How safe is your browser? Our ninja, Riadh Bouchahoua, uncovers how attackers can exploit Chromium extension loading to steal data, maintain persistent access, and breach confidentiality on Chromium-based browsers. Read more here ⬇️ www.synacktiv.com/en/publicati...

We present appledb_rs, an open-source tool to analyze Apple IPSWs without storing full images. Extraction, indexing, API, and web interface to speed up your security research 🔍 🔗 Full article available here: www.synacktiv.com/en/publicati... 📂 Source code: github.com/synacktiv/ap...

A technical look at @grapheneos.org Hardened Malloc, a memory allocator designed to mitigate heap corruption vulnerabilities (UAF, overflows) and break common exploit primitives. Deep dive for security researchers & exploit developers by @nicoski.bsky.social www.synacktiv.com/en/publicati...

This summer @synacktiv.com organized an interesting challenge: the aim was to craft a container image as small as possible which replicated itself (i.e. an OCI Image Quine), bsky.app/profile/syna.... I am now publishing a write-up of what I did (Rust/asm/code golfing/...): github.com/fishilico/sy...

DCOM is everywhere, but its inner workings feel like black magic. 🪄 Unveil the mystery with @kevintell.bsky.social's new article on DCOM basics. Trust us, it's way cooler than it sounds! www.synacktiv.com/en/publicati...

🧑‍🎓 Boost your offensive Active Directory skills with our Entry & Advanced trainings. Hands-on labs with dozens of machines + latest research from DEFCON, x33fcon & more! Seats are limited, don’t miss out! 🔗 Entry: www.synacktiv.com/en/offers/tr... 🔗 Advanced: www.synacktiv.com/en/offers/tr...

🚀 Grab your seat for Sept 29! 🚀 Join our Cloud Intrusion Tactics training for a hands-on overview of offensive security across AWS, Azure, GCP & Kubernetes. Seats are limited, don’t miss out! 👉 www.synacktiv.com/en/offers/tr...

⚡️ Ready for some Rust ⚙️ + hacking 🕵️‍♂️? Two of our ninjas will land in Florence 🇮🇹 for #rustLab2025! 📅 Nov 2–4 🔥 Workshop: Network Interception in Rust – Build a MITM Tool from Scratch Hands-on. Real packets. Real fun. 👉 rustlab.it/talks/networ...

The GroupPolicyBackdoor tool, presented at #DEFCON 2025, is now available on Synacktiv's GitHub: github.com/synacktiv/Gr... This python utility offers a stable, modular and stealthy exploitation framework targeting Group Policy Objects in Active Directory!

We've just released a tool to decrypt all Synology encrypted archives! We used it to compare SynologyPhotos versions and highlight our #Pwn2Own Ireland 2024 vulnerability on the BeeStation BST150-4T. Check out our blog post for more details. www.synacktiv.com/en/publicati...

🔥 A few hours ago our experts took the stage at #DEFCON33, sharing cutting-edge research on SCCM exploitation and modern GPO attacks in Active Directory. Proud of the team! 🙌 cc @kalimer0x00.bsky.social @quent0x1.bsky.social @wilfri3d.bsky.social

🔒 Can you really trust your zero trust? We (re)discovered a vulnerability in Zscaler Client Connector that allowed bypassing device posture checks, and it was still exploitable in the wild. Full technical deep dive + remediation tips 👉 www.synacktiv.com/en/publicati...

🔒 Can you really trust your zero trust? We (re)discovered a vulnerability in Zscaler Client Connector that allowed bypassing device posture checks, and it was still exploitable in the wild. Full technical deep dive + remediation tips 👉 www.synacktiv.com/en/publicati...

That's a wrap on our Azure Intrusion for Red Teamers training at #BHUSA! 4 intense days from zero to Global Admin via Entra ID, M365, resources, DevOps, Intune & more 🔥 Huge thanks to all our participants and next stop: #HEXACON2025, Paris, Oct 6 🇫🇷

The latest Synacktiv Summer Challenge was in 2019, and after 6 years, it's back! Send us your solution before the end of August, there are skills to learn and prizes to win 🎁 www.synacktiv.com/en/publicati...

🚨 Still a few seats left for our iOS for Security Engineers training at #HEXACON2025! 4‑day hands-on labs to explore the iOS ecosystem and prepare for vulnerability research. 📍 Paris, Oct 6‑9 ➡️ www.hexacon.fr/trainer/meff...

We made it to MSRC 2025 Most Valuable Security Researcher leaderboard 🥳 Congratulations to all the other researchers! msrc.microsoft.com/leaderboard

Our ninja @butanol.bsky.social identified a high-impact XSS in Netwrix Directory Manager. The CVE-2025-47189 vulnerability can be exploited from the Windows lock screen to gain administrator privileges on a workstation. www.synacktiv.com/advisories/n...

Ever thought your kitchen appliance could harbor a persistent threat? We reverse-engineered the Thermomix TM5 and uncovered vulnerabilities allowing arbitrary code execution, persistence, and secure boot bypass. Discover our step-by-step breakdown! www.synacktiv.com/en/publicati...

🚨 Still a few seats left for our Azure Intrusion for Red Teamers training at #HEXACON2025! Hands‑on 4‑day labs covering Entra ID, M365, Azure resources, Azure DevOps, Intune, hybrid identities, full kill chain & stealth focus. 📍 Paris, Oct 6‑9 ➡️ hexacon.fr/trainer/barb...

