Offensive security company. Dojo of many ninjas. Red teaming, reverse engineering, vuln research, dev of security tools and incident response.https://bsky.app/profile/synacktiv.comhttps://bsky.app/profile/synacktiv.com/post/3ml3wt3cvms2u🚀 Join #Synacktiv at #x33fcon for two hands-on trainings (June 8–10): 🔐 Azure Intrusion Tactics (intermediate): x33fcon.com#!t/MattheuBa... 🖥️ Advanced Active Directory Red Teaming (advanced) Led by our experts: x33fcon.com#!t/WilfriedB... Sharpen your offensive skills in realistic environments!05 May 2026 10:06 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3ml3wt3cvms2uhttps://bsky.app/profile/synacktiv.com/post/3mkpurquyks2wThis second blogpost concludes @yaumn.bsky.social's research on #Windows authentication reflection. He discloses the new Kerberos authentication coercion technique he discovered to remotely compromise Windows systems 💥 A little bonus is even included at the end 👀👇 https://www.synacktiv.com/en/publications/bypassing-windows-authentication-reflection-mitigations-for-system-shells-part30 Apr 2026 14:57 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mkpurquyks2whttps://bsky.app/profile/synacktiv.com/post/3mkk2ohzazs2yAuthentication reflection attacks are still not dead! In our new blogpost series, @yaumn.bsky.social shares his journey into bypassing the mitigations of CVE-2025-33073 to pop SYSTEM shells again! 🚀 👇 https://www.synacktiv.com/en/publications/bypassing-windows-authentication-reflection-mitigations-for-system-shells-part-128 Apr 2026 07:27 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mkk2ohzazs2yhttps://bsky.app/profile/synacktiv.com/post/3mk66wbttd22qTomorrow, @yaumn.bsky.social will be presenting his research on Windows authentication reflection at @blackhatevents.bsky.social Asia 2026 in Singapore! The talk will be at 15:20 local time in Simpor Junior Ballroom 4810, come say hi! 😄 #BHASIA ℹ️ https://blackhat.com/asia-26/briefings/schedule/index.html?day=friday#the-gift-that-keeps-on-giving-bypassing-authentication-reflection-mitigations-for-system-shells-5108423 Apr 2026 14:11 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mk66wbttd22qhttps://bsky.app/profile/synacktiv.com/post/3mk63hwqiqc2qSay hi to Pike! Our latest article introduces #Pike, an experimental #LLM agent that generates & analyses #Linux execution traces to: 🔍 Debug crashes 🛡️ Detect malware 📊 Provide high-level insights All through a natural chat interface. https://www.synacktiv.com/en/publications/say-hi-to-pike23 Apr 2026 13:09 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mk63hwqiqc2qhttps://bsky.app/profile/synacktiv.com/post/3mk5mfzpzls2q🚀 Join Synacktiv at #x33fcon for two hands-on trainings (June 8-10): 🔐 Azure Intrusion Tactics (intermediate): www.x33fcon.com#!t/MattheuBa... 🖥️ Advanced Active Directory Red Teaming (advanced): www.x33fcon.com#!t/WilfriedB... Sharpen your offensive skills in realistic environments!23 Apr 2026 08:39 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mk5mfzpzls2qhttps://bsky.app/profile/synacktiv.com/post/3mjz6emk5zk2hAttacking heavy applications through named pipes: an attack surface often overlooked due to its complexity. In this article, @turbothon.bsky.social explains how we designed a tool abusing legitimate processes to attack higly privileged components of heavy clients ⬇️ https://www.synacktiv.com/en/publications/hooking-windows-named-pipes21 Apr 2026 14:18 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mjz6emk5zk2hhttps://bsky.app/profile/synacktiv.com/post/3mjjzvc3t3s2nWe are happy to open-source zom (github.com/synacktiv/zom), a mirror for @zed.dev code editor extensions and releases, useful in restricted environments. Feel free to give it a try, all issues or PRs are welcome! https://github.com/synacktiv/zom15 Apr 2026 13:47 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mjjzvc3t3s2nhttps://bsky.app/profile/synacktiv.com/post/3mjgw3adfak2cDouble trouble at #SOCON2026! Our ninja @kalimer0x00.bsky.social was busy breaking down Microsoft SCCM (once again!), while @quent0x1.bsky.social unveiled new GPO-based attack paths & his latest Bloodhound contributions targeting OUs & AD Sites. Awesome job! 