For #THCon 2nd day, JB Cayrou is currently talking about the Android security model 🤖

Windows authentication & Prox-Ez is the topic of the last Synacktiv talk at #THCon, staring Pierre Milioni and Geoffrey B

New year, new look! ✨ For this edition our visual identity gets a refresher : hexacon.fr ✨ As a reminder, our CFP is currently open until the 1st of June :  hexacon.fr/conference/cal… More things to be announced in the followings weeks, stay tuned! #HEXACON2023

📣Rappel pour celles et ceux qui auraient raté l'info 🗓️Un Bière&Sécu est prévu le jeudi 1er juin à 19h au Rooster and Beer à Toulouse. Inscrivez-vous 👉 framadate.org/71L2VK5zeaMxhl… En espérant vous voir nombreux !🍻

A while ago during a security assessment, Théo Louis-Tisserand identified multiple vulnerabilities on the PRTG Network Monitor application version 21.3.69.1333, allowing an attacker to perform XSS attacks. Read the technical details in the advisory: synacktiv.com/sites/default/…

Tonight, David B and Mastho will talk about #Pwn2Own and the Tesla hack with Micode 🎙️

During a recent Active Directory intrusion test, @croco_byte was led to devise a new versatile attack vector targeting Group Policy Objects, allowing their exploitation through NTLM relaying. synacktiv.com/publications/g…

Bored of managing multiple proxychains configurations? Hugo Clout developed bbs, a swiss army knife proxy manager for red teamers! The project is available on our GitHub: github.com/synacktiv/bbs

Bonne année tout le monde 😄🎉 📣Prenez une bonne résolution et venez au premier Bière&Sécu 2024, le jeudi 8 février 🗓️ à 19h au Rooster and Beer 🐔🍺 Inscrivez-vous 👉 framadate.org/HlfuGIxo2u62Ws… Contactez-nous si vous avez des sujets à présenter via Twitter ou Discord 🗣️!

☁️ Whether it's on premises or in the cloud, a domain is a domain. 💪 Flex your intrusion muscles with @tiyeuse and Hugow's training! ➡️ hexacon.fr/trainer/vincen… 📆 30/09-03/10 2024 📍Espace Vinci, Rue des Jeuneurs, Paris

Thanks to Théo Louis-Tisserand's PR, DPoP auth support has now been added to CloudNine for Okta which is used in agent versions >3.18.0 \o/ github.com/xpn/OktaPostEx…

GitLab recently released a patch for the Ruby-SAML / GitLab Authentication Bypass (CVE-2024-45409). Our ninjas Alexis Danizan and Pierre Milioni analyzed the patch and wrote the exploit code! github.com/synacktiv/CVE-…

Oh, you didn't know? Cool kids are now relaying Kerberos over SMB 😏 Check out our latest blogpost by Hugow to discover how to perform this attack: synacktiv.com/publications/r…

You can now use LDAP/LDAPs protocols with the SOCKS proxy of ntlmrelayx thanks to the PR from Pierre Milioni (now merged upstream). Here is an example with ldeep using relayed authentication from HTTP to LDAPs :

Following the release of IPSpinner last week, now is the time to unveil CaptainCredz! Perform advanced, fine-grained password spraying while remaining under the radar for your next Red Team engagement 🔥 github.com/synacktiv/capt…

In our latest article, Quentin Roland and Scaum demonstrate a trick allowing to make Windows SMB clients fall back to WebDav HTTP authentication, enhancing the NTLM and Kerberos relaying capabilities of multicast poisoning attacks! synacktiv.com/publications/t…

🚀 This week, Us3r777 & Pierre kick off our new Whitebox Vulnerability Research training! Students will dive into PHP, Java, and .NET, analyzing & exploiting 1-day vulnerabilities. Let’s get started! 💻🔍

Azure intrusion for red teamers by Paul Barbé & Matthieu Barjole (aevy) hexacon.fr/trainer/barbe_…

Microsoft just released the patch for CVE-2025-33073, a critical vulnerability allowing a standard user to remotely compromise any machine with SMB signing not enforced! Checkout the details in the blogpost by Guillaume André and Wil. synacktiv.com/publications/n…

Our ninja kalimero is now on stage at #x33fcon to talk about his journey from dissecting SCCM until the discovery of the critical CVE-2024-43468 and the post-exploitation opportunities🔥