cryptaxThe slides for my rump session at BlackAlps are online here: https://github.com/cryptax/talks/blob/master/BlackAlps-2025/rump.pdf
It's about a MCP Client I (hum...) vibe-coded to work with r2mcp.
SylvainThank you #blackalps25 . Again the CTF was really fun. Here is my write up of the CMAC challenge which was an exploitation of the EntrySign vulnerability impacting AMD microcode authentication: https://sylvainpelissier.gitlab.io/posts/2025-11-21-black-alps-ctf-cmac/
Current talk at BlackAlps reminds me of this comic strip:
https://pico.masdescrocodiles.fr/static/uploads/BD/bd-citycroc.png
Linus Gasser#blackalps25 #LoveYourSiem Security information and event management systems as attack destination. If you can get in there, you can tamper with the rules, get admins out of bed during night, but most importantly gather data about the network. Which can then be used for attacking the rest of the network.
Nice talk by Melina Phillips.
I have a few stickers of @radareorg and @ph0wn. Feel free to ping me if you want one at Black Alps.
"And then you know if you need to terminate the user".
Wow, this is serious cyber security! They will not do it again, that's for sure...
Interesting keynote on a real case where a Swiss company was ransomed, how the crisis was managed, internal communication etc.
The questions are equally interesting, where in the end user data was stolen but users did not get anything in compensation. This is usually the case, it seems unfair but that's the way it is so far.
#blackalps25
The questions are equally interesting, where in the end user data was stolen but users did not get anything in compensation. This is usually the case, it seems unfair but that's the way it is so far.
#blackalps25
BlackAlps stats: 150+ submissions, 18 selected.
Pico le CrocoCette semaine, je suis à BlackAlps.
Euh non, White Alps.
Enfin, je ne sais plus.
