Patrice <GomoR> Auffret
LightNews LightNews
banner
patriceauffret.bsky.social
Patrice <GomoR> Auffret
@patriceauffret.bsky.social
160 followers 130 following 18 posts
ONYPHE founder, CEO and CTO - FreeBSD & Perl sculptor rather than GNU/Linux & Python - My views are those of my employer
Posts Replies Media Videos
patriceauffret.bsky.social
Perl
bearstech.com Bearstech @bearstech.com · 3d
Emojicode : un langage de programmation à part entière, composé d'émojis. (Lu)

A-t-on trouvé un langage plus efficace que Python ?

👉 www.emojicode.org/
🏁 🍇 😀 🔤Bearstech - hébergement et infogérance depuis 2004 !🔤❗️ 🍉
November 11, 2025 at 8:06 AM
Reposted by Patrice <GomoR> Auffret
ponceto91.bsky.social
RustScan est un outil de scan de ports écrit en Rust. Il mise tout sur la rapidité et se veut scanner l'ensemble des ports d'une machine en quelques secondes ⬇️

github.com/bee-san/Rust...
GitHub - bee-san/RustScan: 🤖 The Modern Port Scanner 🤖
🤖 The Modern Port Scanner 🤖. Contribute to bee-san/RustScan development by creating an account on GitHub.
github.com
November 9, 2025 at 7:16 AM
patriceauffret.bsky.social
Cc @onyphe.io
hrbrmstr.mastodon.social.ap.brid.gy hrbrmstr 🇺🇦 🇬🇱 🇨🇦 🏳️‍🌈 @hrbrmstr.mastodon.social.ap.brid.gy · Jun 3
For personal use I added a "geolocus" tool to a Deno-based MCP server (that has alot of random tools/functions in it).

It's been useful enough that I started extracting it to a standalone geolocus MCP server I shld be able to release in a couple days.

The ONYPHE folks are super rad.
June 3, 2025 at 6:02 AM
Reposted by Patrice <GomoR> Auffret
onyphe.io
The electrical power outage in Spain and Portugal as seen from the Internet (France included for reference)
A chart showing Internet scan data plots for three countries; Spain, Portugal and France. The three lines are stable, with minor variations from 09:00 to 12:30. At 12:30 the lines for Spain and Portugal drop almost vertically to roughly 50% of their original levels. The line for France continues as for the start of the day. The lines for Spain and Portugal have not returned to their original levels.
April 28, 2025 at 4:03 PM
patriceauffret.bsky.social
Patch management is a multi-decade failure.
April 10, 2025 at 5:00 AM
Reposted by Patrice <GomoR> Auffret
pierrearlais.bsky.social
March 23, 2025 at 12:00 PM
Reposted by Patrice <GomoR> Auffret
infosec.skyfleet.blue
VPN Vulnerabilities Emerges As The Key Tool for Threat Actors to Attack Organizations
VPN Vulnerabilities Emerges As The Key Tool for Threat Actors to Attack Organizations
cybersecuritynews.com
March 19, 2025 at 11:44 AM
Reposted by Patrice <GomoR> Auffret
onyphe.io
The latest version of our cli tool has been released. Get v4.19.0 and find wrappers with sweet new APIs inside.

Available here ➡️
search.onyphe.io/docs/onyphe-...

or here 🐳 hub.docker.com/r/onyphe/ony...

or even here 🥷 metacpan.org/dist/Onyphe
Installation | ONYPHE
Installation
search.onyphe.io
March 18, 2025 at 6:54 AM
Reposted by Patrice <GomoR> Auffret
regisleguennec.bsky.social
🧙‍♀️Cc @fs0c131y.com @gazlacrymo.fr @hacker0x01.bsky.social @gandalfistari.bsky.social @jnocetti.bsky.social @korben.info @tariqkrim.bsky.social @reesmarc.bsky.social @jeromenotin.bsky.social @oliviertesquet.bsky.social @patriceauffret.bsky.social @untersin.gr ça devrait t’intéresser 🪄
March 4, 2025 at 11:39 AM
patriceauffret.bsky.social
Mais il a bien dormi.
March 3, 2025 at 8:28 PM
patriceauffret.bsky.social
Oui enfin, c'est comme un moustique qui s'écrase contre le pare-brise d'une voiture.
February 14, 2025 at 11:23 AM
Reposted by Patrice <GomoR> Auffret
infosec.skyfleet.blue
RedMike Hackers Exploited 1000+ Cisco Devices to Gain Admin Access
RedMike Hackers Exploited 1000+ Cisco Devices to Gain Admin Access 
cybersecuritynews.com
February 14, 2025 at 8:43 AM
Reposted by Patrice <GomoR> Auffret
onyphe.io
📣 We have added a new #vulnerability detection to our #ASM #AttackSurfaceManagement solution for #PaloAltoNetworks PA product:

CVE-2025-0108: authentication bypass on management interface

search.onyphe.io/search?q=cat...

