Olivia
Online
Julien Deudon
@initbrain
Information Security, Open-Source Intelligence, Python and SDR addict.
France
Joined May 2011
843 Following
531 Followers
5.9K Posts
After a few months of work, we are pleased to announce the new version of Unprotect: your catalog of malware evasion techniques!🤩🧵👇
#unprotectproject #infosec #malware #cybersecurity @DarkCoderSc
https://t.co/rduZMNU7EV
S3 Bucket Subdomain Takeover On https://t.co/ufnQRITyoc That Could Lead To A Supply Chain Attack
https://t.co/qarEFwzm1d
By @naglinagli
#bugbountytips #bugbounty #infosec #cybersecurity
⛓️This is a very important industry-wide disclosure since many vendors are affected by the bug in the TPM reference code and specification.
"The attacker can also overwrite protected data in the TPM firmware. This may lead to a crash or arbitrary code execution ..." --@fdfalcon
Amazon recently released a model that outperforms GPT-3.5 by 16% while being 784x smaller.
This was achieved by generating intermediate reasoning steps for prompting demonstrations called chain-of-thought prompting.
Paper: https://t.co/3qobgoj8Fi
Code: https://t.co/QS8glPMQ5c
Adoptée par le @Europarl_FR, la Directive #NIS2 (Network and Information Systems Directive) vient d’être publiée au Journal Officiel. Les États membres disposent de 21 mois pour transposer la directive au sein de leur droit national. Explications. https://t.co/bVVEmMaPf0
detecting EDR services remotely without admin privs.
indicators:
- installed services: [MS-LSAT] LsarLookupNames()
- running processes: named pipes (there are some characteristic to EDRs)
needs some more testing and cleanup before release, but looks like promising.
![an0n_r0's tweet photo. detecting EDR services remotely without admin privs.
indicators:
- installed services: [MS-LSAT] LsarLookupNames()
- running processes: named pipes (there are some characteristic to EDRs)
needs some more testing and cleanup before release, but looks like promising. https://t.co/2U7dFUDzFV](https://pbs.twimg.com/media/FnhXbcSX0AEwp_o.jpg)
Hacked Cellebrite and MSAB Software Released https://t.co/SSfRqvJ8rc
We recently found a vulnerability affecting Hyundai and Genesis vehicles where we could remotely control the locks, engine, horn, headlights, and trunk of vehicles made after 2012.
To explain how it worked and how we found it, we have @_specters_ as our mock car thief:
OMG WTF
This is interesting research. There is an internet hosted app service that mobile apps talk to that allow the mobile app to do the things the mobile app is allowed to do, like remote start the car. This research points out authentication/authorization issues with this service
We'll present how to emulate basebands next week at @CanSecWest
Together with @Digital_Cold
@nSinusR (if the international travel gods allow it)
https://t.co/7U3ah8YKK2
Happy to announce the release of swSIM and swICC by Tomasz Lisowski, two open source repositories to enable SIM card emulation: https://t.co/JI0O1CjfU6, https://t.co/qxfzA8JXjG. Among others, we attached the emulator to a real phone via SIMTrace2 and interact with test networks!
Reverse engineering Glasgow’s subway tickets by Ryan Murphy https://t.co/OCOh2ovAgV
Bypass read-out protection (RDP) of STMicroelectronics STM32F1 series.
Nice write up if you're interested in hacking microcontrollers.
(credits Marc Schink and Johannes Obermaier)
https://t.co/2tlg8vHELR
#stm #hacking #microcontroller #infosec #cybersecurity #iot #embedded
Memory Readout protection bypass on Nordic nRF52840 by @LimitedResults (2020)
Cool writeup series if you are interested in microcontrollers security
Part 1: https://t.co/Q5Ep6wMf3N
Part 2: https://t.co/1F8hYh7aqQ
#embedded #iot #infosec #cybersecurity #nordic
htmLawed #CVE-2022-35914 (used by #GLPI) RCE vulnerability found by @OrangeCyberFR pentester @M4yFly is now massively exploited in the wild. We advise you upgrade ASAP to 9.5.9 or 10.0.3 https://t.co/H6QQmT93br
The exFAT vulnerability used in the latest PS4 jailbreak was discovered by me, of course.
https://t.co/evGUC0hZSh
P1 Security is happy to open-source a new project that aggregates several public sources into consolidated datasets of MCC-MNC, MSISDN prefixes, ISPC and geographic information: https://t.co/jru3TBQHwn
Last Seen Users on Sotwe
Trends for you
Most Popular Users
Elon Musk 
@elonmusk
240.3M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.8M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.5M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.7M followers
KATY PERRY
@katyperry
87.2M followers
Taylor Swift
@taylorswift13
81.1M followers
Lady Gaga
@ladygaga
72.6M followers
Kim Kardashian
@kimkardashian
69.6M followers
Virat Kohli
@imvkohli
69.2M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.6M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
61.9M followers
CNN
@cnn
61.9M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60.3M followers