idle

11% des victimes de rançongiciel connues de l'ANSSI sont des collectivités territoriales. Avec MesServicesCyber, agissez pour votre cybersécurité !

💶 11% des victimes de #rançongiciel connues de l'ANSSI sont des collectivités territoriales (Panorama de la cybermenace 2025).

➡️ Face à cela, #MesServicesCyber accompagne les #CollTerr à monter en compétence sur les enjeux de #cybersécurité.

🔗 messervices.cyber.gouv.fr/collectivite...

illustration annonce

L'ANSSI lance un appel à manifestation d’intérêt pour le test de PANAME, un outil d’audit RGPD des modèles d’IA

👉 cyber.gouv.fr/actual...

un adminsys dans un hamac fait de fils

Adminsys dans son habitat naturel se reposant entre deux alertes.

We released version 1.13.1 of #OWASP #WrongSecrets! Now with #springboot4 and challenges involving #telegram #AI, #MCP . You can test it at www.wrongsecrets.com . Like what you see? Please give our repo github.com/OWASP/wrongs... a 🌟 if you like it! #security #opensource

Hoy ! ⚔️

Prochain stream Mardi 10 à 20h ! 🪚
⚠️ c'est 1h plus tôt que d'hab ET en anglais 🌎️

Au programme ?
PoC de N-day Ft. FloraTheExplorer! 💌

www.twitch.tv/floratheexpl...
www.twitch.tv/thelaluka

My keynote at RE//Verse went great!

(it will be released online later if you missed it!)

casier-politique.fr Base de données des condamnations des élu•e•s

Casier-politique.fr est une base de données des condamnations des élu·e·s de la république, classés par parti politique, année et délit.

⚖️ 370 condamnations recensées, pour 220 élu·e·s 🗳️

Twitch Twitch is the world

Ne vous couchez par trop tard, car demain matin 8h on continue l'exploration du monde des #FPGA avec #LiteX. Au menu : compilation/installation du nécessaire, après un petit coup d’œil à quelques cartes PCIe...
www.twitch.tv/lefinnois_

New #BloodHoundBasics post on edge filtering from Carlo Alcantara!

DYK: You can filter edges in BloodHound to simulate remediating attack paths? Simply use the filter to remove an edge to reveal the next shortest path. In this example, we keep filtering until no path remains.

Do you think you could make a difference to new sceners and show them what the demoscene all about? We are looking for mentors! Contact the Revision hotline and ask for lambdacore!
2026.revision-party.net/contact/ #RevisionParty2026

Paged Out! made it to RE//verse! <3

Rubio: “Let me tell you, Iran is run by lunatics, religious fanatic lunatics.”

Ph0wn CTF

What's particularly cool about Ph0wn CTF?

1. It's onsite. If you haven't ever been to an onsite CTF, you absolutely must.
2. It's dedicated to connected devices, so you get to interact with tons of equipment!
3. The challenges are really awesome, yes, yes.

Register at ph0wn.org - March 13/14

🦖 M-1 avant le #FCSC 2026 !

🚩 Du 3 au 12/04 , affrontez les épreuves conçues par les experts de l'ANSSI et tentez d'intégrer la Team France lors de l'ECSC.

⭐ Maximisez vos chances avec la journée de rapidité le 11/04.

RDV sur🏛️ #Hackropole pour s'échauffer :
🔗https://hackropole.fr

mitmproxy for fun and profit: Interception and Analysis of Application mitmproxy for fun and profit: Interception and Analysis of Application

🔎 Want to know what you can really do with #mitmproxy?

This deep dive shows how to intercept and modify application traffic on #Linux, #Android, and #iOS - from TLS MITM to gRPC/Protobuf tampering.

Read our latest article: www.synacktiv.com/en/publicati...

There’s just about ~10 days left to make a submission to one of my favorite programming contests:



The International Obfuscated C Code Contest!


Highly encourage you to take a peek and enter, it really brings out some of the best programmers (and compiler wizards).

Screenshot demonstrating some Crystal Palace shellcode generated by Mythic, running on a Windows machine and popping a message box.

Screenshot demonstrating the payload UUID from a Mythic payload, patched into a Crystal Palace linker variable.