Thanks to @assetnote.io for having shared the detection method.
February 14, 2025 at 9:16 AM
Reposted by Patrice <GomoR> Auffret
jamesatack.com
Yet by performing an awkward legal waltz around the subject, Talos have helpfully supported my hypothesis that compromised IOS XE devices are part of an ORB network serving multiple APTs.

archive.hack.lu/hack-lu-2024...
The XE Files - Trust No Router hack.lu 2024
On the 16th October 2023 Cisco Talos shared intelligence about a handful of compromised routers discovered while resolving customer support requests. As the full story unfolded, a handful of backdoore...
archive.hack.lu
February 12, 2025 at 9:21 AM
Reposted by Patrice <GomoR> Auffret
lea-linux.org
"Command & Conquer : Red Alert" en version Open source :
www.openra.net
OpenRA
Classic strategy games rebuilt for the modern era
www.openra.net
January 26, 2025 at 8:54 AM
patriceauffret.bsky.social
Roughly same numbers as @onyphe.bsky.social
shadowserver.bsky.social The Shadowserver Foundation @shadowserver.bsky.social · Jan 20
We are sharing daily results of Fortinet CVE-2024-55591 (auth bypass) vulnerable instances in our Vulnerable HTTP report - shadowserver.org/what-we-do/n...

CVE-2024-55591 is known to be exploited in the wild.

Around 50K found vulnerable: dashboard.shadowserver.org/statistics/c...
January 20, 2025 at 12:44 PM
Reposted by Patrice <GomoR> Auffret
g4l4drim.bsky.social
Back in the dayz the fake exploit did "rm -rf /" www.trendmicro.com/en_us/resear... #CTI
Information Stealer Masquerades as LDAPNightmare (CVE-2024-49113) PoC Exploit
Our blog entry discusses a fake PoC exploit for LDAPNightmare (CVE-2024-49113) that is being used to distribute information-stealing malware.
www.trendmicro.com
January 20, 2025 at 7:25 AM
patriceauffret.bsky.social
More than 50k *vulnerable* devices.

This one is pretty bad.
onyphe.io ONYPHE @onyphe.io · Jan 17
📣 We have added a new #vulnerability detection to our #ASM #AttackSurfaceManagement solution for #Fortinet FortiGate product:

CVE-2024-55591: unauthenticated remote issue allows to gain super-admin privileges

search.onyphe.io/search?q=cat...

Thanks to @WatchTowr for sharing detection method.
January 17, 2025 at 5:55 PM
patriceauffret.bsky.social
Don't expose DCERPC protocol on the Internet.
January 2, 2025 at 2:56 PM
patriceauffret.bsky.social
Je plussoie.
padrepio.bsky.social Padre Pio @padrepio.bsky.social · Dec 12
C'est.
Débile.
cyrilpetit.bsky.social Cyril Petit @cyrilpetit.bsky.social · Dec 12
🚲 Sur les vélos, le feu rouge clignotant à l'arrière est désormais interdit. A lire dans @ouest-france.fr 🚨

www.ouest-france.fr/societe/secu...
December 12, 2024 at 8:10 AM
Reposted by Patrice <GomoR> Auffret
lcheylus.bsky.social
FreeBSD 14.2-RELEASE now includes OCI-compatible images, and the Podman toolkit is ready to use them, on both amd64 and arm64 systems - A brief Introduction by Dave Cottlehuber #FreeBSD #BSD
A Brief Introduction to OCI Containers on FreeBSD - Random Musings
O for a muse of fire, that would ascend the brightest heaven of invention!
people.freebsd.org
December 9, 2024 at 8:10 AM
Reposted by Patrice <GomoR> Auffret
legrugru.fr
répondez à vos emails

putain dire que j'ai connu un temps où les gens répondaient à un FAX
December 9, 2024 at 10:51 AM
Reposted by Patrice <GomoR> Auffret
stacksmashing.bsky.social
Stop. Truncating. Hashes.

www.phoronix.com/news/OpenWrt...
2. **Truncated SHA-256 Hash Collisions**: The request hashing mechanism truncates SHA-256 hashes to only 12 characters. This significantly reduces entropy, making it feasible for an attacker to generate collisions. By exploiting this, a previously built malicious image can be served in place of a legitimate one, allowing the attacker to "poison" the artifact cache and deliver compromised images to unsuspecting users.
December 8, 2024 at 4:40 PM
Reposted by Patrice <GomoR> Auffret
onyphe.io
📣 We have added a new #vulnerability detection to our #ASM #AttackSurfaceManagement solution for #Mitel MiCollab product:

CVE-2024-35286: unauthenticated SQL injection on login page
CVE-2024-41713: unauthenticated arbitrary file read

www.onyphe.io/search?q=cat...
December 6, 2024 at 9:58 AM
Reposted by Patrice <GomoR> Auffret
nono2357.bsky.social
##Cyberattaques : une étude dévoile la porte ##entréeée préféré##ransomwaresmwares
https://www.01net.com/actualites/cyberattaques-etude-devoile-porte-entree-preferee-ransomwares.html
November 28, 2024 at 1:55 PM