We’re glad to announce we released Soxy!🚀 A Rust-powered suite of services for Citrix, VMware Horizon & Windows RDP. Red teams & pentesters can use it to pivot for deeper access. Get the tool and more details: 🔗

RT @AirbusCERT: scrings is a strings utility that will output only semantically valid strings based on tree-sitter grammar. scrings suppor…

Following the release of IDA 9.0, we're excited to announce a new BinCAT release 1.4, now fully compatible with the latest IDA version!

@OphirHarpaz There it is! We finally fixed that!

RT @citronneur: Scanner for CVE-2024-4040 (CrushFTP VFS Escape)

We are happy to announce a new pre-release of BinCAT, our binary static analyzer! New is this release: IDA 8.3 integration for Windows and Linux

Some team member will attend #HEXACON2023, feel free to come to us and discuss :)

Our team is looking for an offensive security engineer: Want to know more about our activities? Check out Interested in becoming an @AirbusSeclab team member? Feel free to reach out!

Following several evaluations in which we used binary-only fuzzing, we wrote a hands-on blogpost about our step-by-step approach to setup grammar-aware in-memory persistent fuzzing campaigns using AFL++-QEMU. Check it out here:

Vous pouvez trouver les slides de notre présentation "Analyse de sécurité de Netbackup" présentée durant le SSTIC 2023 ici : et les outils publiés sur notre github :

A SSTIC la semaine prochaine, Jean-Romain Garnier et Anaïs Gantet partageront la suite des travaux de l'équipe sur le produit NetBackup : #internals #netbackup #tooling #security RDV au #SSTIC2023 ou sur le 8 juin prochain à 10h.

You can find the slides of our presentation "The unavoidable pain of backups: security deep-dive into the internals of NetBackup" at @hexacon_fr on our github :

Anaïs Gantet, Nicolas Devillers (@Nikaiw) and Mouad Abouhali (@_m00dy_ ) are going to present “The unavoidable pain of backups: security deep-dive into the internals of NetBackup” at #HEXACON2022. A thought to Jean-Romain Garnier (@JRomainG) that was not able to participate.

New public advisories released by @VeritasTechLLC related to our research: Don't forget to apply patches!

Hello everyone ! Come see our new IDA plugin ! AutoResolv is a free IDA plugin, which resolves functions imported from external libraries. Moreover, it can import the right signature of those functions and refactor your code accordingly.

In addition to be sponsor, our talk about “The unavoidable pain of backups: security deep-dive into the internals of NetBackup” has been selected. Come listen to Nicolas Devillers (@nikaiw) and Jean-Romain Garnier (@JRomainG) about this talk !

We want to thank @VeritasTechLLC for this amazing collaboration! Please find below the public advisories related to our research: as well as the associated patches to apply!

Proud to announce we have been selected for @Hexacon_fr! Stay tuned if you want to learn how attackers may leverage a backup management software to fully take over your whole IT infrastructure as well as how to prevent them.

RT @hexacon_fr: 💾 The unavoidable pain of backups: security deep-dive into the internals of NetBackup by Anaïs Gantet, Abouhali Mouad (@_m…

RT @citronneur: Want to simulate any #ETW logs using powershell, even the security one? Do you want to import any evtx files into the curre…