🚀 @le-hack.bsky.social starts today! Come meet the #Synacktiv team at stand 22 and try the challenge we designed for the event: puzzles to solve, secrets to find, and flags to capture 🔒 See you there 👋

Kernel LPEs dropping before patches are widely available? It's been a wild month for Linux defenders. Our CIO breaks down how tried-and-true hardening measures can raise the bar and buy your Blue Team time against N-days. 🔗 www.synacktiv.com/en/publicati...

⏳ 7 days to go until #LeHack ! On 26-27 June, visit #Synacktiv and take on a challenge designed especially for the event 🔒 Gain access, uncover secrets and solve puzzles. Can you capture every flag before time runs out? ⏱️ 📍 Stand 22 Who’s up for the challenge? 👀

Working with #AWS and looking to improve visibility across your #cloud environment? This article introduces the key AWS security and logging services to help strengthen your detection, investigation and incident response capabilities ⬇️ www.synacktiv.com/en/publicati...

🇵🇱 At #x33fcon, our experts unveiled new offensive DCOM techniques, including a COMouflage variant enabling arbitrary executable execution and a fileless lateral movement method based on .NET deserialisation. DCOMIllusionist is now available: 🔗 github.com/synacktiv/DC...

Another excellent edition of #SSTIC2026 🎉 Several #Synacktiv consultants were proud to present their research and exchange ideas with the cybersecurity community. Congratulations to all our speakers! Find all presentations here: www.sstic.org/2026/program...

🚀 Training week is underway at #x33fcon! Our consultants are delivering: 🔐 Azure Intrusion Tactics 🖥️ Advanced Active Directory Red Teaming Three days of hands-on labs, realistic attack scenarios, and offensive security techniques. Great to see so many participants joining us!

🔒 Think you can crack them all? Join #Synacktiv at @le-hack.bsky.social and take on a challenge at our stand, crafted by @niozow.bsky.social 🚀 One laptop. Multiple flags. Encrypted safes. Break in, unlock everything, and recover every secret before time runs out ⏱️💻 See you at stand 22!

🚗🔌 #Tesla patched our #Pwn2Own Automotive 2025 Wall Connector exploit with an anti-downgrade mechanism. #Synacktiv experts bypassed it and replayed the same attack through the charging cable. Part 2 write-up 👇 www.synacktiv.com/en/publicati...

Back from #THCON 2026 🔥 Proud to see our teams share their latest offensive security research once again this year: 📡 Wi-Fi pentesting in 2025 & WPA3 bypasses - Quentin 🛡️ Cross-domain & cross-forest RBCD - Simon 🏴 THCON pre-challenge write-up - @0xf4b.bsky.social Great work everyone 👏

Make it blink! Our latest article explains how @mtalbi.bsky.social & Matthieu achieved an over-the-air exploitation of the #PhilipsHue Bridge via a #Zigbee flaw. Includes technical details and their #Pwn2Own Cork 2025 demo 👇 www.synacktiv.com/en/publicati...

🚀 Join #Synacktiv at #x33fcon for two hands-on trainings (June 8–10): 🔐 Azure Intrusion Tactics (intermediate): x33fcon.com#!t/MattheuBa... 🖥️ Advanced Active Directory Red Teaming (advanced) Led by our experts: x33fcon.com#!t/WilfriedB... Sharpen your offensive skills in realistic environments!

This second blogpost concludes @yaumn.bsky.social's research on #Windows authentication reflection. He discloses the new Kerberos authentication coercion technique he discovered to remotely compromise Windows systems 💥 A little bonus is even included at the end 👀👇 www.synacktiv.com/en/publicati...

Authentication reflection attacks are still not dead! In our new blogpost series, @yaumn.bsky.social shares his journey into bypassing the mitigations of CVE-2025-33073 to pop SYSTEM shells again! 🚀 👇 www.synacktiv.com/en/publicati...

Tomorrow, @yaumn.bsky.social will be presenting his research on Windows authentication reflection at @blackhatevents.bsky.social Asia 2026 in Singapore! The talk will be at 15:20 local time in Simpor Junior Ballroom 4810, come say hi! 😄 #BHASIA ℹ️ blackhat.com/asia-26/brie...

Say hi to Pike! Our latest article introduces #Pike, an experimental #LLM agent that generates & analyses #Linux execution traces to: 🔍 Debug crashes 🛡️ Detect malware 📊 Provide high-level insights All through a natural chat interface. www.synacktiv.com/en/publicati...

