Back from #THCON 2026 🔥 Proud to see our teams share their latest offensive security research once again this year: 📡 Wi-Fi pentesting in 2025 & WPA3 bypasses - Quentin 🛡️ Cross-domain & cross-forest RBCD - Simon 🏴 THCON pre-challenge write-up - @0xf4b.bsky.social Great work everyone 👏

Make it blink! Our latest article explains how @mtalbi.bsky.social & Matthieu achieved an over-the-air exploitation of the #PhilipsHue Bridge via a #Zigbee flaw. Includes technical details and their #Pwn2Own Cork 2025 demo 👇 www.synacktiv.com/en/publicati...

🚀 Join #Synacktiv at #x33fcon for two hands-on trainings (June 8–10): 🔐 Azure Intrusion Tactics (intermediate): x33fcon.com#!t/MattheuBa... 🖥️ Advanced Active Directory Red Teaming (advanced) Led by our experts: x33fcon.com#!t/WilfriedB... Sharpen your offensive skills in realistic environments!

This second blogpost concludes @yaumn.bsky.social's research on #Windows authentication reflection. He discloses the new Kerberos authentication coercion technique he discovered to remotely compromise Windows systems 💥 A little bonus is even included at the end 👀👇 www.synacktiv.com/en/publicati...

Authentication reflection attacks are still not dead! In our new blogpost series, @yaumn.bsky.social shares his journey into bypassing the mitigations of CVE-2025-33073 to pop SYSTEM shells again! 🚀 👇 www.synacktiv.com/en/publicati...

Tomorrow, @yaumn.bsky.social will be presenting his research on Windows authentication reflection at @blackhatevents.bsky.social Asia 2026 in Singapore! The talk will be at 15:20 local time in Simpor Junior Ballroom 4810, come say hi! 😄 #BHASIA ℹ️ blackhat.com/asia-26/brie...

Say hi to Pike! Our latest article introduces #Pike, an experimental #LLM agent that generates & analyses #Linux execution traces to: 🔍 Debug crashes 🛡️ Detect malware 📊 Provide high-level insights All through a natural chat interface. www.synacktiv.com/en/publicati...

🚀 Join Synacktiv at #x33fcon for two hands-on trainings (June 8-10): 🔐 Azure Intrusion Tactics (intermediate): www.x33fcon.com#!t/MattheuBa... 🖥️ Advanced Active Directory Red Teaming (advanced): www.x33fcon.com#!t/WilfriedB... Sharpen your offensive skills in realistic environments!

Attacking heavy applications through named pipes: an attack surface often overlooked due to its complexity. In this article, @turbothon.bsky.social explains how we designed a tool abusing legitimate processes to attack higly privileged components of heavy clients ⬇️ www.synacktiv.com/en/publicati...

We are happy to open-source zom (github.com/synacktiv/zom), a mirror for @zed.dev code editor extensions and releases, useful in restricted environments. Feel free to give it a try, all issues or PRs are welcome!

Double trouble at #SOCON2026! Our ninja @kalimer0x00.bsky.social was busy breaking down Microsoft SCCM (once again!), while @quent0x1.bsky.social unveiled new GPO-based attack paths & his latest Bloodhound contributions targeting OUs & AD Sites. Awesome job! 👏

Our ninjas identified vulnerabilities in the #BizTalk360 solution. They can be exploited from any authenticated domain user, and lead to full server compromise. A new version is available, update your instances! 👇

Based on the incidents we handled, our observations align with #ANSSI 's 2025 Cyber Threat Landscape: 🔻 Fewer ransomware attacks 🔺 More data exfiltrations 💡 Discover the top 3 causes of data breaches in our infographic! Facing a breach? Contact us: 📩 [email protected]

Attacks targeting #Kubernetes are surging in 2025 🔎 To tackle this, Synacktiv #CSIRT is launching a series of articles on Kubernetes forensics. First up: understanding the underlying container technology 👇 www.synacktiv.com/en/node/1320

If #RBCD has been thoroughly documented, only a few resources mention the workflow in cross-domain environment. In our new blogpost, we dive into the cross-domain and cross-forest RBCD workflows Read it here 👇 www.synacktiv.com/en/publicati...

Deep dive into the provisionning an on-prem low-privileged #LLM stack, with air-gapped networking and GPU-isolation, hardened down to kernel modules. What could possibly go wrong? Read the full article here: www.synacktiv.com/en/publicati...

