Patrice <GomoR> Auffret's Avatar

Patrice <GomoR> Auffret

@patriceauffret

ONYPHE founder, CEO and CTO - FreeBSD & Perl sculptor rather than GNU/Linux & Python - My views are those of my employer

158
Followers 131
Following 18
Posts 24.09.2023
Joined
Posts Following

Latest posts by Patrice <GomoR> Auffret @patriceauffret

Post image

πŸ“£ ANNOUNCEMENT: we have reached the 2,100+ scanned ports milestone, at Internet scale with a weekly refresh rate.

Next step: 5,000+ ports, weekly refresh. Then 10,000 by end of next year.

We will be the competitor number 1 to @censys.bsky.social in 2026.

#ASM #CTI #ASD

29.12.2025 15:41 πŸ‘ 2 πŸ” 2 πŸ’¬ 0 πŸ“Œ 1
Post image

πŸ“£ We have added a new #vulnerability detection to our #ASM #AttackSurfaceManagement solution for #MongoDB product:

CVE-2025-14847: remote unauthenticated memory reading #MongoBleed

search.onyphe.io/search?q=cat...

28.12.2025 17:45 πŸ‘ 3 πŸ” 1 πŸ’¬ 0 πŸ“Œ 1

Perl

11.11.2025 08:06 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Preview
GitHub - bee-san/RustScan: πŸ€– The Modern Port Scanner πŸ€– πŸ€– The Modern Port Scanner πŸ€–. Contribute to bee-san/RustScan development by creating an account on GitHub.

RustScan est un outil de scan de ports Γ©crit en Rust. Il mise tout sur la rapiditΓ© et se veut scanner l'ensemble des ports d'une machine en quelques secondes ⬇️

github.com/bee-san/Rust...

09.11.2025 07:16 πŸ‘ 14 πŸ” 4 πŸ’¬ 0 πŸ“Œ 0

Cc @onyphe.io

03.06.2025 06:02 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
A chart showing Internet scan data plots for three countries; Spain, Portugal and France. The three lines are stable, with minor variations from 09:00 to 12:30. At 12:30 the lines for Spain and Portugal drop almost vertically to roughly 50% of their original levels. The line for France continues as for the start of the day. The lines for Spain and Portugal have not returned to their original levels.

A chart showing Internet scan data plots for three countries; Spain, Portugal and France. The three lines are stable, with minor variations from 09:00 to 12:30. At 12:30 the lines for Spain and Portugal drop almost vertically to roughly 50% of their original levels. The line for France continues as for the start of the day. The lines for Spain and Portugal have not returned to their original levels.

The electrical power outage in Spain and Portugal as seen from the Internet (France included for reference)

28.04.2025 16:03 πŸ‘ 2 πŸ” 2 πŸ’¬ 0 πŸ“Œ 1

Patch management is a multi-decade failure.

10.04.2025 05:00 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Post image
23.03.2025 12:00 πŸ‘ 26 πŸ” 9 πŸ’¬ 0 πŸ“Œ 0
Preview
VPN Vulnerabilities Emerges As The Key Tool for Threat Actors to Attack Organizations

VPN Vulnerabilities Emerges As The Key Tool for Threat Actors to Attack Organizations

19.03.2025 11:44 πŸ‘ 6 πŸ” 4 πŸ’¬ 0 πŸ“Œ 0
Installation | ONYPHE Installation

The latest version of our cli tool has been released. Get v4.19.0 and find wrappers with sweet new APIs inside.

Available here ➑️
search.onyphe.io/docs/onyphe-...

or here 🐳 hub.docker.com/r/onyphe/ony...

or even here πŸ₯· metacpan.org/dist/Onyphe

18.03.2025 06:54 πŸ‘ 3 πŸ” 2 πŸ’¬ 0 πŸ“Œ 0

πŸ§™β€β™€οΈCc @fs0c131y.com @gazlacrymo.fr @hacker0x01.bsky.social @gandalfistari.bsky.social @jnocetti.bsky.social @korben.info @tariqkrim.bsky.social @reesmarc.bsky.social @jeromenotin.bsky.social @oliviertesquet.bsky.social @patriceauffret.bsky.social @untersin.gr Γ§a devrait t’intΓ©resser πŸͺ„

04.03.2025 11:39 πŸ‘ 2 πŸ” 1 πŸ’¬ 0 πŸ“Œ 0

Mais il a bien dormi.

03.03.2025 20:28 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

Oui enfin, c'est comme un moustique qui s'Γ©crase contre le pare-brise d'une voiture.

14.02.2025 11:23 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Preview
RedMike Hackers Exploited 1000+ Cisco Devices to Gain Admin AccessΒ 

RedMike Hackers Exploited 1000+ Cisco Devices to Gain Admin Access

14.02.2025 08:43 πŸ‘ 4 πŸ” 3 πŸ’¬ 0 πŸ“Œ 1
Post image

πŸ“£ We have added a new #vulnerability detection to our #ASM #AttackSurfaceManagement solution for #PaloAltoNetworks PA product:

CVE-2025-0108: authentication bypass on management interface

search.onyphe.io/search?q=cat...

Thanks to @assetnote.io for having shared the detection method.

