Some XSS may appear to be false positives, where the reflection is indeed present in the DOM, but the injection does not trigger due to prior errors in the source code… Before giving up as an auditor, is it possible to correct/repair the legitimate code using JavaScript Hoisting to succeed in the injection?

After a brief reminder of the main types of threats and the context conducive to their appearance, presentation of a concrete case with a real-time attack in a TGV, illustrating the vulnerability of certain wireless keyboard and mouse connections and the risks associates at the Silicon & Intel vPro event. [1][2][3][4][5]

« Hash Shucking » is a recent approach consisting of « peeling » / « chipping » a hash or authentication token towards an algorithm deemed weaker and therefore more optimized for breaking. This technique works particularly well for DES-based algorithms, including NetNTLMv1 tokens. [1][2][3][4]

XSS vulnerabilities remain misunderstood and undervalued. The specificities of modern browsers as well as application countermeasures complicate the design of generic payloads. This article aims to present the dissection of a payload in a (very) constrained and filtered context encountered during an audit. [1][2][3]

Gareth HEYES, researcher at PortSwigger and one of the undisputed world reference experts on Hacking via JavaScript (XSS, bypass-WAF, payloads, browsers SOP evasion), mentions me in the credits of his book as well as on the essential XSS Cheat Sheet online. [1][2]

Interview by Télégramme/Mensuel de Rennes for a CyberSecurity dossier: companies give hackers carte blanche to test their security using the offensive method… Overview of the best “physical intrusions”.

For those who deal with computer security, the bug bounty can appear as an attractive gateway: the prospect of financial reward and the freedom to organize themselves, far from the constraints of the professional environment. But this pace is not necessarily for everyone.

The Min2rien business network organized its 16th thematic day Security. A day of conferences devoted to computer security. The subject discussed during this conference: Passwords are no longer enough, adopt strong authentication!

Interview by the Bug Bounty Yogosha platform team on the Bug Hunter activity of the Meet our hackers series.

Presentation of weaknesses commonly observed during searches for vulnerabilities in the context of public and private Bug Bounty, against web authentication and password reset modules.

Strong authentication, 2FA, 3FA, MFA for “Multi-Factor Authentication” has become more democratic in recent years. The simple “login/password” couple is no longer sufficient, especially for sensitive privileged access. But what “factors” are we talking about?

XSS vulnerabilities generally remain undervalued, unconsidered, while they allow misdeeds of great criticality. This article details how to obtain a reverse-shell root from a simple XSS GET via a concrete case: the pfSense 2.3.2 firewall-router distribution.

How to decrypt a script protected by SHc? How to decrypt a *.sh.x file? Does SHc make good use of crypto? UnSHc answers these questions: let’s dissect how it works.

It is quite easy to hide on the Internet and many techniques allow you to do so. To hide ? Yes, but of what and for what purpose? What are the main tools/techniques to remain discreet and reduce or even completely privatize your information?

The reference book concerning the exploitation of vulnerabilities linked to browsers via the BeEF framework quotes one of my work and developed module: exploitation of the firewall-router m0n0wall through an XSS / CSRF / RCE sequence to obtain a root reverse-shell on the distribution .

ASafety allows me to present my personal work, my research, various contributions to the sphere of security, projects in development, as well as advisory of vulnerabilities detected during audits, Bug Bounty and CTFs.