Opening a new chapter 📖

Back in 2005, I started taking apart computers just to see how they worked. I wasn’t following a roadmap — I was driven by pure curiosity. Then I got my hands on an old Amstrad CPC 6128, a beautiful machine that introduced me to BASIC and marked the beginning of a long journey into programming. Since then, I’ve explored 20+ languages, countless network protocols, and one big obsession that always stuck with me: understanding how systems work under the hood.

In 2019, while finishing my engineering degree, I dove headfirst into cybersecurity research. At first it was just a side passion — spending nights and weekends reverse-engineering, coding, breaking, and fixing things. I started a blog, shared my findings, and slowly, this hobby began to grow into something bigger. I gave many talks in France and Europe, with BlackHat Europe 2022, where I had the honor of presenting my work on Windows Remote Procedure Calls. Since then, I’ve never stopped working on Windows internals, Active Directory, and developing open-source tools to share what I learn along the way.

🚨 Now it’s time for the next chapter.

After two years working as a consultant at Bsecure I’ve learned and grown, I’m beyond excited (and proud!) to announce that I’m joining @SpecterOps as a Senior Security Researcher.

This isn’t just a new job — it’s a perfect reflection of who I am and where I want to go. I will get to focus full-time on deep technical research, work alongside people I’ve followed and admired for years, and continue contribute to the infosec community as a whole.

Thank you to everyone who’s supported me on this journey so far — it’s just getting started. 💥

🚀 New Tool Release: DescribeNTSecurityDescriptor 🚀

If you've ever had to analyze Windows NT Security Descriptors, you know how complex it can be. To make this easier, I've developed DescribeNTSecurityDescriptor, a cross-platform tool that helps decode, parse, and visualize security descriptors in a structured way.

🔍 What does it do?

1️⃣ Parses DACLs, SACLs, ACEs, and more

2️⃣ Converts raw security descriptors into a readable format

3️⃣ Helps security researchers and admins better understand permissions and access control of a specific object

This tool is useful for pentesters, DFIR analysts, and sysadmins working on Windows security. Feel free to check it out, contribute, or give feedback!

💡 If your company finds my tools useful, consider sponsoring my work on GitHub to support open-source cybersecurity research: https://github.com/sponsors/p0dalirius

➡️ Check it out on GitHub: https://github.com/p0dalirius/DescribeNTSecurityDescriptor

---
🔧 Stay ahead in offensive security, follow me for tools and tips:
👉 GitHub: https://github.com/p0dalirius
👉 YouTube: https://www.youtube.com/@Podalirius_

If you were annoyed by the recent multi-lines output bug in #ffuf in your #pentests and #bugbounty engagements, I've just fixed it: https://github.com/ffuf/ffuf/pull/656

It's not yet merged, but in the meantime you can apply the patch locally and recompile ffuf if needed! 🤗

Making #ChatGPT display cats using reflected Markdown injections!

https://www.youtube.com/watch?v=GL0KaqwoBV8

Next week I will present a #talk at #BlackHat Europe 2022 on how to automate the search of RPC functions allowing to coerce authentications on #Windows.

Alongside this talk, I'm publishing a brand new version of #Coercer!

➡️Check it out here: https://github.com/p0dalirius/Coercer