Olivia
Online
Ambionics Security
@ambionics
A @LexfoSecurite solution.
Ambionics is a native Continuous Threat Exposure Management (CTEM) solution that helps organizations reduce cyber exposure.
Paris, France
Joined September 2016
92 Following
2K Followers
85 Posts
Pinned Tweet
🔓 On an asset under our continuous monitoring, our pentester @nol_tech turned a SELECT-only PostgreSQL SQLi in Drupal (CVE-2026-9082) into a full RCE when DB role is superuser. Details below 👇
📝 https://t.co/R7F5XQ2vZD
🛠️ https://t.co/yRJ8zX1Nlb
#Drupal #PostgreSQL #RCE #SQLi
Congratulations to our pentester @nol_tech on placing 2nd in the Web Senior category at the #FCSC2026 qualifications, with a score of 3,616 points.
This kind of result speaks for itself. Best of luck for the next rounds! 🍀
#CTF #Cybersecurity
🚨 Critical File Upload to RCE in @NinjaForms File Uploads @WordPress plugin (CVE-2026-0740)!
Deep dive & PoC:
👉https://t.co/ZLu5KMsj9D
🔍By @whattheslime from @Ambionics CTEM solution
🛡️Patch available (v3.3.27) — Update now!
#WordPress #RCE #InfoSec #CyberSecurity #CVE
🔔 New research from Lexfo on pre- & post-authentication vulnerabilities in WSO2 products — uncovering bypasses, RCE, SSRF, CSRF, and account-takeover risks. See our detail article → https://t.co/1jNmsIhdZl
#cybersecurity #infosec #offensivesecurity #pentest #WSO2
Who to follow
PT SWARM
@ptswarm
Positive Technologies Offensive Team
Charles Fol
@cfreal_
@Synacktiv – previously @ambionics @LexfoSecurite
– blogs: https://t.co/cLoNdCGPU7 https://t.co/JVMLjUzTJU https://t.co/t9a5IcOXSU
Nicolas Grégoire
@Agarri_FR
Web hacker and Burp Suite Pro trainer
Refer to https://t.co/D5tRH7U2hg for trainings
Follow @MasteringBurp for free tips and tricks
🚀 Huge thanks to @cfreal_ for the threading PR.
Lightyear is now faster than ever! We truly appreciate continued contributions.
If you haven’t yet, give lightyear a try and see the difference yourself!
#opensource #lightyear #performance #php #pentest #infosec #cybersecurity
lightyear just got 6 times faster!
Although I now work at @Synacktiv, I proposed a PR for the tool to support threading and compression, greatly reducing the time required to dump a file.
Dumping the demo /etc/passwd now takes 48s instead of 5m30.
https://t.co/d7n4baN12a
The discovered chain contains interesting new vectors : Pre-authentication SQLi on the Inventory native feature ->Authentication bypass by fetching api_token or personal_token -> Either plugin command injection through the Marketplace or a new LFI vector via PDF exports->RCE.
GLPI, an open-source IT service management software suite, has released version 10.0.18, addressing two critical vulnerabilities found by our experts : an SQL injection (CVE-2025-24799) and a remote code execution (CVE-2025-24801). Checkout our blog post: https://t.co/INba9ohWNL.
🔥 The "impossible" XXE in PHP? Not so impossible anymore.
Our researcher Aleksandr Zhurnakov discovered an interesting combination of PHP wrappers and a feature of XML parsing in libxml2 to exploit it.
Read: https://t.co/GuW2Vf5qLN
We're proud to announce LIGHTYEAR, a tool that let you dump files, blind, in PHP, based on a new algorithm.
https://t.co/GG4tSNnUCf
At long last: Iconv, set the charset to RCE (part 3): in this final part of the iconv series, @cfreal_ demonstrates how you can use CVE-2024-2961 to convert BLIND file reads to RCE. https://t.co/NipFAehQXY
@JHennyArt1 Surely you mean @ambionics_uk!
Iconv, set the charset to RCE (part 2): @cfreal_ exploits direct iconv() calls to hack the PHP engine, and its most popular webmail, @Roundcube (CVE-2024-2961). https://t.co/PCnWmGsnRw
📷 Learn more and contribute: Scalpel is in Alpha and your feedback is valuable. Check the docs and join us on GitHub!
https://t.co/tLb1pP36ey
Scalpel is here: this @Burp_Suite extension lets you edit your requests, in Python 3, in the repeater or on-the-fly. https://t.co/5z5VwojG1b
📷 Modify the entire traffic with Scalpel. Implement custom logic to manipulate requests globally using the request function:
Last Seen Users on Sotwe
معاد تدويرها
ali
Seen from Turkey
ㅇㄷㅇㄷ
Seen from Vietnam
Bude898
Seen from Indonesia
Murat yozgatli
Seen from Turkey
AportesYcaseros 
Seen from United States
Incesz Wowo.
Seen from Indonesia
`✵•.¸,✵°✵.。.✰ 𝕂𝕒𝕚𝕝𝕤 ✰.。.✵°✵,¸.•✵´
Seen from Germany
Malaysia Boleh
Seen from Malaysia
TheThirstTrapper
Seen from Portugal
Most Popular Users
Elon Musk
@elonmusk
240.1M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.7M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.2M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.5M followers
KATY PERRY
@katyperry
86.7M followers
Taylor Swift
@taylorswift13
80.5M followers
Lady Gaga
@ladygaga
72.1M followers
Kim Kardashian
@kimkardashian
69.3M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.4M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
60.9M followers
X
@x
60.9M followers
CNN Breaking News
@cnnbrk
59.9M followers