💡 Raising awareness to improve investigations User testimonies are invaluable during incidents - but healthy doubt matters too 🔍 Trust & accountability help organisations better understand and resolve #cyber incidents. 📊 Discover our recommendations ↓ 📩 www.synacktiv.com/en/offers/tr...

Active #RDP connections can reveal the client hostname 🔎 A key indicator for investigations & #CTI: some attackers reuse hostnames. Traces to check: CLIENTNAME env variable & RDP printer redirection. 🛡️ Incident? Contact #Synacktiv CSIRT 24/7: [email protected]

🔎 Want to know what you can really do with #mitmproxy? This deep dive shows how to intercept and modify application traffic on #Linux, #Android, and #iOS - from TLS MITM to gRPC/Protobuf tampering. Read our latest article: www.synacktiv.com/en/publicati...

🚀 Last December, the Synacktiv #WinterChallenge 2025 took place. 👏 Congratulations to the 25 participants for their outstanding solutions! 🧠 Read the write-up on the best techniques used to craft a constraint-compliant quinindrome: www.synacktiv.com/en/publicati...

#IT evolves… and so do attacks. 🛡️ Sharpen your skills in March-April 2026 with our #cybersecurity courses: Forensic, Cloud, Active Directory & Malware Analysis. 📅 Limited spots: www.synacktiv.com/en/offers/tr...

In our latest article, @niozow.bsky.social dives into the inner workings of #Windows access tokens, privileges and logon rights. As these rights often constitute a blind spot for AD enumeration tools, the article describes our PRs to integrate them into BloodHound ⬇️ www.synacktiv.com/en/publicati...

🔍 Synacktiv training courses - April 2026 Hands-on #cybersecurity courses led by #Synacktiv experts: Cloud Forensics (AWS), Azure & AD intrusion tactics. 📅 March-April | Onsite & Remote 👉 www.synacktiv.com/en/offers/tr...

At #Pwn2Own Berlin 2025, a full exploit chain against VMware Workstation was demonstrated via a heap overflow in the PVSCSI controller. Despite Windows 11 LFH mitigations, advanced heap shaping and side-channel techniques enabled a reliable exploit. 🔍 www.synacktiv.com/en/publicati...

On the podium at #Pwn2Own Automotive 2026 🥉 Synacktiv ranked 3rd in Tokyo 🇯🇵 after successful attacks on #Tesla Infotainment (USB), #Sony XAV-9500ES (USB) and #Autel MaxiCharger (NFC). 📍 Next stop: Berlin!

Proud to announce that REVEL·IO has secured funding from @bpifrance-officiel.bsky.social under #France2030 🚀 With @synacktiv.com, this supports a new version to: ➡️ help CERT teams automate live forensic analysis ➡️ enable French & European judicial experts to perform reliable mobile extractions

Our experts will be at #Pwn2Own Automotive in Tokyo 🇯🇵 After taking 1st place in 2024 by uncovering #Tesla and automotive vulnerabilities, they’re back to explore new attack entry points! Stay tuned 🔍

Cyber threats evolve fast - so should your skills. In March, join our hands-on #cybersecurity training covering Linux Forensics, Cloud Forensics (Azure & AWS) and Intrusion Tactics. ⌛ Limited seats → www.synacktiv.com/en/offers/tr... #Cybersecurity #Forensics #CloudSecurity

From legacy WEP to WPA3-Enterprise: sharing our recent #WiFi field experiences. 📡 We detail various scenarios to better understand the risks, including WPA3 PEAP relaying & optimized online PSK brute-forcing. ⤵️ www.synacktiv.com/en/publicati...

🔒 Feb 2026: #cybersecurity training with #Synacktiv! 5&6 Feb: Kubernetes Intrusion Tactics (Paris, FR) 9&10 Feb: AWS Intrusion Tactics (Paris, FR) 9-11 Feb: Malware Analysis (Remote, EN) 16-20 Feb: Attacking Web Apps (Paris, FR) ✅ Register now: www.synacktiv.com/en/offers/tr...

🚨 Pre-Auth RCE in #Livewire (CVE-2025-54068)! Our specialists uncovered a critical flaw allowing remote code execution without the APP_KEY, exploiting Livewire’s hydration mechanism + PHP’s loose typing. 🔗 Patch now! (v3.6.4+) www.synacktiv.com/en/publicati...

🚀 [Training 2026] Research & exploitation: embedded #Linux systems 5-day training on UART access, firmware analysis, QEMU emulation, fuzzing (AFL++), static analysis & persistence on compromised systems. 📍 On site, Paris 🇫🇷 French Register 👇 www.synacktiv.com/en/offers/tr...