👏14 Apr 2026 08:01 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mjgw3adfak2chttps://bsky.app/profile/synacktiv.com/post/3mj2dph3fu32zOur ninjas identified vulnerabilities in the #BizTalk360 solution. They can be exploited from any authenticated domain user, and lead to full server compromise. A new version is available, update your instances! 👇 https://www.synacktiv.com/advisories/remote-code-execution-from-any-domain-account-in-biztalk36009 Apr 2026 08:01 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mj2dph3fu32zhttps://bsky.app/profile/synacktiv.com/post/3mi2gm4npnk2mBased on the incidents we handled, our observations align with #ANSSI 's 2025 Cyber Threat Landscape: 🔻 Fewer ransomware attacks 🔺 More data exfiltrations 💡 Discover the top 3 causes of data breaches in our infographic! Facing a breach? Contact us: 📩 csirt@synacktiv.com27 Mar 2026 15:27 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mi2gm4npnk2mhttps://bsky.app/profile/synacktiv.com/post/3mhxpiibvac2mAttacks targeting #Kubernetes are surging in 2025 🔎 To tackle this, Synacktiv #CSIRT is launching a series of articles on Kubernetes forensics. First up: understanding the underlying container technology 👇 www.synacktiv.com/en/node/1320 https://www.synacktiv.com/en/node/132026 Mar 2026 13:28 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mhxpiibvac2mhttps://bsky.app/profile/synacktiv.com/post/3mhsqxpxh6k2nIf #RBCD has been thoroughly documented, only a few resources mention the workflow in cross-domain environment. In our new blogpost, we dive into the cross-domain and cross-forest RBCD workflows Read it here 👇 https://www.synacktiv.com/en/publications/exploring-cross-domain-cross-forest-rbcd24 Mar 2026 14:11 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mhsqxpxh6k2nhttps://bsky.app/profile/synacktiv.com/post/3mhiwrp6ioc2iDeep dive into the provisionning an on-prem low-privileged #LLM stack, with air-gapped networking and GPU-isolation, hardened down to kernel modules. What could possibly go wrong? Read the full article here: https://www.synacktiv.com/en/publications/deep-dive-into-the-deployment-of-an-on-premise-low-privileged-llm-server20 Mar 2026 16:29 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mhiwrp6ioc2ihttps://bsky.app/profile/synacktiv.com/post/3mhfxadz6pk2l💡 Raising awareness to improve investigations User testimonies are invaluable during incidents - but healthy doubt matters too 🔍 Trust & accountability help organisations better understand and resolve #cyber incidents. 📊 Discover our recommendations ↓ 📩 https://www.synacktiv.com/en/offers/trainings19 Mar 2026 11:59 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mhfxadz6pk2lhttps://bsky.app/profile/synacktiv.com/post/3mgpkpbqcys2zActive #RDP connections can reveal the client hostname 🔎 A key indicator for investigations & #CTI: some attackers reuse hostnames. Traces to check: CLIENTNAME env variable & RDP printer redirection. 🛡️ Incident? Contact #Synacktiv CSIRT 24/7: csirt@synacktiv.com10 Mar 2026 14:16 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mgpkpbqcys2zhttps://bsky.app/profile/synacktiv.com/post/3mg3ljbjt4k2s🔎 Want to know what you can really do with #mitmproxy? This deep dive shows how to intercept and modify application traffic on #Linux, #Android, and #iOS - from TLS MITM to gRPC/Protobuf tampering. Read our latest article: https://www.synacktiv.com/en/publications/mitmproxy-for-fun-and-profit-interception-and-analysis-of-application-traffic02 Mar 2026 15:37 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mg3ljbjt4k2shttps://bsky.app/profile/synacktiv.com/post/3mfml65sqtk2z🚀 Last December, the Synacktiv #WinterChallenge 2025 took place. 👏 Congratulations to the 25 participants for their outstanding solutions! 🧠 Read the write-up on the best techniques used to craft a constraint-compliant quinindrome: https://www.synacktiv.com/en/publications/2025-winter-challenge-writeup24 Feb 2026 16:21 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mfml65sqtk2zhttps://bsky.app/profile/synacktiv.com/post/3meitrtb55c2l#IT evolves… and so do attacks. 