@simsor profile picture
Simon G @simsor

This account is not used anymore. Read me @ sixfoisneuf.fr, or contact me @ sixfoisneuf.fr/about

Joined February 2010
  • Tweets 2,141
  • Following 0
  • Followers 186
122 Photos and videos
Pinned Tweet
Simon G@simsor
12 Apr 2019
Very proud to release the first public version of RegRippy! A Python #forensics tool to extract useful data from Windows registry hives. #DFIR 📑 Get the code: github.com/airbus-cert/regri… 🐍 Install the package: pypi.org/project/regrippy Contributions are more than welcome 👩‍💻👨‍💻

GitHub - airbus-cert/regrippy: A modern Python-3-based alternative to RegRipper

A modern Python-3-based alternative to RegRipper. Contribute to airbus-cert/regrippy development by creating an account on GitHub.

github.com
4
205
350
Simon G retweeted
Nicolas Bch · Datalgo@nicolasbchb
23 Aug 2022
On a tous nos petits outils dont on ne pourrait plus se passer ! ✨ Je vous partage les miens aujourd'hui : 5 extensions VS Code que j'utilise au quotidien quand je dev en Python 🐍 Thread 👇🧵
2
16
62
Simon G retweeted
Nicolas Bch · Datalgo@nicolasbchb
11 Jul 2022
📅 Cartographie du Twitch FR - Juin 2022 ☀️ 1 an après ma première cartographie du Twitch FR, et 6 mois depuis la dernière publiée ici, je vous propose une mise à jour des données ! Comment ont évolué les communautés ? (Si vous avez regardé Twitch, vous êtes sur l'image⬇️)
85
314
3,031
Simon G retweeted
Sylvain Peyrefitte@citronneur
21 Mar 2022
Want to simulate any #ETW logs using powershell, even the security one? Do you want to import any evtx files into the current eventlog session? github.com/airbus-cert/ntTra… will help you to test your detection rules! #DFIR #Powershell
2
93
227
Simon G@simsor
16 Feb 2022
What's this 👀? A new RegRippy release? 😱 RegRippy 2.0 is now out on PyPI, bringing goodies such as: - Automated backup hive analysis 🧐 - A more predictable output format 🔎 - Lots of new plugins ✨ 📑 Code: github.com/airbus-cert/regri…… 🐍 Package: pypi.org/project/regrippy

GitHub - airbus-cert/regrippy: A modern Python-3-based alternative to RegRipper

A modern Python-3-based alternative to RegRipper. Contribute to airbus-cert/regrippy development by creating an account on GitHub.

github.com
11
10
Simon G retweeted
Sylvain Peyrefitte@citronneur
20 Dec 2021
Do you want to #reverse your christmas gift? New release of Yagi (Yet Another #Ghidra Integration for #Ida) now with support of Z80 Arch ! 🕹️ github.com/airbus-cert/Yagi

GitHub - airbus-cert/Yagi: Yet Another Ghidra Integration for IDA

Yet Another Ghidra Integration for IDA. Contribute to airbus-cert/Yagi development by creating an account on GitHub.

github.com
4
15
Simon G retweeted
Sylvain Peyrefitte@citronneur
9 Dec 2021
Merry Christmas Blue Teamers! 🎄🎅🎁🔔 Invoke-Bof allows you to load and execute any #CobaltStrike Beacon Object File (BOF) to test your detection capabilities! #DFIR github.com/airbus-cert/Invok… Airbus CERT is looking for new team member, if you're interested get in touch!

GitHub - airbus-cert/Invoke-Bof: Load any Beacon Object File using Powershell!

Load any Beacon Object File using Powershell! Contribute to airbus-cert/Invoke-Bof development by creating an account on GitHub.

