#doyensec — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #doyensec, aggregated by home.social.
-
Proud to share that @doyensec was trusted by Anthropic as one of the security partners validating #Mythos findings as part of Project #Glasswing!
Contact us today to see how our research-driven approach shapes the future of #appsec!
https://www.anthropic.com/research/glasswing-initial-update
#doyensec #security #ai #claude #claudecode #claudemythos #anthropic
-
Proud to share that @doyensec was trusted by Anthropic as one of the security partners validating #Mythos findings as part of Project #Glasswing!
Contact us today to see how our research-driven approach shapes the future of #appsec!
https://www.anthropic.com/research/glasswing-initial-update
#doyensec #security #ai #claude #claudecode #claudemythos #anthropic
-
Proud to share that @doyensec was trusted by Anthropic as one of the security partners validating #Mythos findings as part of Project #Glasswing!
Contact us today to see how our research-driven approach shapes the future of #appsec!
https://www.anthropic.com/research/glasswing-initial-update
#doyensec #security #ai #claude #claudecode #claudemythos #anthropic
-
Proud to share that @doyensec was trusted by Anthropic as one of the security partners validating #Mythos findings as part of Project #Glasswing!
Contact us today to see how our research-driven approach shapes the future of #appsec!
https://www.anthropic.com/research/glasswing-initial-update
#doyensec #security #ai #claude #claudecode #claudemythos #anthropic
-
Proud to share that @doyensec was trusted by Anthropic as one of the security partners validating #Mythos findings as part of Project #Glasswing!
Contact us today to see how our research-driven approach shapes the future of #appsec!
https://www.anthropic.com/research/glasswing-initial-update
#doyensec #security #ai #claude #claudecode #claudemythos #anthropic
-
New #CloudSecTidbits explores how misconfigured AWS ELBs can silently break security boundaries through rule shadowing, CloudFront/WAF bypasses, and alternate routing paths.
We’re also releasing ELBaph — a new read-only tool to map ELB routing graphs, detect exposed paths, and surface real-world attack chains across ALBs/NLBs.
https://blog.doyensec.com/2026/05/25/cloudsectidbits-elbaph-alb.html
#AppSec #Doyensec #AWS #CloudSecurity #AppSec #SecurityResearch
-
New #CloudSecTidbits explores how misconfigured AWS ELBs can silently break security boundaries through rule shadowing, CloudFront/WAF bypasses, and alternate routing paths.
We’re also releasing ELBaph — a new read-only tool to map ELB routing graphs, detect exposed paths, and surface real-world attack chains across ALBs/NLBs.
https://blog.doyensec.com/2026/05/25/cloudsectidbits-elbaph-alb.html
#AppSec #Doyensec #AWS #CloudSecurity #AppSec #SecurityResearch
-
While we're happy for our prize and that our exploit targeting OpenAI's Codex in the Coding Agent category was successful at #PWN2OWN, this was a collision💥 as the bug was previously known to the vendor. Back to the research! #P2OBerlin
-
While we're happy for our prize and that our exploit targeting OpenAI's Codex in the Coding Agent category was successful at #PWN2OWN, this was a collision💥 as the bug was previously known to the vendor. Back to the research! #P2OBerlin
-
While we're happy for our prize and that our exploit targeting OpenAI's Codex in the Coding Agent category was successful at #PWN2OWN, this was a collision💥 as the bug was previously known to the vendor. Back to the research! #P2OBerlin
-
While we're happy for our prize and that our exploit targeting OpenAI's Codex in the Coding Agent category was successful at #PWN2OWN, this was a collision💥 as the bug was previously known to the vendor. Back to the research! #P2OBerlin
-
While we're happy for our prize and that our exploit targeting OpenAI's Codex in the Coding Agent category was successful at #PWN2OWN, this was a collision💥 as the bug was previously known to the vendor. Back to the research! #P2OBerlin
-
If you're attending #PWN2OWN, be sure to watch Doyensec's Leonardo Giovannini demonstrate his #OpenAI Codex 0day exploit live Thursday, May 14 at 15:30.
If you can't make it in person, keep an eye on https://blog.doyensec.com/ for more great #ai security research like this - coming very soon!
See the PWN2OWN schedule here: https://www.zerodayinitiative.com/blog/2026/5/13/pwn2own-berlin-2026-the-full-schedule
-
If you're attending #PWN2OWN, be sure to watch Doyensec's Leonardo Giovannini demonstrate his #OpenAI Codex 0day exploit live Thursday, May 14 at 15:30.
If you can't make it in person, keep an eye on https://blog.doyensec.com/ for more great #ai security research like this - coming very soon!
See the PWN2OWN schedule here: https://www.zerodayinitiative.com/blog/2026/5/13/pwn2own-berlin-2026-the-full-schedule
-
If you're attending #PWN2OWN, be sure to watch Doyensec's Leonardo Giovannini demonstrate his #OpenAI Codex 0day exploit live Thursday, May 14 at 15:30.