🔥 Synacktiv’s #CSIRT 2026 training sessions are coming! Forensics, malware analysis, cloud investigations - all taught by our experts, available remotely or on site, in French or English. Register 👇 www.synacktiv.com/en/offers/tr...

[New blog post] As part of an R&D project, @tomtombinary.bsky.social identified several critical vulnerabilities in the LAN multiplayer mode of the game Anno 1404 (released in 2009) 🔍 Want to know more? Read the full article on our blog 👇 www.synacktiv.com/en/publicati...

HID recently disclosed HID-PSA-2025-002, a critical flaw in the #ActivID Authentication Appliance 8.7. In our new blog post, @us3r777.bsky.social and @pierregg.bsky.social break down exactly how they uncovered it, from methodology to exploitation 💡 Read it here ⬇️ synacktiv.com/en/publicati...

🔥 #Synacktiv’s 2026 Internship Book is out! Whether you're into pentest, reverse engineering, incident response or development, you’ll find our full list of internships plus practical tips to boost your chances. 📬 Send us your CV: www.synacktiv.com/book_stage_s...

Level up your #pentest skills in 2026 🚀 Join Synacktiv’s hands-on trainings: from Kubernetes & cloud hacks to web app attacks & AD intrusion. More information & registration : www.synacktiv.com/en/offers/tr... #cybersecurity

🕵️‍♂️ When an 'innocent' #PHP file hides a #backdoor… During an investigation on a compromised server, we came across an obfuscated PHAR stub - a classic sign of a #webshell trying to evade basic scanners. Check out our technical analysis 🔍 Have you ever encountered this type of “packaged” webshell? 💬

🎓🚀 Ready to level up your #cybersecurity skills? Synacktiv’s 2026 training programs are open for registration! Get practical, expert-led sessions in offensive and defensive cybersecurity - online or in-person, in French or English 🇫🇷🇬🇧 🔗 Learn more: www.synacktiv.com/en/offers/tr...

Winter is here, it's time to test your assembly skills with the #Synacktiv Winter Challenge 🏂. A code golf competition that guarantees hours of intense x86 instruction optimization! 🔗 Participate here: www.synacktiv.com/en/publicati...

Missed @hexacon.bsky.social 2025? 🤯 Good news, all #Synacktiv’s deep-dive talks on offensive research & reverse engineering are now online! 🎥 Watch the full playlist: www.youtube.com/playlist?lis... #cybersecurity

At #Pwn2Own2025, our experts Tek & @anyfun.bsky.social remotely compromised a Synology Beestation Plus via a pre-auth exploit, leading to full system takeover. The vuln is now tracked as CVE-2025-12686 🔍 🔗 Full write-up: www.synacktiv.com/en/publicati...

@alexisdanizan.bsky.social discovered several critical flaws in an older #IvantiITSM version 💥 Already reported, but these exploits could still be useful and come with technical details ⬇️ github.com/synacktiv/it...

🚀 It’s the big day for the #CBCToulouse! The #Synacktiv team is on-site and ready to connect with you throughout the event. 📍 Visit our booth to learn more about our areas of expertise and our career opportunities! 📅 26–27 November 2025 ℹ️ More information: cbc-convention.com

Last Friday at #BlackAlps2025, noraj explored the hidden security challenges of #Unicode 🎤 With 1,000+ pages of specs, even small mistakes can become attack vectors. Dive into the details 👉 www.synacktiv.com/ressources%2...

Our specialists are on-site at #ECW - European Cyber Week! Come meet us at booth 98 to talk #cybersecurity and explore our career opportunities. Tomorrow is the last chance - don’t miss out 👋

🔒 Only 7 days to go until the #CBC - Cyber Security Business Convention! Come and meet our team: 🔹 Technical feedback, 🔹 Presentation of our training courses and career opportunities. 📍 MEETT - Parc des Expositions, 31 840 AUSSONNE ℹ️ cbc-convention.com

@bsidesmunich.bsky.social 2025 Wrap-up 🇩🇪 @yaumn.bsky.social & @wilfri3d.bsky.social presented their research on CVE-2025-33073, a critical #Windows auth reflection flaw (huge #ActiveDirectory impact!). Full analysis below👇 🔗 www.synacktiv.com/en/publicati...

[ #EuropeanCyberWeek ] Did you miss us yesterday? No worries, there's still time to visit #Synacktiv at booth 98! Come discuss cybersecurity challenges and learn about our offensive security expertise. We're here until Thursday 😉 #ECW2025 #Rennes