🔐 Data encryption in Laravel environments is based on one secret : the APP_KEY. Our ninja @remsio.bsky.social studied the impact of its leakage on the internet during an entire year. www.synacktiv.com/en/publicati...

While performing security research on IoT control applications, @areizen.bsky.social and cyp discovered critical vulnerabilities in the mobile app for the Eachine E58 drone. These flaws could potentially lead to remote code execution on the user's smartphone. www.synacktiv.com/en/publicati...

A pre-auth RCE combining 2 critical vulnerabilities on the Production Environment extension of the PHP low-code website generator ScriptCase has been found by noraj and cabir. No upstream fix yet, please apply the workaround. www.synacktiv.com/advisories/s...

Our experts took the stage at Pass the SALT 2025 yesterday and this morning to present their latest offensive security research and tools! Keycloak, named pipes MITM and more! Slides and recordings coming soon 👀

🚨 Still a few days to register for our Azure Intrusion for Red Teamers training at #BHUSA! Very hands-on, full kill chain from zero to Global Admin with stealth in mind. Secure your seat now! www.blackhat.com/us-25/traini...

Looking for hands‑on trainings for the end of the year? Synacktiv launches S2 sessions starting September in Paris (French) & online (English, Paris/New York hours)! Secure your seat now! www.synacktiv.com/en/offers/tr...

@wilfri3d.bsky.social now rocking the stage at #leHACK to present his new tool GPOParser to automate Active Directory GPOs analysis, get intel and identify new attack paths!

There are still seats available for our "iOS for Security Engineers" training at #HEXACON2025! Book it while it's hot 😉 Conference tickets are also still available if you register for a training.

This Saturday, June 21st, the Midnight Flag CTF final will take place at ESNA near Rennes 🏆 Come and support the players! Good luck to all participants 💪

🚗🔌 We reverse engineered the Tesla Wall Connector and uncovered a previously undocumented attack surface via the charging cable. From protocol analysis to code execution, a Pwn2Own Automotive 2025 exploit write-up. www.synacktiv.com/en/publicati...

While performing penetration tests on SAP Financial Consolidation, our ninjas discovered an authentication bypass for local accounts including the built-in ADMIN account. This vulnerability may lead to the underlying system compromise: www.synacktiv.com/en/advisorie...

Our ninja @kalimer0x00.bsky.social is now on stage at #x33fcon to talk about his journey from dissecting SCCM until the discovery of the critical CVE-2024-43468 and the post-exploitation opportunities🔥

The "Objective-C helper" IDA plugin presented during the Sthack talk "Demystifying Objective-C internals" given by Victor Cutillas is now publicly available on GitHub at github.com/synacktiv/ob... The slides are also available on our website: www.synacktiv.com/sites/defaul...

On stage at #x33fcon for the lightning talks! Web payloads management, EDR bypasses and insights into CVE-2025-33073🔥

☁️ Already wrapping up our 3-day offensive Azure training at #x33fcon! Huge thanks to the x33fcon team for hosting us, and to all our amazing students for their energy, curiosity, and sharp questions throughout the session. Now it’s time to switch gears — conference mode on! 🎤

Microsoft just released the patch for #CVE-2025-33073, a critical vulnerability allowing a standard user to remotely compromise any machine with SMB signing not enforced! Checkout the details in the blogpost by @yaumn.bsky.social and @wilfri3d.bsky.social. www.synacktiv.com/publications...

Interested in vulnerabilities in old video games? 🎮 Check out our latest article written by @tomtombinary.bsky.social on Heroes of Might and Magic V 👇 www.synacktiv.com/en/publicati...

For our last talk, @croco-byte.bsky.social explains how to exploit SCCM policies to harvest credentials 🔑 #SSTIC2025

We still have a few talks for #SSTIC2025 last day! This morning, Hugo Clout presents 2 proxy tools used during pentests 🌐

We also gave a few short talks to end the day! #SSTIC2025

We also gave a few short talks to end the day! #SSTIC2025

For the final talk of the Synacktiv track, @bluesheeet.bsky.social and Oposs give a retex on post-quantum cryptography #SSTIC2025

It's now time for @matthieub.bsky.social and @b-paul.bsky.social to present Azure conditional access policies ☁️ #SSTIC2025

For our second talk of the day, @flgy.bsky.social presents Mofos, a virtual machines manipulation framework to mimic QubesOS on a standard Linux distribution #SSTIC2025

It's already #SSTIC2025 day 2! @remi-j.bsky.social and us3r present the Windows kernel shadow stack mitigation 🪟

For our first talk, Ambre presents her previous research about firmware images identification #SSTIC2025

We are at #SSTIC! If you want to have a chat, our ninjas are easy to spot 🥷

For the second year in a row, we managed to get first place at the #HackTheBox Business #CTF 2025! 🥇 Congratulations to GMO Cybersecurity and Downscope who complete the podium and thanks to @hackthebox.bsky.social ox.bsky.social for the fun challenges! 🥳

The last #Sth4ck talk was @pol-y.bsky.social talking about the Tesla WallConnector ⚡️

Our second talk of the day was Hooking Windows Named Pipes by Thomas