If you can't make it in person, keep an eye on https://blog.doyensec.com/ for more great #ai security research like this - coming very soon!
See the PWN2OWN schedule here: https://www.zerodayinitiative.com/blog/2026/5/13/pwn2own-berlin-2026-the-full-schedule
-
If you're attending #PWN2OWN, be sure to watch Doyensec's Leonardo Giovannini demonstrate his #OpenAI Codex 0day exploit live Thursday, May 14 at 15:30.
If you can't make it in person, keep an eye on https://blog.doyensec.com/ for more great #ai security research like this - coming very soon!
See the PWN2OWN schedule here: https://www.zerodayinitiative.com/blog/2026/5/13/pwn2own-berlin-2026-the-full-schedule
-
If you're attending #PWN2OWN, be sure to watch Doyensec's Leonardo Giovannini demonstrate his #OpenAI Codex 0day exploit live Thursday, May 14 at 15:30.
If you can't make it in person, keep an eye on https://blog.doyensec.com/ for more great #ai security research like this - coming very soon!
See the PWN2OWN schedule here: https://www.zerodayinitiative.com/blog/2026/5/13/pwn2own-berlin-2026-the-full-schedule
-
Read how #Doyensec went beyond the basic #AI & web testing to reshape how our client thinks about risks and how we enabled them to evaluate a previously unknown attack surface. It’s amazing when our passion for #appsec has such a big impact!
https://www.unit21.ai/blog/risk-decisions-in-the-era-of-ai-what-happens-when-the-subject-fights-back
-
A great day 1 at DEVWorld Amsterdam is in the books! If you're attending on Friday, stop by our booth and let's talk about how Doyensec can help your team Build With Security!
-
A great day 1 at DEVWorld Amsterdam is in the books! If you're attending on Friday, stop by our booth and let's talk about how Doyensec can help your team Build With Security!
-
Our CloudSecTidbits series is back with a bang! In the latest edition, we're releasing maSSO - A weaponized Identity Provider (IdP) for security testing! Read all about it and the dangers of Multi-SSO AWS Cognito User Pools.
https://blog.doyensec.com/2026/05/05/cloudsectidbits-masso-cognito-sso.html
-
Join #Doyensec at #DEFCON Singapore 🇸🇬 - Demo Labs!
Our Mohamed Ouad and Francesco Lacerenza present CloudSec Tidbits: Breaking “Secure-Looking” Cloud Architectures
See real-world cloud/AppSec bugs & labs
Details - https://defcon.org/html/defcon-singapore/dc-singapore-demolabs.html
🗓 Tue 14:00 | Wed 12:00 | Thu 13:00
-
Join #Doyensec at #DEFCON Singapore 🇸🇬 - Demo Labs!
Our Mohamed Ouad and Francesco Lacerenza present CloudSec Tidbits: Breaking “Secure-Looking” Cloud Architectures
See real-world cloud/AppSec bugs & labs
Details - https://defcon.org/html/defcon-singapore/dc-singapore-demolabs.html
🗓 Tue 14:00 | Wed 12:00 | Thu 13:00
-
In our @Adenkiewicz 's latest post, see how combining AFL++ with GPT-5 Codex sped up triaging the results from fuzzing NASA’s CFITSIO library and uncovered numerous vulnerabilities.
-
In our @Adenkiewicz 's latest post, see how combining AFL++ with GPT-5 Codex sped up triaging the results from fuzzing NASA’s CFITSIO library and uncovered numerous vulnerabilities.
-
🥳Doyensec is proud to announce our sponsorship of the UC Davis Cyber Security Club! 💻🔐
We're committed to supporting the next generation of #cybersecurity talent 📚🧗
-
🥳Doyensec is proud to announce our sponsorship of the UC Davis Cyber Security Club! 💻🔐
We're committed to supporting the next generation of #cybersecurity talent 📚🧗
-
In our latest blog post, Szymon Drosdzol provides an in-depth walkthrough of using the #frida toolkit to demonstrate the right way to intercept OkHTTP traffic. This is essential knowledge for #android security research!
Check it out today: https://blog.doyensec.com/2026/01/22/frida-instrumentation.html
-
In the second post on Eval Villain, [email protected] walks through the quick & easy setup and its configuration. Check it out & start finding those client-side vulnerabilities today!
Download it today: https://github.com/swoops/eval_villain
-
🥂🤖 A toast to 9 years of #Doyensec!
Nine years of pushing application security forward, breaking things so others don’t, & helping teams build with security from day one. 🍸
Cheers to the bugs we’ve found, the apps we’ve strengthened, & the many secure years still to come. 🎉
-
We’re excited to share the first video in our Eval Villain series from @bemodtwz
This powerful security tool is designed to uncover client-side vulnerabilities and help defenders spot risky patterns.
