Reposted by aurelsec
C'est un document sans précédent : les caméras-piétons des gendarmes mobiles engagés à Sainte-Soline en 2023 dévoilent un maintien de l'ordre fascisant où tous les excès sont permis avec les encouragements de la hiérarchie. À partager. www.mediapart.fr/journal/fran...
« Faut leur tirer dans la gueule ! » : la manifestation de Sainte-Soline vue par les gendarmes
Mediapart et « Libération » révèlent des images inédites du 25 mars 2023, filmées par les caméras-piétons des gendarmes. Elles montrent des consignes prohibées et dangereuses données par la hiérarchi…
www.mediapart.fr
November 5, 2025 at 10:39 PM
C'est un document sans précédent : les caméras-piétons des gendarmes mobiles engagés à Sainte-Soline en 2023 dévoilent un maintien de l'ordre fascisant où tous les excès sont permis avec les encouragements de la hiérarchie. À partager. www.mediapart.fr/journal/fran...
Reposted by aurelsec
Last chance to (self-) nominate for USENIX Security'26 Artifact Evaluation Committee!
You should expect a low load of ~1 artifact for functionality/reproducibility assessments per cycle (max 3 for the whole year).
Please support Open Science and fill the form by Oct 17: forms.gle/WoYRX4govNY1... 🚀
You should expect a low load of ~1 artifact for functionality/reproducibility assessments per cycle (max 3 for the whole year).
Please support Open Science and fill the form by Oct 17: forms.gle/WoYRX4govNY1... 🚀
(Self-)Nomination for the USENIX Security '26 Artifact Evaluation Committee (AEC)
For the seventh year, USENIX Security allows the evaluation of artifacts that support a paper: software, hardware, evaluation data and documentation, raw measurement data, raw survey results, mechaniz...
forms.gle
October 16, 2025 at 5:48 AM
Last chance to (self-) nominate for USENIX Security'26 Artifact Evaluation Committee!
You should expect a low load of ~1 artifact for functionality/reproducibility assessments per cycle (max 3 for the whole year).
Please support Open Science and fill the form by Oct 17: forms.gle/WoYRX4govNY1... 🚀
You should expect a low load of ~1 artifact for functionality/reproducibility assessments per cycle (max 3 for the whole year).
Please support Open Science and fill the form by Oct 17: forms.gle/WoYRX4govNY1... 🚀
Reposted by aurelsec
À #SecSea2k5 Aurélien Francillon d'Eurecom relate les expériences hallucinantes d'écoutes en reconnectant avec les documents NSA déclassifiés en parallèle 😁
✅ Bluetooth 😧
✅ JTAG fait tout fuiter "quand le 𝑗𝑖𝑡𝑡𝑒𝑟 révèle le calcul de la puce" 👏🏻
Génial 👍🏻
✅ Bluetooth 😧
✅ JTAG fait tout fuiter "quand le 𝑗𝑖𝑡𝑡𝑒𝑟 révèle le calcul de la puce" 👏🏻
Génial 👍🏻
October 10, 2025 at 4:31 PM
À #SecSea2k5 Aurélien Francillon d'Eurecom relate les expériences hallucinantes d'écoutes en reconnectant avec les documents NSA déclassifiés en parallèle 😁
✅ Bluetooth 😧
✅ JTAG fait tout fuiter "quand le 𝑗𝑖𝑡𝑡𝑒𝑟 révèle le calcul de la puce" 👏🏻
Génial 👍🏻
✅ Bluetooth 😧
✅ JTAG fait tout fuiter "quand le 𝑗𝑖𝑡𝑡𝑒𝑟 révèle le calcul de la puce" 👏🏻
Génial 👍🏻
Reposted by aurelsec
The Danish Presidency is pushing a dangerous proposal in the EU that would allow the government to scan all our private communications. www.eff.org/deeplinks/2...
Chat Control Is Back on the Menu in the EU. It Still Must Be Stopped
The European Union Council is once again debating its controversial message scanning proposal, aka “Chat Control,” that would lead to the scanning of private conversations of billions of people. Chat
www.eff.org
October 6, 2025 at 8:01 PM
The Danish Presidency is pushing a dangerous proposal in the EU that would allow the government to scan all our private communications. www.eff.org/deeplinks/2...
Reposted by aurelsec
Signal to leave EU rather than comply w/ Chat Control, which would scan all messages sent over end-to-end encrypted platforms. Vote on Chat Control's future Oct 14. Germany is the swing vote. Officials there opposed the measure in past but new govt silent re position
therecord.media/signal-calls...
therecord.media/signal-calls...
