktiv: While performing penetration tests on SAP Financial Consolidation, our ninjas @l4x4 and @alexisdanizan discovered an authent….

RT @TheLaluka: 💣 Hello 💣. Rien de prévu le 1er Juiller au soir ?.Cool. Maintenant oui ! 😎. RDV Mardi 1er Juillet à 21h sur .

RT @wil_fri3d: Check out how I discover CVE-2025-33073 : RCE with NTLM reflectiv attack allowing authenticated user to compromise any machi….

RT @Synacktiv: Microsoft just released the patch for CVE-2025-33073, a critical vulnerability allowing a standard user to remotely compromi….

RT @albinowax: I'm thrilled to announce "HTTP/1 Must Die! The Desync Endgame" is coming to #DEFCON33! This talk will feature multiple new….

RT @Synacktiv: Interested in vulnerabilities in old video games? 🎮 Check out our latest article written by @tomtombinary on Heroes of Might….

RT @Synacktiv: We still have a few talks for #SSTIC2025 last day! This morning, @hugoclout presents 2 proxy tools used during pentests 🌐 ht….

RT @Synacktiv: For the final talk of the Synacktiv track, @_bluesheet and Oposs give a retex on post-quantum cryptography #SSTIC2025 https:….

RT @Synacktiv: It's now time for @aevy__ and Paul Barbe to present Azure conditional access policies ☁️ #SSTIC2025

RT @Synacktiv: For our second talk of the day, @flgy presents Mofos, a virtual machines manipulation framework to mimic QubesOS on a standa….

RT @TheLaluka: Hoy ! 🥚🐉 && 💻️⌨️🖱️. Il y a deux semaines, 3 invités de qualité nous on parlé de la sécurité DU jeu de notre enfance : Dofus….

RT @steventseeley: This is really nice research!

RT @kevin_mizu: I've released my CTF bot template! :D. It's not a big deal, but it comes with a heavily hardened Docker setup. The bot also….

RT @TheLaluka: POV : Bonta = Bug ❄️ Vs 🔥 Brakmar = Feature.Stream : Dofus & Game Hacking Stories.Ft : N0x, it4, et Klaoude ! 😻.RDV Mardi 20….