Sotwe logo Sotwe logo
codeyourweb's profile image

Jean-Pierre GARNIER

@codeyourweb

Adversary Hunter && Threat Researcher - ♥infosec, code and mojitos - Opinions are mine
Paris
Ikut February 2014
177 Mengikuti
148 Pengikut
337 Postingan
 Tweet Sematan
codeyourweb's profile image
Jean-Pierre GARNIER @codeyourweb
#fastfinder 3.6.0 released! Memory scan capability, cross-architecture (x86/x64/arm), enhanced logging, SIEM log forwarding and tons of optimizations #DFIR #threathunting #IOC #YARA https://t.co/7nWClkkckA
0
0
0
0
44
codeyourweb  di-retweet
DarkWebInformer's profile image
Dark Web Informer @DarkWebInformer
‼️Copy Fail (CVE-2026-31431) is a Linux privilege escalation bug that lets any local user get root using a 732-byte Python script, and itworks on basically every major Linux distro shipped since 2017. Website: https://t.co/f5G6KnEv35 Write-up: https://t.co/W86Pz2PC6C GitHub: https://t.co/zAMTC6nTRk It's a logic flaw in the kernel's crypto code (authencesn via AF_ALG and splice()) that allows a small write into the page cache, which can be used to tamper with a setuid binary like /usr/bin/su. Think how bad this is going to be for shared environments like Kubernetes, CI runners, and cloud sandboxes, where it enables container escape and tenant-to-host compromise. Found by Theori's Xint Code scanner, patched in the mainline kernel, and publicly disclosed on April 29, 2026; if you can't patch right away, the recommended workaround is to disable the algif_aead module.
59
3K
817
2K
403K
codeyourweb's profile image
Jean-Pierre GARNIER @codeyourweb
@anyrun_app @msftsecurity Did you really make the exact same mistake exactly one year later? It's been back on @anyrun_app for the past few hours
0
1
0
0
46
codeyourweb  di-retweet
binitamshah's profile image
Binni Shah Verified account @binitamshah
rzweb : A complete browser-based reverse engineering platform built on Rizin, running entirely client-side via WebAssembly : https://t.co/lAkYHVHPvI
binitamshah's tweet photo. rzweb : A complete browser-based reverse engineering platform built on Rizin, running entirely client-side via WebAssembly : https://t.co/lAkYHVHPvI https://t.co/MHBI7tdx1r
11
1K
156
949
55K