14.02.2025 09:16 πŸ‘ 6 πŸ” 3 πŸ’¬ 0 πŸ“Œ 0
Preview
The XE Files - Trust No Router hack.lu 2024 On the 16th October 2023 Cisco Talos shared intelligence about a handful of compromised routers discovered while resolving customer support requests. As the full story unfolded, a handful of backdoore...

Yet by performing an awkward legal waltz around the subject, Talos have helpfully supported my hypothesis that compromised IOS XE devices are part of an ORB network serving multiple APTs.

archive.hack.lu/hack-lu-2024...

12.02.2025 09:21 πŸ‘ 2 πŸ” 2 πŸ’¬ 1 πŸ“Œ 0
Preview
OpenRA Classic strategy games rebuilt for the modern era

"Command & Conquer : Red Alert" en version Open source :
www.openra.net

26.01.2025 08:54 πŸ‘ 26 πŸ” 10 πŸ’¬ 1 πŸ“Œ 0

Roughly same numbers as @onyphe.bsky.social

20.01.2025 12:44 πŸ‘ 1 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
Preview
Information Stealer Masquerades as LDAPNightmare (CVE-2024-49113) PoC Exploit Our blog entry discusses a fake PoC exploit for LDAPNightmare (CVE-2024-49113) that is being used to distribute information-stealing malware.

Back in the dayz the fake exploit did "rm -rf /" www.trendmicro.com/en_us/resear... #CTI

20.01.2025 07:25 πŸ‘ 2 πŸ” 1 πŸ’¬ 0 πŸ“Œ 0

More than 50k *vulnerable* devices.

This one is pretty bad.

17.01.2025 17:55 πŸ‘ 1 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

Don't expose DCERPC protocol on the Internet.

02.01.2025 14:56 πŸ‘ 1 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0

Je plussoie.

12.12.2024 08:10 πŸ‘ 0 πŸ” 0 πŸ’¬ 0 πŸ“Œ 0
A Brief Introduction to OCI Containers on FreeBSD - Random Musings O for a muse of fire, that would ascend the brightest heaven of invention!

FreeBSD 14.2-RELEASE now includes OCI-compatible images, and the Podman toolkit is ready to use them, on both amd64 and arm64 systems - A brief Introduction by Dave Cottlehuber #FreeBSD #BSD

09.12.2024 08:10 πŸ‘ 5 πŸ” 3 πŸ’¬ 0 πŸ“Œ 0

rΓ©pondez Γ  vos emails

putain dire que j'ai connu un temps oΓΉ les gens rΓ©pondaient Γ  un FAX

09.12.2024 10:51 πŸ‘ 60 πŸ” 3 πŸ’¬ 12 πŸ“Œ 0
2. **Truncated SHA-256 Hash Collisions**: The request hashing mechanism truncates SHA-256 hashes to only 12 characters. This significantly reduces entropy, making it feasible for an attacker to generate collisions. By exploiting this, a previously built malicious image can be served in place of a legitimate one, allowing the attacker to "poison" the artifact cache and deliver compromised images to unsuspecting users.

2. **Truncated SHA-256 Hash Collisions**: The request hashing mechanism truncates SHA-256 hashes to only 12 characters. This significantly reduces entropy, making it feasible for an attacker to generate collisions. By exploiting this, a previously built malicious image can be served in place of a legitimate one, allowing the attacker to "poison" the artifact cache and deliver compromised images to unsuspecting users.

Stop. Truncating. Hashes.

www.phoronix.com/news/OpenWrt...

08.12.2024 16:40 πŸ‘ 23 πŸ” 6 πŸ’¬ 3 πŸ“Œ 1
Post image

πŸ“£ We have added a new #vulnerability detection to our #ASM #AttackSurfaceManagement solution for #Mitel MiCollab product:

CVE-2024-35286: unauthenticated SQL injection on login page
CVE-2024-41713: unauthenticated arbitrary file read

www.onyphe.io/search?q=cat...

06.12.2024 09:58 πŸ‘ 5 πŸ” 2 πŸ’¬ 0 πŸ“Œ 0

Certes. Mais un recruteur qui jette un CV parce qu'il fait plus d'une page ... Que peut-on en penser ?

29.11.2024 10:55 πŸ‘ 0 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0

#Cyberattaques : une Γ©tude dΓ©voile la porte d'#entrΓ©e prΓ©fΓ©rΓ©e des #ransomwares
https://www.01net.com/actualites/cyberattaques-etude-devoile-porte-entree-preferee-ransomwares.html

28.11.2024 14:55 πŸ‘ 0 πŸ” 1 πŸ’¬ 0 πŸ“Œ 0

Cette "règle" est débile. 3 ou 4 pages, ça ne me choque pas, surtout après 20 ans d'XP.

29.11.2024 10:24 πŸ‘ 1 πŸ” 0 πŸ’¬ 1 πŸ“Œ 0

Optimist: the cup is 1/2 full

Pessimist: the cup is 1/2 empty

Excel: the cup is January 2nd

29.08.2024 12:40 πŸ‘ 6323 πŸ” 1463 πŸ’¬ 68 πŸ“Œ 127