Signal calls on Germany to vote against ‘Chat Control,’ saying it would leave EU market
The head of the Signal Foundation raised concerns around Germany now refusing to say whether it will support Chat Control in an upcoming vote.
therecord.media
October 6, 2025 at 3:37 PM
Signal to leave EU rather than comply w/ Chat Control, which would scan all messages sent over end-to-end encrypted platforms. Vote on Chat Control's future Oct 14. Germany is the swing vote. Officials there opposed the measure in past but new govt silent re position
therecord.media/signal-calls...
therecord.media/signal-calls...
Interesting story how DES 56 became a 56-bit key algorithm (while having a 64-bit block size):
"NSA tried to convince IBM to reduce the length of the key from 64 to 48 bits. Ultimately, they compromised on a 56-bit key."
"NSA tried to convince IBM to reduce the length of the key from 64 to 48 bits. Ultimately, they compromised on a 56-bit key."
October 6, 2025 at 9:33 PM
Interesting story how DES 56 became a 56-bit key algorithm (while having a 64-bit block size):
"NSA tried to convince IBM to reduce the length of the key from 64 to 48 bits. Ultimately, they compromised on a 56-bit key."
"NSA tried to convince IBM to reduce the length of the key from 64 to 48 bits. Ultimately, they compromised on a 56-bit key."
Reposted by aurelsec
Archives du 26 juillet 2024 : Emmanuel Macron écarte l'option d'un gouvernement mené par @luciecastets.bsky.social au nom de "la stabilité institutionnelle".
Emmanuel Macron écarte l'option d'un gouvernement de gauche au nom de "la stabilité institutionnelle" | TF1 INFO
[VIDÉO] Emmanuel Macron a exclu lundi soir l'idée de nommer un Premier ministre issu du Nouveau Front populaire. Les représentants de l'alliance de gauche dénoncent "un coup de force" et appellent à u...
www.tf1info.fr
October 6, 2025 at 8:04 AM
Archives du 26 juillet 2024 : Emmanuel Macron écarte l'option d'un gouvernement mené par @luciecastets.bsky.social au nom de "la stabilité institutionnelle".
Tomorrow at 6:30 PM the EU Green Parliament group holds a webinar on #ChatControl
act.greens-efa.eu/chatcontrol
act.greens-efa.eu/chatcontrol
Stop Chat Control: Why scanning all our private messages is a very bad idea
🔴 Webinar - Tue 30 Sep 18.30h CEST
act.greens-efa.eu
September 29, 2025 at 6:08 AM
Tomorrow at 6:30 PM the EU Green Parliament group holds a webinar on #ChatControl
act.greens-efa.eu/chatcontrol
act.greens-efa.eu/chatcontrol
Reposted by aurelsec
"Bad news: The proposal is going forward to be voted on on October 14th, and there's still no blocking minority achieved, as Germany reverted its position to undecided.
Good news: There is still time to fight back!"
Shut this monstrosity down NOW
Good news: There is still time to fight back!"
Shut this monstrosity down NOW
The battle to stop Chat Control continues, act now!
Unfortunately, the battle against Chat Control continues this month. For human rights, for civil liberties, for safety, and for democracy, this privacy-wrecking proposal must be stopped. We need your ...
www.privacyguides.org
September 23, 2025 at 7:23 PM
"Bad news: The proposal is going forward to be voted on on October 14th, and there's still no blocking minority achieved, as Germany reverted its position to undecided.
Good news: There is still time to fight back!"
Shut this monstrosity down NOW
Good news: There is still time to fight back!"
Shut this monstrosity down NOW
Reposted by aurelsec
Le projet de loi pour espionner vos conversations privées #WhatsApp revient sur la table, l’opposition se mobilise 01net.com/actualites/l... via @01net.com
#EURECOM
@aurelsec.bsky.social
#EURECOM
@aurelsec.bsky.social
Le projet de loi pour espionner vos conversations privées WhatsApp revient sur la table, l'opposition se mobilise
Le projet de règlement européen CSAR (appelé « chatcontrol » par ses opposants, pour « contrôle des conversations ») revient sur le devant de la scène, et les scientifiques tirent (à nouveau) la sonne...
01net.com
September 16, 2025 at 9:56 AM
Le projet de loi pour espionner vos conversations privées #WhatsApp revient sur la table, l’opposition se mobilise 01net.com/actualites/l... via @01net.com
#EURECOM
@aurelsec.bsky.social
#EURECOM
@aurelsec.bsky.social
Reposted by aurelsec
At long last - Phrack 72 has been released online for your reading pleasure!
Check it out: phrack.org
Check it out: phrack.org
August 18, 2025 at 9:33 PM
At long last - Phrack 72 has been released online for your reading pleasure!
Check it out: phrack.org
Check it out: phrack.org
Reposted by aurelsec
Phrack 72 released today. phrack.org/issues/72/1
It got me thinking. I first read Phrack back in the 90's as I started hanging out on IRC (maybe '93 or '94?), as I was learning about FreeBSD and later, Linux. It must have been Phrack 43-45 where I started.