Siapa yang Harus Diikuti

cr0nym's profile image
[email protected] / EDRmetry / PurpleLabs Verified account
@cr0nym
Focus on Linux/Kubernetes Attack/Detection/Forensics/Incident Response/Threat Hunting/Active Defense. Learning hard every single day.
JWilsonSecurity's profile image
Jared Wilson
@JWilsonSecurity
Mandiant Research and Discovery, Father, Husband, Trail Runner, Co-Founder CyberFriendsCircle
BrianPKime's profile image
Brian Kime
@BrianPKime
Intelligence Professional | Ramblin' Wreck from @GeorgiaTech | @USArmy #veteran | Opinions are mine, even bad ones
codeyourweb's profile image
Jean-Pierre GARNIER @codeyourweb
Already five years, Time flies so quickly... At the end of 2021, I developed #fastfinder to simplify triage using #YARA. 2026 is an opportunity to reinvest time in this project with a V3 featuring tons of new features #DFIR #CERT #threathunting https://t.co/7nWClkkckA
0
0
0
0
22
codeyourweb's profile image
Jean-Pierre GARNIER @codeyourweb
@_0b1d1 PDF
0
0
0
0
17
codeyourweb's profile image
Jean-Pierre GARNIER @codeyourweb
@_0b1d1 Dm allowed. Interested by your work.
0
0
0
0
10
codeyourweb's profile image
Jean-Pierre GARNIER @codeyourweb
@_0b1d1 Interested in the full document, but at first glance it appears to be a thorough piece of work. Could you share the full content?
1
0
0
0
284
codeyourweb  di-retweet
malmoeb's profile image
Stephan Berger Verified account @malmoeb
New blog post: Tear Down The Castle - Part 2 https://t.co/7QPqW0UbRh I analyzed 250 PingCastle Reports, grouping the findings along the categories I used for my 10 AD Commandments series. The number of affected domains is stated within each finding, i.e., in how many domains we found the misconfiguration or the vulnerability.
malmoeb's tweet photo. New blog post: Tear Down The Castle - Part 2 https://t.co/7QPqW0UbRh I analyzed 250 PingCastle Reports, grouping the findings along the categories I used for my 10 AD Commandments series. The number of affected domains is stated within each finding, i.e., in how many domains we found the misconfiguration or the vulnerability.
2
177
47
165
14K
codeyourweb  di-retweet
YuG0rd's profile image
Yuval Gordon @YuG0rd
Many missed this on #BadSuccessor: it’s also a credential dumper. I wrote a simple PowerShell script that uses Rubeus to dump Kerberos keys and NTLM hashes for every principal-krbtgt, users, machines. no DCSync required, no code execution on DC.
9
488
154
249
39K
codeyourweb's profile image
Jean-Pierre GARNIER @codeyourweb
And here's a little project to monitor network traffic and logging directly over endpoints interfaces. First proof-of-concept with local pcap and HTTP API forwarder (fully tested on #SEKOIA plaftform). https://t.co/snyHhjOLmK #soc #cybersecurity #networksecurity
0
0
0
0
378
codeyourweb  di-retweet
EricMorillot's profile image
Eric Morillot Verified account @EricMorillot
Quel génie a fait ça ??? 🤣🤣🤣 #Ukraine #Russie #USA
54
3K
666
2K
143K
codeyourweb  di-retweet
akshay_pachaar's profile image
Akshay 🚀 Verified account @akshay_pachaar
Microsoft has released its own document parser for LLM use! . . Introducing MarkItDown, a 100% open-source, one-stop solution for effortlessly converting any file to Markdown—perfect for text analysis, indexing, and more! Here’s what makes it special: ↳ Converts PDF, Word, Excel, PPT, images, audio to markdown ↳ Extracts EXIF, OCR, and transcripts automatically ↳ Available via CLI, Python API, or Docker ↳ Offers LLM-based image descriptions ↳ Supports batch conversions Link to the repo in next tweet! _____ Find me → @akshay_pachaar ✔️ For more insights & tutorials on AI and Machine Learning.
akshay_pachaar's tweet photo. Microsoft has released its own document parser for LLM use! . . Introducing MarkItDown, a 100% open-source, one-stop solution for effortlessly converting any file to Markdown—perfect for text analysis, indexing, and more! Here’s what makes it special: ↳ Converts PDF, Word, Excel, PPT, images, audio to markdown ↳ Extracts EXIF, OCR, and transcripts automatically ↳ Available via CLI, Python API, or Docker ↳ Offers LLM-based image descriptions ↳ Supports batch conversions Link to the repo in next tweet! _____ Find me → @akshay_pachaar ✔️ For more insights & tutorials on AI and Machine Learning.
71
4K
551
6K
403K
codeyourweb  di-retweet
Eroktic's profile image
Eroktic @Eroktic
Reviews are MOSTLY NEGATIVE - Gray Zone Warfare vid is up on yt #GZW #GrayZoneWarfare
Eroktic's tweet photo. Reviews are MOSTLY NEGATIVE - Gray Zone Warfare vid is up on yt #GZW #GrayZoneWarfare https://t.co/SQtEmyq0sg
1
3
2
0
893
codeyourweb's profile image
Jean-Pierre GARNIER @codeyourweb
https://t.co/xD870yWt6D
0
2
0
0
28
codeyourweb  di-retweet
likethecoins's profile image
Katie Nickels @likethecoins
Kudos to @DragosInc for sharing details of a recent event. The adversary compromised a new employee's personal email address and impersonated them to get access. How would you protect against that?
5
76
8
3
13K
codeyourweb  di-retweet
cyb3rops's profile image
Florian Roth ⚡️ Verified account @cyb3rops
I remember a time when people here in Europe still had issues storing their corporate emails on US mail servers - nowadays you store the master keys to your company on their servers 🎵 … for the times they are a-changin'
4
30
5
8
25K
codeyourweb  di-retweet
cyb3rops's profile image
Florian Roth ⚡️ Verified account @cyb3rops
Priorities
16
651
111
40
77K
codeyourweb  di-retweet
framaka's profile image
Alexis Kauffmann @framaka
[Android] Une trentaine de "Privacy Friendly Apps" proposées par @SECUSOResearch qui : - are Open Source (GPLv3) and their source code can be viewed an Github by anybody - used minimal permissions - do not neither tracking mechanisms nor advertisement https://t.co/PjNNNydYLT
framaka's tweet photo. [Android] Une trentaine de "Privacy Friendly Apps" proposées par @SECUSOResearch qui : - are Open Source (GPLv3) and their source code can be viewed an Github by anybody - used minimal permissions - do not neither tracking mechanisms nor advertisement https://t.co/PjNNNydYLT https://t.co/CoSe9RoUkb
0
25
12
5
0
codeyourweb  di-retweet
NinjaParanoid's profile image
Chetan Nayak (Brute Ratel C4 Author) Verified account @NinjaParanoid
Unable to extract credentials via DPAPI or Mimikatz? Don't worry. Microsoft got your back. Just use 'rundll32 keymgr.dll, KRShowKeyMgr' to extract all the stored passwords on the host, be it a target server, FTP or chrome's HTTP creds, microsoft has you covered. #redteam
NinjaParanoid's tweet photo. Unable to extract credentials via DPAPI or Mimikatz? Don't worry. Microsoft got your back. Just use 'rundll32 keymgr.dll, KRShowKeyMgr' to extract all the stored passwords on the host, be it a target server, FTP or chrome's HTTP creds, microsoft has you covered. #redteam https://t.co/OynOurXgtX
48
3K
803
733
0

