@SecuInsider profile picture
SecurityInsider @SecuInsider
Joined March 2015
  • Tweets 743
  • Following 190
  • Followers 2,451
101 Photos and videos
SecurityInsider retweeted
Jean Marsault@iansus
6 Sep 2022
Thank you @_barbhack_ for this universal LFI2RCE trick I learnt during the CTF! Some explanations and PoC here (latest Debian & PHP7) riskinsight-wavestone.com/en… #barbhack

Barb'hack 2022: Leveraging PHP Local File Inclusion to achieve universal RCE - RiskInsight

For the third consecutive time, the French city of Toulon hosted the French southernmost hacking event known as Barb’hack. We – two of Wavestone security auditors – have had the opportunity to attend...

riskinsight-wavestone.com
3
24
57
🔗Get the code, contribute, and learn how to detect these techniques on GitHub github.com/wavestone-cdt/Edr… A tool developed by Thomas DIOT & Maxime Meignan

GitHub - wavestone-cdt/EDRSandblast

Contribute to wavestone-cdt/EDRSandblast development by creating an account on GitHub.

github.com
1
3
6
Post 3/3 on the topic!
📚 EDR monitoring techniques and evasion methods were recently described in the French magazine @MISCRedac (issues n°116 & n°118, the latter being still available in kiosks😉) 🔍And are also described in English in the project's README
1
1
Post 2/3 on the topic!
🚀Release of EDRSandBlast #DefenseEvasion #EDR 🎯Toolbox aiming to detect and evade monitoring techniques used by EDR products ➡️User-mode (API hooking) evasion ➡️Kernel-mode (callbacks and ETW ThreatIntel events) evasion ➡️Successively tested on market-leading EDR products
1
1
Post 1/3 on the topic !
SecurityInsider retweeted
Risk_Insight@Risk_Insight
12 Oct 2021
[NEW]#BenchCERTW 2021🔎 📈Retrouvez les #Chiffresclés de la menace #cyber 2021 dans le #benchmark du #CERT-Wavestone! #Ransomwares, menace n°1 ! Combinaison du blocage du SI et vol de données dans 30% des cas, systèmes de sauvegardes détruits dans 21%..👇🏻 wavestone.com/fr/insight/cyb…
1
7
14
SecurityInsider retweeted
Risk_Insight@Risk_Insight
12 Oct 2021
Replying to @gbillois @SecuInsider
H-1 #BenchCERTW édition 2021 📈
1
SecurityInsider retweeted
Gerome Billois@gbillois
12 Oct 2021
Aujourd'hui, nous publions le bilan d'une année de réponse à incident du CERT-Wavestone ! Que retenir de plus de 60 affaires majeures traitées dans des grandes organisations ? Suivez le hastag #BenchCERTW pour en savoir plus ! @Risk_Insight @SecuInsider
1
6
21
SecurityInsider retweeted
Jean Marsault@iansus
21 Jun 2021
🔔Jeunes étudiants, jeunes diplômés, cet event est pour vous!🔔 On va parler groupes d'attaquants, rôle des équipes cyber, et retour d'expérience sur une crise majeure gérée en mode COVID (#7semainesdepuismoncanap) ! 💻Hop hop hop, on s'incrit par ici : forms.office.com/pages/respo…
1
5
12
SecurityInsider retweeted
Jean Marsault@iansus
14 Jun 2021
▶ Microsoft #ADCS - Abusing #PKI in Active Directory environment ◀ I've been bragging about it for months, this is the result of many weeks of work on lesser known compromise paths for #pentest by using enterprise PKI. Feedback is highly appreciated! riskinsight-wavestone.com/en…

Microsoft ADCS – Abusing PKI in Active Directory Environment - RiskInsight

Active Directory Certificate Services (ADCS) have never really been under security scrutiny until a few years ago (by C. Falta and later Q&D Security). We will therefore focus today on how similar...

