Reviewed advisories hit a four-year low, malware advisories surged, and CNA publishing grew—here’s what changed and what it means for your triage and response. GitHub published 4,101 reviewed advisories in 2025. This is the **fewest number of reviewed advisories since 2021**.  Does this mean open source is shipping more secure […]

This post explores how modifying a Dell UEFI firmware image at the flash level can fundamentally undermine platform security without leaving visible traces in the firmware interface. By directly patching the firmware and reflashing it to the chip, it was possible to disable protections designed to mitigate DMA-based attacks while […]

# Kubernetes forensics 1/3 : what the container ? In 2025, Synacktiv CSIRT observed a significant rise in attacks and compromises targeting Kubernetes environments. The consensus is that these attacks are bound to keep expanding as much as the technology itself. To better understand how a Kubernetes cluster works and […]

The mysterious unreadable `kernseal.txt` file on PaX’ documentation page has been sitting there since 2003, described as “sealed kernel storage design & implementation.” In 2006, it was described as: > the problem KERNSEAL sets out to solve is kernel self-protection, that is, assuming arbitrary read/write access to kernel memory (by […]

/ **security-research** Public # Salesforce Workbench Disclosure ## Package No package listed ## Affected versions TBD ## Patched versions TBD ## Description Reported to: Salesforce Product: Workbench Date Reported: 2026-03-23 Severity: Redacted until the 90-day disclosure is lifted. 90-day Deadline Expires: 2026-06-21

# Using Markov Models for Password Complexity Estimation in Microsoft Edge Despite recent advancements in adoption of passkeys, passwords remain one of the most widely used authentication mechanisms on the web, yet repeated studies have demonstrated that humans are particularly bad at generating them. Chromium (the open-source project that Edge […]

A high impact bug sometimes needs just one small additional detail before it turns into a practical attack vector. For that reason, when doing vulnerability research, I flag even errors or odd behaviors that look irrelevant at first. In some cases, those findings become the missing puzzle piece of a […]

Tesla runs a bug bounty program that invites researchers to find security vulnerabilities in their vehicles. To participate, I needed the actual hardware, so I started looking for Tesla Model 3 parts on eBay. My goal was to get a Tesla car computer and touchscreen running on my desk, booting […]

# Exploring cross-domain & cross-forest RBCD The Resource-based Constrained Delegation (RBCD) attack is well-known from pentesters and attackers: by editing the msDS-AllowedToActOnBehalfOfOtherIdentity attribute of a machine account, an attacker can impersonate users on said machine. Even though this attack mechanism has been thorougly documented on a single domain, and can […]

Tesla runs a bug bounty program that invites researchers to find security vulnerabilities in their vehicles. To participate, I needed the actual hardware, so I started looking for Tesla Model 3 parts on eBay. My goal was to get a Tesla car computer and touchscreen running on my desk, booting […]