What a wild ride on the Internet.
It got me thinking. I first read Phrack back in the 90's as I started hanging out on IRC (maybe '93 or '94?), as I was learning about FreeBSD and later, Linux. It must have been Phrack 43-45 where I started.
What a wild ride on the Internet.
.:: Phrack Magazine ::.
Phrack staff website.
phrack.org
August 18, 2025 at 10:26 PM
Phrack 72 released today. phrack.org/issues/72/1
It got me thinking. I first read Phrack back in the 90's as I started hanging out on IRC (maybe '93 or '94?), as I was learning about FreeBSD and later, Linux. It must have been Phrack 43-45 where I started.
What a wild ride on the Internet.
It got me thinking. I first read Phrack back in the 90's as I started hanging out on IRC (maybe '93 or '94?), as I was learning about FreeBSD and later, Linux. It must have been Phrack 43-45 where I started.
What a wild ride on the Internet.
Reposted by aurelsec
I reverse engineered Lockbit's Linux ESXi variant, also explaining how I did some of the steps! For the fun of it, cause reverse engineering is lots of fun. Enjoy!
hackandcheese.com/posts/blog1_...
hackandcheese.com/posts/blog1_...
August 18, 2025 at 4:55 PM
I reverse engineered Lockbit's Linux ESXi variant, also explaining how I did some of the steps! For the fun of it, cause reverse engineering is lots of fun. Enjoy!
hackandcheese.com/posts/blog1_...
hackandcheese.com/posts/blog1_...
Reposted by aurelsec
@blackhoodie.bsky.social will be at @sec-t.bsky.social on September 10th with a training on Linux Malware Reverse Engineering, for women by women! We have very few seats left 😁 blackhoodie.re/SecT2025/
August 14, 2025 at 2:02 PM
@blackhoodie.bsky.social will be at @sec-t.bsky.social on September 10th with a training on Linux Malware Reverse Engineering, for women by women! We have very few seats left 😁 blackhoodie.re/SecT2025/
Reposted by aurelsec
Discounted early bird registration for WOOT '25 is still open until Monday - www.usenix.org/conference/w... - join us in Seattle on Aug 11/12 (right before USENIX Security) for talks and discussions on great cutting-edge offensive security research. Full program at www.usenix.org/conference/w...
WOOT '25 Technical Sessions
www.usenix.org
July 17, 2025 at 1:23 PM
Discounted early bird registration for WOOT '25 is still open until Monday - www.usenix.org/conference/w... - join us in Seattle on Aug 11/12 (right before USENIX Security) for talks and discussions on great cutting-edge offensive security research. Full program at www.usenix.org/conference/w...
Reposted by aurelsec
Our research on open tunneling servers got nominated for the Most Innovative Research award :)
The work will be presented by Angelos Beitis at Black Hat and also at USENIX Security
Brief summary and code: github.com/vanhoefm/tun...
Paper: papers.mathyvanhoef.com/usenix2025-t...
The work will be presented by Angelos Beitis at Black Hat and also at USENIX Security
Brief summary and code: github.com/vanhoefm/tun...
Paper: papers.mathyvanhoef.com/usenix2025-t...
July 12, 2025 at 8:17 PM
Our research on open tunneling servers got nominated for the Most Innovative Research award :)
The work will be presented by Angelos Beitis at Black Hat and also at USENIX Security
Brief summary and code: github.com/vanhoefm/tun...
Paper: papers.mathyvanhoef.com/usenix2025-t...
The work will be presented by Angelos Beitis at Black Hat and also at USENIX Security
Brief summary and code: github.com/vanhoefm/tun...
Paper: papers.mathyvanhoef.com/usenix2025-t...
Reposted by aurelsec
Une pétition vient d'être lancée sur le site de l'AN pour demander au gouvernement français d'arrêter d'utiliser X pour ses communications officielles.
Je l'ai évidemment signée.
Avec toi ?
(Et on fait tourner l'info)
petitions.assemblee-nationale.fr/initiatives/...
Je l'ai évidemment signée.
Avec toi ?
(Et on fait tourner l'info)
petitions.assemblee-nationale.fr/initiatives/...
Cesser d'utiliser X (anciennement Twitter) pour les communications officielles du gouvernement - Cesser d'utiliser X (anciennement Twitter) pour les communications officielles du gouvernement - Platef...
Cessez d'utiliser cette plateforme comme l'un des principaux porte-parole des communications officielles en France. Il existe des alternatives bien mieux modérées et régulées, et il est même possible ...
petitions.assemblee-nationale.fr
July 9, 2025 at 8:13 PM
Une pétition vient d'être lancée sur le site de l'AN pour demander au gouvernement français d'arrêter d'utiliser X pour ses communications officielles.
Je l'ai évidemment signée.
Avec toi ?