riskinsight-wavestone.com
9
188
431
SecurityInsider retweeted
Jean Marsault@iansus
16 Apr 2021
Le #CERT-Wavestone recrute des profils séniors (3xp ) temps plein * 60 incidents (12 crises majeures) en 2020, 30% sur début 2021! * #DFIR, mais pas que : defense, rebuild, pilotage * Passerelles possibles vers l'audit sécu / conseil cyber jobs.smartrecruiters.com/ni/… infos en MP
The bright light of the CERT-Wavestone shining in the night, as a glimmer of hope and to stand against all evil forces of threat actors out there

ALT The bright light of the CERT-Wavestone shining in the night, as a glimmer of hope and to stand against all evil forces of threat actors out there

1
33
46
SecurityInsider retweeted
Jean Marsault@iansus
17 Mar 2021
Well, now you can find standalone binaries to do the same here👉github.com/Iansus/SilentLsas…👈 Also comes with Visual Studio solution for custom build! #Lsass #Dump #CobaltStrike #BOF #SilentProcessExit

GitHub - Iansus/SilentLsassDump: VisualStudio port of https://github.com/guervild/BOFs/tree/dev/S...

VisualStudio port of https://github.com/guervild/BOFs/tree/dev/SilentLsassDump - Iansus/SilentLsassDump

github.com
Mr B0b@_MrB0b
16 Mar 2021
SilentLsassDump - A new #CobaltStrike Beacon Object Files (BOF) to dump the LSASS process via the Silent Process Exit mechanism using direct syscall generated with @Outflanknl's InlineWhispers 👉 github.com/guervild/BOFs Sources : deepinstinct.com/2021/02/16/…
4
13
SecurityInsider retweeted
Risk_Insight@Risk_Insight
7 Jan 2021
Comment peut être braquée une banque en 2021 ? Découvrez en #LEGO comment le hack 🔐 d'une cafetière entraîne le vol de millions de dollars… 💸 👉 youtube.com/watch?v=j36f-FHm…
1
12
25
SecurityInsider retweeted
Emmanuel Cosperec@ECosperec
4 Dec 2020
Le Cybersecurity Night Out revient ! Sur le thème de la gestion de crises cyber, et pour la 1ère fois en webinar, le mercredi 16 décembre à 18h. Etudiants, jeunes diplômés, venez échanger avec les experts du CERT-Wavestone. >> Inscriptions : lnkd.in/dwuEaB8
7
17
SecurityInsider retweeted
Sigfox@sigfox
5 Nov 2020
"Risk analysis and IoT: a marriage of love or reason?" Read this blog post by @gsimenel and @bertrandcarlier from @wavestone_ 🆕 #IoT #Security #0Gnetwork bit.ly/3etLYm4
9
13
SecurityInsider retweeted
Gerome Billois@gbillois
14 Oct 2020
Cyberattaques: bilan 2019/2020 de notre CERT-W / 💰 Des attaquants tjrs opportunistes (58%) mais de en déterminés / ⏱ 94 jours: délai moyen de détection / Intrusions:🥇email,🥈web et🥉accès distant / Arrivée en 🇫🇷 des ransomware avec vols de données wavestone.com/en/insight/cyb…
22
34
SecurityInsider retweeted
Gerome Billois@gbillois
30 Sep 2020
⏰ Rdv mardi 6/10 à 14h pour la remise des prix #Innovation #Startups #BIA de @SocieteGenerale & @wavestone_ ! 💡 Découvrez les gagnants #Data #IA et #cybersécurité avec en guest Guillaume POUPARD @anssi_fr et Jamal ATIF @Paris_Dauphine Inscrivez-vous👇🏻 app.livestorm.co/wavestone-1…
1:49
14
18
#Focus Comment tirer parti d'une opération Red Team, par @remiescourrou linkedin.com/pulse/comment-t… ➡️ Mettre en oeuvre une attaque réaliste sans en avoir les impacts négatifs, et en profiter pour améliorer des capacités de détection !

1
4
7
Load more