-
🚨 Just released - details on a serious vulnerability from our Leonardo Giovannini's research. An information disclosure within error messages allowing a remote attacker to identify security tokens/credentials when #squid is used. Perfect for SSRF!🚨
#doyensec #appsec #security #vulnerability
https://github.com/squid-cache/squid/security/advisories/GHSA-c8cc-phh7-xmxr
-
In our final ksmbd research post, @sine provides a detailed walkthrough for exploiting a local privilege escalation vulnerability. If you're interested in learning more about exploitation on modern systems - check it out!
-
📢 It's here! Part two of Norbert Szetei's (@sine) research into ksmbd. See how customized fuzzing & selecting the right sanitizers led to discovering 23 Linux kernel CVEs, including use-after-frees & out-of-bounds reads/writes.
https://blog.doyensec.com/2025/09/02/ksmbd-2.html
#doyensec #appsec #security #fuzzing -
Are you located in the US/EU? Passionate about #appsec? Maybe you follow #bugbountytips or are an avid #ctf player and are ready to take the next step. If so, we're looking for our next #intern, so consider applying today - https://hackers.doyensec.com.
#doyensec #security #internship #bugbounty -
Are you located in the US/EU? Passionate about #appsec? Maybe you follow #bugbountytips or are an avid #ctf player and are ready to take the next step. If so, we're looking for our next #intern, so consider applying today - https://hackers.doyensec.com.
#doyensec #security #internship #bugbounty -
Are you located in the US/EU? Passionate about #appsec? Maybe you follow #bugbountytips or are an avid #ctf player and are ready to take the next step. If so, we're looking for our next #intern, so consider applying today - https://hackers.doyensec.com.
#doyensec #security #internship #bugbounty -
Are you located in the US/EU? Passionate about #appsec? Maybe you follow #bugbountytips or are an avid #ctf player and are ready to take the next step. If so, we're looking for our next #intern, so consider applying today - https://hackers.doyensec.com.
#doyensec #security #internship #bugbounty -
Are you located in the US/EU? Passionate about #appsec? Maybe you follow #bugbountytips or are an avid #ctf player and are ready to take the next step. If so, we're looking for our next #intern, so consider applying today - https://hackers.doyensec.com.
#doyensec #security #internship #bugbounty -
Several members of the @doyensec team are heading to @TumpiConIT 🇮🇹 for our Norbert Szetei's presentation on his awesome ksmbd security research. If you're around, make sure to talk to Luca Carettoni & the team!
#doyensec #appsec #TumpiCon -
Several members of the @doyensec team are heading to @TumpiConIT 🇮🇹 for our Norbert Szetei's presentation on his awesome ksmbd security research. If you're around, make sure to talk to Luca Carettoni & the team!
#doyensec #appsec #TumpiCon -
Several members of the @doyensec team are heading to @TumpiConIT 🇮🇹 for our Norbert Szetei's presentation on his awesome ksmbd security research. If you're around, make sure to talk to Luca Carettoni & the team!
#doyensec #appsec #TumpiCon -
Several members of the @doyensec team are heading to @TumpiConIT 🇮🇹 for our Norbert Szetei's presentation on his awesome ksmbd security research. If you're around, make sure to talk to Luca Carettoni & the team!
#doyensec #appsec #TumpiCon -
Several members of the @doyensec team are heading to @TumpiConIT 🇮🇹 for our Norbert Szetei's presentation on his awesome ksmbd security research. If you're around, make sure to talk to Luca Carettoni & the team!
#doyensec #appsec #TumpiCon -
🚀 We have just released a new Security Advisory for NASA's CFITSIO library 🛰️. Click the link for details on the Heap Overflow, Type Confusion, Out-of-Bound Writes & other vulnerabilities discovered by our Adrian Denkiewicz !
https://www.doyensec.com/resources/Doyensec_Advisory_CFITSIO_Q22025.pdf
-
Several members of the #doyensec team are here in Berlin 🇩🇪attending 🎯Offensive Con 🎯 this weekend! Ping us or just say "hallo" in person, if you'd like to talk #appsec or grab a coffee. We're looking forward to some amazing talks!
#offensivecon #security -
Several members of the #doyensec team are here in Berlin 🇩🇪attending 🎯Offensive Con 🎯 this weekend! Ping us or just say "hallo" in person, if you'd like to talk #appsec or grab a coffee. We're looking forward to some amazing talks!
#offensivecon #security -
In the Pisa 🇮🇹 area this weekend? Stop by the Google Developer Group's #DevFestPisa 2025 to catch the presentation from Doyensec's Aleandro Prudenzano - "Imparare la cybersecurity catturando bandiere" (Learn Cybersecurity by Capturing Flags 🚩).
https://www.eventbrite.it/e/devfest-pisa-2025-tickets-1205952308819