Started working on a Mythic agent that uses Crystal Palace to generate its shellcode. So far I've just got it to emit some generic shellcode - it doesn't talk to Mythic yet.

I'm hoping to make a fully modular agent that you can patch your tradecraft into when you generate a payload :)

Stream Twitch du 01/03/2026 : On pose le décor pour découvrir les FPGA et LiteX ! YouTube video by LefStream

Le replay du stream de ce matin sur FPGA/LiteX, phase 1, est disponible sur Youtube avec tous les liens importants dans la description !
www.youtube.com/watch?v=F-rg...

Ce soir, Les Enfoirés sont diffusés sur TF1, on voit tout de suite l'impact sur le trafic du site :)

SCOMmand and Conquer - Attacking System Center Operations Manager (Part 1) - SpecterOps TL:DR; SCOM suffers from similar insecure default configurations as its SCCM counterpart, enabling attackers to escalate privileges, harvest credentials, and ultimately compromise the entire managemen...

Two part series on attacking System Center Operations Manager (SCOM): management group takeover via NTLM relay and RunAs credential recovery (2025)

Part 1: specterops.io/blog/2025/12...
Part 2: specterops.io/blog/2025/12...

Research by Matt Johnson and Garrett Foster

#infosec

J'ai lancé le site wikidati.fr "l'encyclopédie des affaires de Rachida Dati" hier. A peine 3 heures plus tard, mon hébergeur OVH recevais un mail du directeur de campagne de Rachida Dati qui demandait sa dé-publication immédiate.

vue de zensical

Zensical : un générateur de sites statiques qui permet de transformer rapidement une documentation Markdown en un site professionnel, personnalisable et multilingue. (Découvert via Mat V. )

👉 Le projet : github.com/zensical/...
👉 En savoir plus : https://zensical.org/

Slipstream - The Golden Disk (Revision 2026 Invitation) YouTube video by Revision Demoparty

At our beloved E-Werk, will *you* be able to feel the power within?
The invitation for Revision 2026 is out now!

www.youtube.com/watch?v=dYpy...

Joe Grand hacking in his lab while an armed security guard stands nearby.

Soon...

[RSS] Total Recall - Retracing Your Steps Back to NT AUTHORITY @MDSecLabs


www.mdsec.co.uk ->


Original->

GitHub - vixhal-baraiya/16bit-cpu: 16-bit CPU emulator from scratch in pure C 16-bit CPU emulator from scratch in pure C. Contribute to vixhal-baraiya/16bit-cpu development by creating an account on GitHub.

github.com/vixhal-barai... : 16-bit CPU emulator from scratch in pure C - seulement 8 fichiers en C

AirSnitch: Breaking Wi-Fi Client Isolation: Technique Index, Tool Usage & Defenses This morning I came across another interesting paper submitted at the NDSS Symposium 2026 like the BLERP paper already documented in this forum, but this time challenging the Wi-Fi client isolation th...

Think your guest Wi-Fi is isolated from your main network? Think again.
AirSnitch (NDSS'26) breaks client isolation on every router tested: from home APs to enterprise WPA2/3-Enterprise. Full MitM in seconds, sometimes leaking WPA2 traffic in plaintext: 🔗 community.penthertz.com/t/airsnitch-...

Google API keys didn't use to be considered "secret," so they're all over the web-- but now they are an open door to Gemini 🫠 Quick rundown video of Truffle Security's really nifty research, almost 3,000 websites exposed.. including Google themselves😅
🔗 youtu.be/XNMHUifKce8

Dans mon village d’enfance de 400 âmes, face au maire qui se présente pour un 6ème mandat, il y a une 2ème liste. Dans son programme il veut réaménager le long des cours d’eau. Problème : Il n’y a pas de cours d’eau dans le village.

Bienvenue dans l’ère des programmes politiques faits par IA

Amiga memories - Leander YouTube video by Martin Piper's mostly Commodore related memories

I look at #Amiga game "Leander", published in 1991 by Psygnosis. Interesting use of hardware sprites for parallax mountains, and player with pixel accurate collision to the game objects. youtu.be/gQYSRjGkhBg