🛡️ Sharpen your skills in March-April 2026 with our #cybersecurity courses: Forensic, Cloud, Active Directory & Malware Analysis. 📅 Limited spots: https://www.synacktiv.com/en/offers/trainings10 Feb 2026 11:19 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3meitrtb55c2lhttps://bsky.app/profile/synacktiv.com/post/3mdv5zrmyts2qIn our latest article, @niozow.bsky.social dives into the inner workings of #Windows access tokens, privileges and logon rights. As these rights often constitute a blind spot for AD enumeration tools, the article describes our PRs to integrate them into BloodHound ⬇️ https://www.synacktiv.com/en/publications/beyond-acls-mapping-windows-privilege-escalation-paths-with-bloodhound02 Feb 2026 15:30 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mdv5zrmyts2qhttps://bsky.app/profile/synacktiv.com/post/3mdklgugewc27🔍 Synacktiv training courses - April 2026 Hands-on #cybersecurity courses led by #Synacktiv experts: Cloud Forensics (AWS), Azure & AD intrusion tactics. 📅 March-April | Onsite & Remote 👉 https://www.synacktiv.com/en/offers/trainings29 Jan 2026 10:30 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mdklgugewc27https://bsky.app/profile/synacktiv.com/post/3mdcyn732w224At #Pwn2Own Berlin 2025, a full exploit chain against VMware Workstation was demonstrated via a heap overflow in the PVSCSI controller. Despite Windows 11 LFH mitigations, advanced heap shaping and side-channel techniques enabled a reliable exploit. 🔍 https://www.synacktiv.com/en/publications/on-the-clock-escaping-vmware-workstation-at-pwn2own-berlin-202526 Jan 2026 10:05 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mdcyn732w224https://bsky.app/profile/synacktiv.com/post/3md3mgilep227On the podium at #Pwn2Own Automotive 2026 🥉 Synacktiv ranked 3rd in Tokyo 🇯🇵 after successful attacks on #Tesla Infotainment (USB), #Sony XAV-9500ES (USB) and #Autel MaxiCharger (NFC). 📍 Next stop: Berlin!23 Jan 2026 11:38 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3md3mgilep227https://bsky.app/profile/synacktiv.com/post/3mcjsur26e22zOur experts will be at #Pwn2Own Automotive in Tokyo 🇯🇵 After taking 1st place in 2024 by uncovering #Tesla and automotive vulnerabilities, they’re back to explore new attack entry points! Stay tuned 🔍16 Jan 2026 09:45 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mcjsur26e22zhttps://bsky.app/profile/synacktiv.com/post/3mcfh4l66n22qCyber threats evolve fast - so should your skills. In March, join our hands-on #cybersecurity training covering Linux Forensics, Cloud Forensics (Azure & AWS) and Intrusion Tactics. ⌛ Limited seats → https://www.synacktiv.com/en/offers/trainings #Cybersecurity #Forensics #CloudSecurity14 Jan 2026 16:04 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mcfh4l66n22qhttps://bsky.app/profile/synacktiv.com/post/3mcetxldaks2hFrom legacy WEP to WPA3-Enterprise: sharing our recent #WiFi field experiences. 📡 We detail various scenarios to better understand the risks, including WPA3 PEAP relaying & optimized online PSK brute-forcing. ⤵️ https://www.synacktiv.com/en/publications/wireless-infidelity-pentesting-wi-fi-in-202514 Jan 2026 10:22 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mcetxldaks2hhttps://bsky.app/profile/synacktiv.com/post/3mb4p6evu4k2l🔒 Feb 2026: #cybersecurity training with #Synacktiv! 5&6 Feb: Kubernetes Intrusion Tactics (Paris, FR) 9&10 Feb: AWS Intrusion Tactics (Paris, FR) 9-11 Feb: Malware Analysis (Remote, EN) 16-20 Feb: Attacking Web Apps (Paris, FR) ✅ Register now: https://www.synacktiv.com/en/offers/trainings29 Dec 2025 11:09 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mb4p6evu4k2lhttps://bsky.app/profile/synacktiv.com/post/3mao6unwj3k2d🚨 Pre-Auth RCE in #Livewire (CVE-2025-54068)! Our specialists uncovered a critical flaw allowing remote code execution without the APP_KEY, exploiting Livewire’s hydration mechanism + PHP’s loose typing. 🔗 Patch now! (v3.6.4+) https://www.synacktiv.com/en/publications/livewire-remote-command-execution-through-unmarshaling23 Dec 2025 16:40 +0000at://did:plc:f66ty74va5ti7faiq5ezuncy/app.bsky.feed.post/3mao6unwj3k2d