github.com
1
80
196
Simon G@simsor
30 Nov 2021
Update on this: #EVTX files share the same property, so I added information about how we can recover them as well 😊 #LockBit #DFIR
Simon G@simsor
18 Nov 2021
New #DFIR blog post on a weird quirk of the #LockBit 2.0 ransomware, and how we can exploit it to restore encrypted registry hives: skyblue.team/posts/hive-reco…
Simon G@simsor
18 Nov 2021
New #DFIR blog post on a weird quirk of the #LockBit 2.0 ransomware, and how we can exploit it to restore encrypted registry hives: skyblue.team/posts/hive-reco…
3
4
Simon G@simsor
15 Oct 2021
Nice, a writeup on how @citronneur integrated the Ghidra decompiler in IDA 🤓
Sylvain Peyrefitte@citronneur
15 Oct 2021
Have you ever seen this popup? skyblue.team/posts/yagi-yet-… #IDA #Ghidra #reverse
2
5
Simon G retweeted
The Matrix Resurrections
@TheMatrixMovie
9 Sep 2021
The Matrix Resurrections in theaters and on HBO Max December 22 #TheMatrixMovie
2:52
2,135
29,994
91,002
Simon G retweeted
Sylvain Peyrefitte@citronneur
8 Sep 2021
Reverse engineers, IDA Pro aficionados, please welcome Yagi! (Yet Another Ghidra Integration) A seamless integration of the #Ghidra decompiler into #IDA! It even works with IDA Freeware 😉 By the way, we're hiring! ✈️ #Windows #Reverse github.com/airbus-cert/Yagi

GitHub - airbus-cert/Yagi: Yet Another Ghidra Integration for IDA

Yet Another Ghidra Integration for IDA. Contribute to airbus-cert/Yagi development by creating an account on GitHub.

github.com
3
78
203
Simon G retweeted
Olivier🐿️@gloupin
3 Aug 2021
Wait to reach the right honk crowd this might be better.
2
3
20
Simon G retweeted
Mobius Digital Games@Mobius_Games
29 Jul 2021
youtube.com/watch?v=pt9M6Wum… Outer Wilds is back with one final campfire tale that will have you shaking in your suit. Prepare your gear and step carefully, young spacefarer, as you’ll delve into hidden depths… Echoes of the Eye will be available on all platforms on Sept 28th!

OUTER WILDS: ECHOES OF THE EYE | Reveal Trailer

There's more to explore here. Coming to PS4, Xbox One, Steam, and E...

youtube.com
101
753
2,656
Simon G retweeted
Nicolas Bch · Datalgo@nicolasbchb
3 Jun 2021
Je suis Data Analyst chez @FirstLink_bdx, mon métier c'est de cartographier internet pour comprendre ce qu'il s'y passe. Du coup, comme je passe pas mal de temps sur Twitch, j'ai réalisé une cartographie de la plateforme pour voir ce que ça donne. Et le résultat est fou !⬇️
104
793
4,469
Simon G retweeted
THConvention@ToulouseHacking
27 May 2021
Comment protéger l'Active Directory, un service extrêmement critique en entreprise, contre des attaques malveillantes ? Sylvain Peyrefitte (@citronneur), du CERT Airbus, vous dira tout !
9
9
Simon G retweeted
Thibault Tricard@ThibaultTricard
30 Apr 2021
Replying to @twominutepapers
@twominutepapers just did a video about about our method 😱 ! go check it out it's awesome !
This tweet is unavailable
2
4
34
Simon G retweeted
Nicolas Bch · Datalgo@nicolasbchb
30 Apr 2021
🇪🇺 #EuropeanSuperLeague ⚽ En utilisant mes outils de #DataScience, j'ai essayé de mesurer quel rôle a joué #Twitter dans cet échec : Sans ce réseau, le projet de ligue fermée mené par les 12 clubs les plus riches d'Europe aurait-il vécu le même sort ? [THREAD] ⤵️
5
48
97
Simon G retweeted
Olivier🐿️@gloupin
28 Apr 2021
Allez, petit thread sur pourquoi affaiblir le chiffrement est une idée de gens qui n'ont rien compris à la cybersécurité... Qu'est-ce que ça veut dire "affaiblir" le chiffrement, concrêtement ?
Numerama
@Numerama
28 Apr 2021
Affaiblir le chiffrement n’est jamais une bonne idée, contrairement à ce qu’affirme Gérald Darmanin numerama.com/tech/707469-aff…
1
5
6
Simon G retweeted
Airbus Security Lab@AirbusSecLab
26 Apr 2021
Everybody loves QEMU, but it sometimes feels like black magic. Check out this series of blog posts by Stéphane for a practical deep dive in QEMU internals: adding a device, interrupts, timers, PCI, etc. github.com/airbus-seclab/qem…

GitHub - airbus-seclab/qemu_blog: A series of posts about QEMU internals:

A series of posts about QEMU internals: . Contribute to airbus-seclab/qemu_blog development by creating an account on GitHub.

github.com
4
217
561
Load more