Shielder
@ShielderSec
Followers
1K
Following
281
Statuses
453
InfoSec boutique. Owning things since 2014. We love to go for the extra mile, where we usually find the best π¦ππͺ²πͺ³πππ· the others miss.
Italy
Joined July 2014
RT @OSTIFofficial: #Karmada showed camaraderie with their security audit! Navigated with support from the @CloudNativeFdn and auditing by @β¦
0
1
0
RT @OSTIFofficial: It was smooth sailing with the Karmada maintainer team, @ShielderSec, and the CNCF for this audit!
0
3
0
π¨ New Open Source Audit Alert! π¨ Shielder, with @OSTIFofficial & @CloudNativeFdn, audited @karmada_io: π 6 issues found (1 high, 1 medium, 2 low, 2 info) βοΈ Most fixed, others planned. π£οΈ to @suidpit and @Th3Zer0 Full details in the blog post!
0
8
22
RT @gbergel: Muy buena la charla βRiding the DYLD Rocket: Escaping from macOS Sandbox at Mach 1337β de @suidpit en #theSAS2024
https://t.coβ¦
0
1
0
0
1
0
Attending @TheSAScon in the beautiful BaliποΈ? Make sure not to miss @suidpit's talk about his novel research on the macOS π sandbox and how to bypass it. ποΈ Wednesday, October 23 - 15:10
0
5
15
RT @smaury92: ππΏ hackers! I'm looking for an #AppSec π₯·πΏ/π§πΏ to join our team at @ShielderSec! If you are looking for a chill company which wβ¦
0
17
0
It's a pleasure to sponsor once again @cybersaiyanIT for #RomHack2024! We are looking forward to meet y'all in Rome next week. ICYMI we're #hiring, you can find the job post here:
#RomHack2024 is 9 days away and today we want to thank our #sponsors! This edition was sponsored by 20 companies and you can have a look to the full list here Take your time to visit their website, without their support RomHack could not be organized β¬οΈ
0
6
14
Our very own @suidpit will present his novel #macOS research at @TheSAScon - if you want to learn more about the macOS sandbox and how to escape it make sure to be in Bali ποΈ from Oct 22 to Oct 25 at #TheSAS2024
π With many #macOS security mechanisms at work, one might wonder how malware manages to bypass them. Get ready for a deep dive into macOS security architecture and novel evasion techniques during Pietro Tirenna's (@suidpit) talk at #TheSAS2024. π Secure your seat:
1
7
22
During a recent engagement @Mindlaess_ hacked his way through @vtigercrm which led to discover a privilege escalation and a SQL injection. Learn more in the dedicated advisories: - CVE-2024-42994 #sqli - CVE-2024-42995 #privesc
0
9
18
RT @OSTIFofficial: What do you do when boost needs a boost? You pull in @ShielderSec and let them cook. This OSTIF audit, with sponsorshipβ¦
0
2
0
Back in December 2023 our researchers @Th3Zer0 @suidpit and @Mindlaess_ performed an audit sponsored by @awscloud and facilitated by @OSTIFofficial on boost. It resulted in 7 findings and 15 new fuzzers. The report is now public, check the details here:
0
14
18
In early 2023 we (@Th3Zer0 & @smaury92) collaborated with @SecureDrop to start designing and prototyping the #E2EE messaging protocol for a future version of SecureDrop. π blog post: π» poc code:
Today, weβre publishing a proposed end-to-end encrypted messaging protocol for a future version of SecureDrop. Seeking feedback from cryptographers and protocol designers!
0
6
17
RT @smaury92: A couple of weeks ago I was in Paris sponsored by @yeswehack to hack @LouisVuitton - it has been GREAT! I scored the 5th placβ¦
0
2
0
RT @InfoSecComm: π° Featuring articles by @malcolmst, @Microsoft, @ozgur_bbh, @ShielderSec, @Synacktiv 𧡠Trending threads by @Rhynorater, @β¦
0
1
0
0
0
0