🔥The 9th Round of Easy Loan, Earn $40 Reward is in progress❗️ ⏰ Promotion Period: January 15th - Feburary 15th, 2025 👉 Register now and check more details at gate.io/campaigns/358

🎉 DFIR Labs CTF Winners 🎉 We’re thrilled to announce the winners of our latest CTF: 🏆 1st Place: ekt0 (Synacktiv) - 🇫🇷 🥈 2nd Place: Satyender Yadav 🥉 3rd Place: c0t0d0s2 - 🇵🇱 A big thank you to all participants and supporters for making this event a success!

It is one of the best CTFs we have ever had! Tried to accommodate all different skill levels by having easy and hard challenges alike! 🥳 🎉 Congrats to the winners! They managed to answer most of the difficult challenges which is very impressive. Synacktiv should be proud to

Well, that was intense! Awesome 4-hour CTF with real-world DFIR cases. Sometimes challenging but had a blast!

Have you ever wondered how your PC communicates with an Android device when using adb? Check out our new blogpost! synacktiv.com/publications/d…

Worried about attackers sneakily spying on your optical fibers ? Learn with @r3n1k how they operate, and how you can defeat them - for cheaper than a flagship smartphone ! synacktiv.com/publications/d…

A first look at iOS 18 #DFIR #mobileforensics blog.digital-forensics.it/2024/09/a-firs…

Gepetto 1.4 is officially released: github.com/JusticeRage/Ge… It's a cool one: - Support for local models - Added a CLI interface to interact with the model directly - Developing support for other models is now easier (no UI updates needed)

Velociraptor release 0.73 is now available for testing! Read about all the cool new features here docs.velociraptor.app/blog/2024/2024… . An exciting new feature is built in timelining capability. Check the blog post here docs.velociraptor.app/blog/2024/2024…

Cette année nous sommes heureux d'annoncer la participation d'un nouveau partenaire, les services de renseignements extérieurs français : la DGSE Découvrez leurs missions et leurs offres d'emplois : dgse.gouv.fr #HEXACON2024

🚨 Mandiant observed #LummaC2 stealers leveraging a new obfuscation technique to thwart analysis tools and stifle reverse engineering efforts. Read about this tactic, and how we developed an automated method for removing this protection layer → bit.ly/47IImbK

Attacking UNIX Systems via CUPS, Part I evilsocket.net/2024/09/26/Att…

From Ruins to Resilience: How Developing and Utilizing Open Source Solutions Enhances CSIRT Capabilities #csirt #cert #opensource #infosec 🔗 foo.be/2024/10/How_De…

Ever wondered how Bitwarden password manager stores data? In our latest blogpost, Noam Leipold explored bitwarden SQL databases looking for spicy forensic data. synacktiv.com/publications/f…

Today during hack_lu, Simon G. gave some feedback on physical security evolution. The talk has been recorded and is already available! youtube.com/watch?v=EMg0uv…

Some personal news: I will be joining Meta's security team (focusing on WhatsApp) starting next week. This is a big life change, I'm also moving to London permanently. I took this opportunity to reflect on the state of threat intel: blog.kwiatkowski.fr/threat-intel-t… LMK if it resonates!

Right before #Pwn2Own Ireland 2024, Baptiste M. found a vulnerability in Synology TC500 & BC500 security cameras. A blind format string exploit allowed code execution, but Synology patched it, securing the devices in time for the competition. synacktiv.com/publications/e…

#GreHack24 is starting with Simon G. talking about physical security 🗝️

.Volexity has published a blog post detailing variants of LIGHTSPY & DEEPDATA malware discovered in the summer of 2024, including exploitation of a vulnerability in FortiClient to extract credentials from memory. Read more here: volexity.com/blog/2024/11/1… #dfir #threatintel

We've just updated our training catalog to include the latest additions, including a brand new course on ransomware investigations! Find all the dates and details at synacktiv.com/en/offers/trai…

Hunters International RaaS group has claimed 280+ victims since Oct 2023. Check out our latest blog post on the TTPs they use, including SMOKEDHAM malvertising & ESXi ransomware with advanced obfuscation. #RaaS #CyberSecurity #ThreatAnalysis synacktiv.com/en/publication…