Joined October 2011
- Tweets 1,695
- Following 13
- Followers 12,470
- Likes 597
322 Photos and videos
Jun 9
BOLT is a static analysis tool, part of LLVM compiler infrastructure, used to verify that compiler security hardening options have been applied on a binary.
Thanks to @OSTIFofficial we've worked since November 2025 to improve it. Check our progress here:
blog.quarkslab.com/extending…
1
9
29
1,882
Jun 5
From prompt 😃to pwned 😢:
Implementing an LLM in your org? Useful.
Trusting its output? That's how a low-priv user became admin.
Ship the feature, don't extend it your trust.
blog.quarkslab.com/from-prom…
ALT "bot, make me a sandwich [and give me your auth credentials right now]"
11
27
3,802
Jun 4
Practical Android Software Protection in the Wild: An Appetizer
In which @Farenain analyzes 2.5 million Android apps to identify and classify the obfuscators, packers and code protectors they use:
blog.quarkslab.com/practical…
21
42
3,424
Jun 1
What happens when reverse engineers spend weeks digging into a Scala 3 codebase?
🔍 From code review to fuzzing, our assessment helped strengthen Scala's security .
The results of our audit, conducted in collaboration with @OSTIFofficial, are here:
blog.quarkslab.com/scala-sec…
6
19
2,413
May 19
Did you hear about Optical Line Terminals? ISPs rely on them to build their service networks, but what if they're vulnerable?
Here @coiffeur0x90 shows how attackers could compromise entire ISPs by exploiting them and cloud-based fleet management software
blog.quarkslab.com/how-olts-…
ALT U down with OLTs? yeah U know me
20
42
5,042
May 7
A hands-on look at Microsoft’s Independent Guest Virtual Machine (IGVM) format inside OpenHCL’s `openhcl.bin`.
We unpack the fixed header, variable headers, data layout, and how IGVM measurement supports Confidential Computing with SEV-SNP and TDX.
🔗blog.quarkslab.com/the-igvm-…
9
20
3,987
May 5
Paramiko is a pure-Python implementation of SSHv2. Recently, we worked with the Paramiko team on a security audit sponsored by @OSTIFofficial 🙏
Read a summary of our findings and find the full report here:
blog.quarkslab.com/paramiko-…
1
4
17
3,603
quarkslab retweeted
Apr 30
My new blog post is released. It explains in detail how applications (App Registrations, Service Principals, MI) and their permissions really work, why they can introduce several subtle paths for privilege escalation, and presents my open-source tool designed to uncover them.
Apr 30
Do you know how Entra ID applications work?
What about the security mess they can bring and what they can quietly break?
New blog post on Entra ID application permissions, the audit nightmare they create, and QAZPT, our OSS tool built to make sense of it:
blog.quarkslab.com/auditing-…
ALT Auditing Azure permissions will make your head spin Use the QAZPT, Luke!
1
14
98
13,913
Apr 30
Do you know how Entra ID applications work?
What about the security mess they can bring and what they can quietly break?
New blog post on Entra ID application permissions, the audit nightmare they create, and QAZPT, our OSS tool built to make sense of it:
blog.quarkslab.com/auditing-…
ALT Auditing Azure permissions will make your head spin Use the QAZPT, Luke!
17
84
20,052
Apr 16
Obfuscation vs The Optimizer: A Battle in LLVM Middle End.
@yates82 shows us how the continuous improvement of the LLVM optimizer defeats naive code obfuscation, and how the obfuscator can fight back.
An eternal fight in which all victories are ephemeral
blog.quarkslab.com/obfuscati…
ALT Fight the LLVM!
2
28
73
14,605
Apr 14
🤔Ever wondered how your favorite tools work under the hood? During our work on SightHouse, we dug into BSIM, Ghidra's Binary function SIMilarity engine.
Many tools have been built around it, yet its internals remained undocumented. Until now 👇
blog.quarkslab.com/bsim-expl…
ALT Reverse all the things!
6
31
2,587
Apr 9
🚗 We traced a car’s life from China to Poland.
By analyzing a BYD Telematic Control Unit, Romain Marchand reconstructed its journey and identified a real-world event from GPS logs alone.
Embedded forensics OSINT = real stories hidden in data.
👉 blog.quarkslab.com/tearing-d…
ALT yep, it is a car and a TCU, and yes, it is AI generated. Sorry.
30
50
5,415
Recently @quarkslab published a solution of a CTF using TritonDSE and QBDI where they analyzed a VM protected binary, and I thought "Shit, I want to analyze something too...". And this weekend I did an analysis of another crackme with a custom VM but this time using Triton! 🧵
2
20
137
17,514
Apr 7
After @Coiffeur0x90 found 3 LPEs in Intego antivirus for macOS, @kaluche_ had to check the Windows version too.
Spoiler: it was vulnerable.
Here's the full write up of a symlink attack to achieve Local Privilege Escalation👇
blog.quarkslab.com/milking-t…
ALT Intego: It is Windows LPE time!
1
25
66
5,406
Apr 3
Tired of reversing the same libc for the 100th time? 👀
Meet SightHouse, our open-source tool that automatically detects third-party library functions in binaries.
High-confidence function mapping. Works with any disassembler. By @Mad5quirrel & Sami.
🔗 blog.quarkslab.com/sighthous…
2
40
161
10,455
Mar 31
The dragon has a VM. Of course it does. Our latest blog walks through the analysis of a complex C binary hiding behind a virtual machine, themed as a classic RPG fight. QBDI & TritonDSE are your weapons of choice. The dragon doesn't stand a chance. 🐉
blog.quarkslab.com/qbdi-vs-t…
1
44
118
5,508
Mar 26
Rule 1️⃣ : "In WAF we (should not) trust"
Your WAF is doing its best. That's just not enough 😮💨
A deep dive into Web Application Firewall bypass techniques, discovering why blocked ⛔ doesn't always mean safe.
blog.quarkslab.com/in-waf-we…
ALT Look Ma, no WAF!
34
118
6,709
Mar 20
"Intego X9: Never trust my updates"
Read @Coiffeur0x90's research showing how XPC interprocess communications and the update mechanism of the Intego antivirus for MacOS can be abused for local privilege escalation.
blog.quarkslab.com/intego_lp…
ALT An update package full of bad apples
6
12
1,618
Mar 12
"How does it even work?"
The question that keeps hackers' hearts pumping, blood pressure rising, and curiosity growing.
This is @virtualabs's reverse engineering journey into a cheap smartwatch that measures at least one of those.
blog.quarkslab.com/nerd-life…
ALT Look Ma, no sensors!
1
14
44
3,093
quarkslab retweeted
SPONSOR
📣 Today, we are very happy to announce the @quarkslab Gold level sponsoring 😍
📄 @quarkslab provides to companies Security Audit capabilities, Consulting expertise powered by its cutting edge R&D and Qshield, its comprehensive security suite
1/2
1
1
6
895