🚀 Join Synacktiv at #x33fcon for two hands-on trainings (June 8-10): 🔐 Azure Intrusion Tactics (intermediate): www.x33fcon.com#!t/MattheuBa... 🖥️ Advanced Active Directory Red Teaming (advanced): www.x33fcon.com#!t/WilfriedB... Sharpen your offensive skills in realistic environments!

Attacking heavy applications through named pipes: an attack surface often overlooked due to its complexity. In this article, @turbothon.bsky.social explains how we designed a tool abusing legitimate processes to attack higly privileged components of heavy clients ⬇️ www.synacktiv.com/en/publicati...

We are happy to open-source zom (github.com/synacktiv/zom), a mirror for @zed.dev code editor extensions and releases, useful in restricted environments. Feel free to give it a try, all issues or PRs are welcome!

Double trouble at #SOCON2026! Our ninja @kalimer0x00.bsky.social was busy breaking down Microsoft SCCM (once again!), while @quent0x1.bsky.social unveiled new GPO-based attack paths & his latest Bloodhound contributions targeting OUs & AD Sites. Awesome job! 👏

Our ninjas identified vulnerabilities in the #BizTalk360 solution. They can be exploited from any authenticated domain user, and lead to full server compromise. A new version is available, update your instances! 👇

Based on the incidents we handled, our observations align with #ANSSI 's 2025 Cyber Threat Landscape: 🔻 Fewer ransomware attacks 🔺 More data exfiltrations 💡 Discover the top 3 causes of data breaches in our infographic! Facing a breach? Contact us: 📩 [email protected]

Attacks targeting #Kubernetes are surging in 2025 🔎 To tackle this, Synacktiv #CSIRT is launching a series of articles on Kubernetes forensics. First up: understanding the underlying container technology 👇 www.synacktiv.com/en/node/1320

If #RBCD has been thoroughly documented, only a few resources mention the workflow in cross-domain environment. In our new blogpost, we dive into the cross-domain and cross-forest RBCD workflows Read it here 👇 www.synacktiv.com/en/publicati...

Deep dive into the provisionning an on-prem low-privileged #LLM stack, with air-gapped networking and GPU-isolation, hardened down to kernel modules. What could possibly go wrong? Read the full article here: www.synacktiv.com/en/publicati...

💡 Raising awareness to improve investigations User testimonies are invaluable during incidents - but healthy doubt matters too 🔍 Trust & accountability help organisations better understand and resolve #cyber incidents. 📊 Discover our recommendations ↓ 📩 www.synacktiv.com/en/offers/tr...

Active #RDP connections can reveal the client hostname 🔎 A key indicator for investigations & #CTI: some attackers reuse hostnames. Traces to check: CLIENTNAME env variable & RDP printer redirection. 🛡️ Incident? Contact #Synacktiv CSIRT 24/7: [email protected]

🔎 Want to know what you can really do with #mitmproxy? This deep dive shows how to intercept and modify application traffic on #Linux, #Android, and #iOS - from TLS MITM to gRPC/Protobuf tampering. Read our latest article: www.synacktiv.com/en/publicati...

🚀 Last December, the Synacktiv #WinterChallenge 2025 took place. 👏 Congratulations to the 25 participants for their outstanding solutions! 🧠 Read the write-up on the best techniques used to craft a constraint-compliant quinindrome: www.synacktiv.com/en/publicati...

#IT evolves… and so do attacks. 🛡️ Sharpen your skills in March-April 2026 with our #cybersecurity courses: Forensic, Cloud, Active Directory & Malware Analysis. 📅 Limited spots: www.synacktiv.com/en/offers/tr...

In our latest article, @niozow.bsky.social dives into the inner workings of #Windows access tokens, privileges and logon rights. As these rights often constitute a blind spot for AD enumeration tools, the article describes our PRs to integrate them into BloodHound ⬇️ www.synacktiv.com/en/publicati...

🔍 Synacktiv training courses - April 2026 Hands-on #cybersecurity courses led by #Synacktiv experts: Cloud Forensics (AWS), Azure & AD intrusion tactics. 📅 March-April | Onsite & Remote 👉 www.synacktiv.com/en/offers/tr...

At #Pwn2Own Berlin 2025, a full exploit chain against VMware Workstation was demonstrated via a heap overflow in the PVSCSI controller. Despite Windows 11 LFH mitigations, advanced heap shaping and side-channel techniques enabled a reliable exploit. 🔍 www.synacktiv.com/en/publicati...

