Sebastien Tricaud

@[email protected]
243 Followers
550 Following
92 Posts
LocationSan Francisco
Githubhttps://github.com/stricaud
Sebastien TricaudSep 15, 2025
Romain THOMASSep 15, 2025
I'm happy to share that LIEF 0.17.0 is out: https://lief.re/blog/2025-09-14-lief-0-17-0/
Sebastien TricaudAug 18, 2025
Détection Engineering dilemmas with Scattered Spider: https://detecteam.ai/blog/scattered-spider-detection-engineering-dilemma/
Scattered Spider: Detection Engineering Dilemma - Detecteam

Scattered Spider is a hot topic. As a native English speaking group, it quickly grew as a threat to various organizations. Being a versatile threat actor, from data leak to ransomware deployment. It is described by various references, such as (but not limited to): https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-320ahttps://reliaquest.com/blog/scattered-spider-attack-analysis-account-compromisehttps://www.attackiq.com/2025/05/29/emulating-scattered-spiderhttps://unit42.paloaltonetworks.com/muddled-libra-evolution-to-cloudhttps://cloud.google.com/blog/topics/threat-intelligence/unc3944-targets-saas-applicationshttps://www.tidalcyber.com/blog/scattered-spider-evolving-resilient-group-proves-need-for-constant-defender-vigilance Known Scattered Spider aliases are: 0ktapus, oktapus, UNC3944, Starfraud, muddled...

Detecteam
Show threadSebastien TricaudJun 15, 2025
@fabi1cazenave ce qui est surtout fascinant avec le logiciel libre c’est la durée dans le temps
Show threadSebastien TricaudJun 3, 2025
@bortzmeyer avec des arguments ?
Sebastien TricaudMar 6, 2025
@lookyloo cnn.com
Sebastien TricaudFeb 23, 2025
n0tooseFeb 22, 2025

I'd like to share something nice that I am currently working on: A Landlock integration for Forgejo.

Landlock (https://landlock.io) lets userspace processes tell the kernel "hey kernel, please only let me access the following filesystem resources" (and it also supports sockets, etc. now).

My integration only limits unfettered access to arbitrary files. It needs a lot more yak shaving (refactoring, configurations, using the PATH variable for Git binaries) and time.

#landlock #forgejo

Landlock: Unprivileged Sandboxing — Landlock documentation

Landlock: the Linux sandboxing mechanism

Show threadSebastien TricaudJan 17, 2025
@ploum I understand who you are pointing finger to, however this is far from what I witnessed from inside multiple Silicon Valley companies I have been working with. The fact that other places want to call themselves Valley is stupid and not paying attention to their own local people skills and assets.
Show threadSebastien TricaudJan 17, 2025
@ploum @Gargron I don’t like this “Silicon Valley” generalization. How many foreigners from the country HQ run successful businesses in Europe vs Silicon Valley?
Silicon Valley is not perfect but still, seeing it with those lens polarize more than what the reality is.
Sebastien TricaudDec 31, 2024
Alexandre BorgesDec 31, 2024

All videos from The 38th Chaos Communication Congress (38C3) 2024:

https://media.ccc.de/b/congress/2024

#cybersecurity #informationsecurity #hacking #exploitation #iOS #android #apple #exploitation #reverseengineering #vulnerability

38C3: Illegal Instructions - media.ccc.de

Video Streaming Portal des Chaos Computer Clubs

Show threadSebastien TricaudDec 12, 2024
@cnrs Entièrement d’accord ! 😂