Pengguna Terakhir Terlihat di Sotwe

Hamuka1596's profile image
konten Lokal Viral Verified account
Dilihat dari Indonesia
Trans600backup's profile image
Trans600 backup
Dilihat dari Turkey
itshotdaddyy's profile image
itshotdaddyy Verified account
Dilihat dari Malaysia
Napalm51's profile image
Senso di Napalm Verified account
Dilihat dari Italy
BinalStw's profile image
Stw Binal
Dilihat dari Indonesia
walterbanko's profile image
البرنس
Dilihat dari United Kingdom
ThichGauBear's profile image
Thích Bear
Dilihat dari Vietnam
puteri_mar74135's profile image
Puteri Maria
Dilihat dari Malaysia
herybolot1's profile image
Suka jj 🤤🤤
Dilihat dari Indonesia
Rare96970247's profile image
Rare
Dilihat dari Indonesia

Tren untuk Anda

1
$WERLD
Di bawah 10 ribu tweet
2
Jeremy Strong
Di bawah 10 ribu tweet
3
Doctor Who
Di bawah 10 ribu tweet
4
Inflation
Di bawah 10 ribu tweet
5
Crockett
Di bawah 10 ribu tweet
6
ActBlue
Di bawah 10 ribu tweet
7
Core CPI
Di bawah 10 ribu tweet
8
#KarmeloAntony
Di bawah 10 ribu tweet
9
Erdogan
Di bawah 10 ribu tweet
10
Good Wednesday
Di bawah 10 ribu tweet

Pengguna Paling Populer

elonmusk's profile image
1
Elon Musk Verified account
@elonmusk
240.2M pengikut
barackobama's profile image
2
Barack Obama Verified account
@barackobama
119.3M pengikut
realdonaldtrump's profile image
3
Donald J. Trump Verified account
@realdonaldtrump
111.6M pengikut
cristiano's profile image
4
Cristiano Ronaldo Verified account
@cristiano
109.2M pengikut
narendramodi's profile image
5
Narendra Modi Verified account
@narendramodi
106.9M pengikut
rihanna's profile image
6
Rihanna Verified account
@rihanna
97.3M pengikut
nasa's profile image
7
NASA Verified account
@nasa
92.1M pengikut
justinbieber's profile image
8
Justin Bieber Verified account
@justinbieber
90.6M pengikut
katyperry's profile image
9
KATY PERRY Verified account
@katyperry
87M pengikut
taylorswift13's profile image
10
Taylor Swift Verified account
@taylorswift13
80.8M pengikut
ladygaga's profile image
11
Lady Gaga Verified account
@ladygaga
72.3M pengikut
kimkardashian's profile image
12
Kim Kardashian Verified account
@kimkardashian
69.4M pengikut
imvkohli's profile image
13
Virat Kohli Verified account
@imvkohli
68.7M pengikut
youtube's profile image
14
YouTube Verified account
@youtube
68.6M pengikut
billgates's profile image
15
Bill Gates Verified account
@billgates
63.5M pengikut
theellenshow's profile image
16
The Ellen Show
@theellenshow
62.5M pengikut
cnn's profile image
17
CNN Verified account
@cnn
61.9M pengikut
neymarjr's profile image
18
Neymar Jr Verified account
@neymarjr
61.3M pengikut
x's profile image
19
X Verified account
@x
60.9M pengikut
selenagomez's profile image
20
Selena Gomez Verified account
@selenagomez
60M pengikut