Shielder

@[email protected]
80 Followers
1 Following
36 Posts
InfoSec boutique.
Owning things since 2014.
We love to go for the extra mile, where we usually find the best 🦟🐞πŸͺ²πŸͺ³πŸ›πŸœπŸ•· the others miss.
Websitehttps://www.shielder.com
Twitterhttps://twitter.com/ShielderSec
GitHubhttps://github.com/ShielderSec
Shielder12h ago

#KubeCon EU starts today and guess what? Our very own @suidpit will be on stage with a panel about the #Kubernetes Security Audit we performed during 2025 with the support of @ostifofficial!

πŸ—“οΈ March 25 - 16:45 CET
πŸ“ Hall 8 | Room F

Shielder5d ago

Attending @1ns0mn1h4ck?

Meet @not4nhacker Luk3ros and Sev1rus from our AppSec and Red teams!

They are eager to discuss about breaking complex authentication implementations and relaying all the things to DA!

ShielderJan 31

Love breaking things just to see how they work? πŸ›πŸ”¨

​A @Shielder delegation is on the ground at @fosdem, and we're looking for fellow hackers and security researchers.

​If you are passionate about securing the Open Source world, we definitely need to talk!

ShielderDec 31
Happy New Year, Hackers! πŸŽ†
We’re looking forward to a 2026 full of crazy exploits, instant patches, and - most importantly - YOU, the amazing human beings behind the screens.
ShielderApr 7, 2025

Last week @apple released MacOS 13.4 which contains a fix for a vulnerability @suidpit exploited to escape the Sandbox.

Update now and stay tuned for the technical details!

Ref: https://support.apple.com/en-us/122373

About the security content of macOS Sequoia 15.4 - Apple Support

This document describes the security content of macOS Sequoia 15.4.

Apple Support
ShielderMar 13, 2025
In Lausanne for @1ns0mn1h4ck? Don’t miss the chance to meet our very own
@not4nhacker! If you're into cursed OAuth hacking techniques or breaking mobile apps, find a comfy spot -- you might be there for a while!
ShielderOct 22, 2024
Attending @thesascon in the beautiful Bali 🏝️?
Make sure not to miss @suidpit's talk about his novel research on the macOS 🍎 sandbox and how to bypass it.
πŸ—“οΈ Wednesday, October 23 - 15:10
ShielderAug 29, 2024

Our very own @suidpit will present his novel #macOS*research at #TheSAS2024 - if you want to learn more about the macOS sandbox and how to escape it make sure to be in Bali 🏝️ from Oct 22 to Oct 25!

Learn more here: https://thesascon.com/

Security Analyst Summit 2025

Khao Lak, Thailand, 26-29 October

ShielderAug 28, 2024
During a recent engagement @mindlaess_ hacked his way through Vtiger CRM which led to discover a privilege escalation and a SQL injection.
Learn more in the dedicated advisories:
- CVE-2024-42994 #sqli https://www.shielder.com/advisories/vtiger-mailmanager-sqli/
- CVE-2024-42995 #privesc https://www.shielder.com/advisories/vtiger-migration-bac/
Shielder - Vtiger CRM (<= 8.1.0) SQL Injection in MailManager module

Vtiger CRM <= 8.1.0 has a SQL injection vulnerability in the MailManager module.

Shielder
ShielderOct 21, 2023
Hey hackers - attending @nohatcon?
Pop at the boot in the entrance for some swag and to chat about crazy πŸ¦‹πŸ¦—πŸžπŸπŸœπŸ¦ŸπŸͺ²!
#nohat2023