On the podium at #Pwn2Own Automotive 2026 🥉 Synacktiv ranked 3rd in Tokyo 🇯🇵 after successful attacks on #Tesla Infotainment (USB), #Sony XAV-9500ES (USB) and #Autel MaxiCharger (NFC). 📍 Next stop: Berlin!

Proud to announce that REVEL·IO has secured funding from @bpifrance-officiel.bsky.social under #France2030 🚀 With @synacktiv.com, this supports a new version to: ➡️ help CERT teams automate live forensic analysis ➡️ enable French & European judicial experts to perform reliable mobile extractions

Our experts will be at #Pwn2Own Automotive in Tokyo 🇯🇵 After taking 1st place in 2024 by uncovering #Tesla and automotive vulnerabilities, they’re back to explore new attack entry points! Stay tuned 🔍

Cyber threats evolve fast - so should your skills. In March, join our hands-on #cybersecurity training covering Linux Forensics, Cloud Forensics (Azure & AWS) and Intrusion Tactics. ⌛ Limited seats → www.synacktiv.com/en/offers/tr... #Cybersecurity #Forensics #CloudSecurity

From legacy WEP to WPA3-Enterprise: sharing our recent #WiFi field experiences. 📡 We detail various scenarios to better understand the risks, including WPA3 PEAP relaying & optimized online PSK brute-forcing. ⤵️ www.synacktiv.com/en/publicati...

🔒 Feb 2026: #cybersecurity training with #Synacktiv! 5&6 Feb: Kubernetes Intrusion Tactics (Paris, FR) 9&10 Feb: AWS Intrusion Tactics (Paris, FR) 9-11 Feb: Malware Analysis (Remote, EN) 16-20 Feb: Attacking Web Apps (Paris, FR) ✅ Register now: www.synacktiv.com/en/offers/tr...

🚨 Pre-Auth RCE in #Livewire (CVE-2025-54068)! Our specialists uncovered a critical flaw allowing remote code execution without the APP_KEY, exploiting Livewire’s hydration mechanism + PHP’s loose typing. 🔗 Patch now! (v3.6.4+) www.synacktiv.com/en/publicati...

🚀 [Training 2026] Research & exploitation: embedded #Linux systems 5-day training on UART access, firmware analysis, QEMU emulation, fuzzing (AFL++), static analysis & persistence on compromised systems. 📍 On site, Paris 🇫🇷 French Register 👇 www.synacktiv.com/en/offers/tr...

🔥 Synacktiv’s #CSIRT 2026 training sessions are coming! Forensics, malware analysis, cloud investigations - all taught by our experts, available remotely or on site, in French or English. Register 👇 www.synacktiv.com/en/offers/tr...

[New blog post] As part of an R&D project, @tomtombinary.bsky.social identified several critical vulnerabilities in the LAN multiplayer mode of the game Anno 1404 (released in 2009) 🔍 Want to know more? Read the full article on our blog 👇 www.synacktiv.com/en/publicati...

HID recently disclosed HID-PSA-2025-002, a critical flaw in the #ActivID Authentication Appliance 8.7. In our new blog post, @us3r777.bsky.social and @pierregg.bsky.social break down exactly how they uncovered it, from methodology to exploitation 💡 Read it here ⬇️ synacktiv.com/en/publicati...

🔥 #Synacktiv’s 2026 Internship Book is out! Whether you're into pentest, reverse engineering, incident response or development, you’ll find our full list of internships plus practical tips to boost your chances. 📬 Send us your CV: www.synacktiv.com/book_stage_s...

Level up your #pentest skills in 2026 🚀 Join Synacktiv’s hands-on trainings: from Kubernetes & cloud hacks to web app attacks & AD intrusion. More information & registration : www.synacktiv.com/en/offers/tr... #cybersecurity

🕵️‍♂️ When an 'innocent' #PHP file hides a #backdoor… During an investigation on a compromised server, we came across an obfuscated PHAR stub - a classic sign of a #webshell trying to evade basic scanners. Check out our technical analysis 🔍 Have you ever encountered this type of “packaged” webshell? 💬

🎓🚀 Ready to level up your #cybersecurity skills? Synacktiv’s 2026 training programs are open for registration! Get practical, expert-led sessions in offensive and defensive cybersecurity - online or in-person, in French or English 🇫🇷🇬🇧 🔗 Learn more: www.synacktiv.com/en/offers/tr...

Winter is here, it's time to test your assembly skills with the #Synacktiv Winter Challenge 🏂. A code golf competition that guarantees hours of intense x86 instruction optimization! 🔗 Participate here: www.synacktiv.com/en/publicati...