Creating a "Two-Face" #Rust binary on #Linux https://www.synacktiv.com/en/publications/creating-a-two-face-rust-binary-on-linux

#Synacktiv

#Security Alert: Massive #Laravel APP_KEY leak exposing 600+ apps to remote code execution 🚨 #GitGuardian & #Synacktiv research reveals 260,000 exposed keys on #GitHub with potential RCE via deserialization attacks #cybersecurity #php #opensource

https://blog.gitguardian.com/exploiting-public-app_key-leaks/

Forensic analysis of bitwarden self-hosted server

https://www.synacktiv.com/en/publications/forensic-analysis-of-bitwarden-self-hosted-server

#bitwarden #foss #selfhosting #security #synacktiv #csirt

Today, our #WebPKI session 😍

If you weren't sleeping during the last decade, you know that @letsencrypt and #CertificateTransparency (CT) have revolutionized web security ⚡️

#pts24 will welcome no less than:
- Aaron Gabble, #techlead at @letsencrypt
- Philippe Boneff, #techlead of #Google CT team
- and an offensive research by Kévin Schouteeten & Paul Barbé from #Synacktiv on certs issuance in managed K8s env.

IMHO, you shouldn't miss this session!
👉 REGISTER https://pretix.eu/passthesalt/2024/

2 public holidays in a row here in France 😎

👉 What about taking your #free seat at @passthesaltcon ?

⚡️ Attend 21 talks and 9 workshops given by experts from @letsencrypt #Google @quarkslab #Synacktiv
etc

⚠️ Not sure there's enough for everyone!

#Security #Freesoftware

SPONSOR
Next, we continue our tour by warmly welcoming #Synacktiv as a #pts23 Silver sponsor! 💙

We are **really** grateful to the company for supporting us since 2019 🙏

#Synacktiv provides you Security services (audits, pentests ...), security products, trainings and CSIRT services.

On the FLOSS side, @Synacktiv ninjas often audit Free Software projects as CVE-2023-22809 found on Sudo has recently proved it 👍

Ref : https://www.synacktiv.com/sites/default/files/2023-01/sudo-CVE-2023-22809.pdf