Romain || BZHugs's Avatar

Romain || BZHugs

@jouetromain.fr

πŸ“Rennes

91
Followers 97
Following 1
Posts 31.07.2023
Joined
Posts Following

Latest posts by Romain || BZHugs @jouetromain.fr

Preview
Exploring GrapheneOS secure allocator: Hardened Malloc Exploring GrapheneOS secure allocator: Hardened Malloc

A technical look at @grapheneos.org Hardened Malloc, a memory allocator designed to mitigate heap corruption vulnerabilities (UAF, overflows) and break common exploit primitives.
Deep dive for security researchers & exploit developers by @nicoski.bsky.social
www.synacktiv.com/en/publicati...

22.09.2025 13:41 πŸ‘ 11 πŸ” 6 πŸ’¬ 0 πŸ“Œ 0

0x2bad 🫠

10.06.2025 16:30 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Preview
Hack the channel: A Deep Dive into DVB Receiver Security Introduction During a garage cleaning, we found a DVB receiver and thought it would be a great target for vulnerability research.

From firmware dumps to wireless exploration β€” check out our latest dive into DVB receiver analysis and the hidden attack surface it exposes!
www.synacktiv.com/en/publicati...

09.04.2025 06:36 πŸ‘ 12 πŸ” 11 πŸ’¬ 0 πŸ“Œ 0
Preview
iOS 18.4 - dlsym considered harmful Observations We first observed the bug in a custom iOS application compiled for the arm64e architecture (thus supporting PAC instructions).

In iOS 18.4, Apple introduced a bug in dynamic symbol resolutions for some specific exports. @0xf4b.bsky.social took a long journey down a rabbit hole to understand its root cause.
www.synacktiv.com/en/publicati...

10.04.2025 13:22 πŸ‘ 15 πŸ” 9 πŸ’¬ 0 πŸ“Œ 0

S’agirait d’accepter que ne pas dΓ©pendre de l’étranger signifie produire localement

01.04.2025 13:08 πŸ‘ 4 πŸ” 2 πŸ’¬ 2 πŸ“Œ 0
Microsoft Configuration Manager (ConfigMgr) 2403 Unauthenticated SQL injections Microsoft Configuration Manager (ConfigMgr) 2403 Unauthenticated SQL injections

A few months ago, Microsoft released a critical patch for CVE-2024-43468, an unauthenticated SQL injection vulnerability in SCCM/ConfigMgr leading to remote code execution, discovered by @kalimer0x00.bsky.social.
www.synacktiv.com/advisories/m...

16.01.2025 13:25 πŸ‘ 11 πŸ” 8 πŸ’¬ 1 πŸ“Œ 0
Preview
Les formations Synacktiv - IT Security expertise - Penetration tests, Security audits, Code review, Training, Consulting, Vulnerability research

The 2025 training season is here! πŸš€
Join our best ninjas for 5-day sessions on pentesting, reverse-engineering, and forensics (in French). Check out all the dates and topics on our website: www.synacktiv.com/offres/forma...

11.12.2024 12:59 πŸ‘ 9 πŸ” 6 πŸ’¬ 0 πŸ“Œ 0
Preview
Automated Network Security with Rust: Detecting and Blocking Port Scanners

Did you ever wonder how IDS/IPS like Snort or Suricata were able to interact with the network stack of the Linux kernel? Do you also happen to like Rust?
Check our latest blogpost!
www.synacktiv.com/publications...

06.12.2024 15:04 πŸ‘ 11 πŸ” 2 πŸ’¬ 0 πŸ“Œ 0
Preview
Frinet: reverse-engineering made easier

Discover a new tool for reverse engineers: "Frinet", by myr and hexabeast

18.12.2023 23:38 πŸ‘ 1 πŸ” 1 πŸ’¬ 0 πŸ“Œ 0