(Et on fait tourner l'info)
petitions.assemblee-nationale.fr/initiatives/...
Je l'ai évidemment signée.
Avec toi ?
(Et on fait tourner l'info)
petitions.assemblee-nationale.fr/initiatives/...
Détecter les contenus pédocriminels en ligne : quelles options techniques ? Quels risques pour la vie privée ?
theconversation.com/detecter-les...
theconversation.com/detecter-les...
Détecter les contenus pédocriminels en ligne : quelles options techniques ? Quels risques pour la vie privée ?
Peut-on détecter automatiquement les contenus pédopornographiques en ligne sans ouvrir la voie à la surveillance de masse ?
theconversation.com
July 7, 2025 at 8:28 AM
Détecter les contenus pédocriminels en ligne : quelles options techniques ? Quels risques pour la vie privée ?
theconversation.com/detecter-les...
theconversation.com/detecter-les...
Reposted by aurelsec
Huge implications from this: Microsoft cut off the email of the chief prosecutor of the International Criminal Court, because of his work on Israel www.nytimes.com/2025/06/20/t...
June 20, 2025 at 6:18 PM
Huge implications from this: Microsoft cut off the email of the chief prosecutor of the International Criminal Court, because of his work on Israel www.nytimes.com/2025/06/20/t...
Reposted by aurelsec
Zonenberg et al. extract its one-time programmable memory through passive voltage contrast 🔬 using a focused ion beam ⚡: www.usenix.org/conference/w...
Extraction of Secrets from 40nm CMOS Gate Dielectric Breakdown Antifuses by FIB Passive Voltage Contrast | USENIXusenix_logo_notag_white
www.usenix.org
June 19, 2025 at 12:48 PM
Zonenberg et al. extract its one-time programmable memory through passive voltage contrast 🔬 using a focused ion beam ⚡: www.usenix.org/conference/w...
Reposted by aurelsec
Two winners of the RP2350 Hacking Challenge will present their results at WOOT!
Muench et al. break its secure boot guarantees through voltage, electromagnetic, and laser fault injection 💥 techniques: www.usenix.org/conference/w...
Muench et al. break its secure boot guarantees through voltage, electromagnetic, and laser fault injection 💥 techniques: www.usenix.org/conference/w...
Security through Transparency: Tales from the RP2350 Hacking Challenge | USENIXusenix_logo_notag_white
www.usenix.org
June 19, 2025 at 12:48 PM
Two winners of the RP2350 Hacking Challenge will present their results at WOOT!
Muench et al. break its secure boot guarantees through voltage, electromagnetic, and laser fault injection 💥 techniques: www.usenix.org/conference/w...
Muench et al. break its secure boot guarantees through voltage, electromagnetic, and laser fault injection 💥 techniques: www.usenix.org/conference/w...
Reposted by aurelsec
Our OffensiveCon talk on stateful baseband emulation (and how improper string handling led to baseband RCE) is available on YouTube: youtu.be/zoAITq7jUM8. It has been a pleasure; awesome conference, brilliant people. Slides and paper: www.danielklischies.net/research/bas...
OffensiveCon25 - Daniel Klischies and David Hirsch
YouTube video by OffensiveCon
youtu.be
May 28, 2025 at 11:21 AM
Our OffensiveCon talk on stateful baseband emulation (and how improper string handling led to baseband RCE) is available on YouTube: youtu.be/zoAITq7jUM8. It has been a pleasure; awesome conference, brilliant people. Slides and paper: www.danielklischies.net/research/bas...
Reposted by aurelsec
Since mid-2024, Google has refused to reinstate the access Nextcloud needs for uploading and syncing other file types to its host-your-own cloud platform.
“Google wanted that”: Nextcloud decries Android permissions as “gatekeeping”
Without full file access, it’s kind of hard to use your own cloud.
arstechnica.com
May 14, 2025 at 6:46 PM
Since mid-2024, Google has refused to reinstate the access Nextcloud needs for uploading and syncing other file types to its host-your-own cloud platform.
Reposted by aurelsec
Haven't seen this on Bluesky yet: S&P 2027 will take place in Montreal, Canada!
May 14, 2025 at 6:45 AM
Haven't seen this on Bluesky yet: S&P 2027 will take place in Montreal, Canada!
Reposted by aurelsec
📢 Excited to announce that the results on BaseBridge, our project on improving cellular baseband emulation, are going public this week. Dyon will present at IEEE S&P on Monday 3pm, while David and I will be on stage at @offensivecon.bsky.social on Saturday 11am with even more details! 1/6
May 11, 2025 at 10:23 AM
📢 Excited to announce that the results on BaseBridge, our project on improving cellular baseband emulation, are going public this week. Dyon will present at IEEE S&P on Monday 3pm, while David and I will be on stage at @offensivecon.bsky.social on Saturday 11am with even more details! 1/6