Doyensec
@Doyensec
Doyensec works at the intersection of software development and offensive engineering. We discover vulnerabilities others cannot, and help mitigate the risk.
You might like
Has reliance on SSO left orgs with a single point of exploitation? Our latest research by @lacerenza_fra explores various IdP compromise scenarios as well as how to harden and detect attacks in @goteleport installations. #doyensec #teleport #security blog.doyensec.com/2024/06/20/com…
We’re super excited to welcome Yassine Bengana (@cousky_) to the Doyensec team! 🎉 He’s bringing serious AppSec skills and great vibes — can’t wait to see the cool stuff we’ll break (and build) together 🔥 #AppSec #infosec #Doyensec
The #Doyensec team is back from another great retreat! This time we toured Ireland 🇮🇪 and even met a working 🐑sheep dog ! A great chance for our remote team to connect IRL. Also, a big thank you 🙏 to our tour guide Antonio! #security #appsec #remote
Going to be near Dublin this Wednesday (10/22)? come join #Doyensec for an evening of drinks ( 🍻/☕ ), networking, and great conversations about all things #appsec & #cybersecurity. RSVP here: docs.google.com/forms/d/1fa427… #Infosec #Pwn2Own #BSidesDublin #OWASPIreland #security
Live in or passing through #Dublin enroute to #pwn2own ? If you're in #appsec join #doyensec to talk #security over drinks (🍺/☕️) Oct. 22nd! Want to talk about our job openings or your projects? That's great too! RSVP here: docs.google.com/forms/d/1fa427… @BSidesDublin @owaspireland
🚨 Details on a serious #vulnerability from our @MaitaiThe's research. An information disclosure in error messages allows a remote attacker to identify security tokens/credentials when #squid is used. Perfect for SSRF!🚨 #doyensec #appsec #security github.com/squid-cache/sq…
In our final ksmbd research post, @73696e65 provides a detailed walkthrough for exploiting a local privilege escalation vulnerability. If you're interested in learning more about exploitation on modern systems - check it out! blog.doyensec.com/2025/10/08/ksm… #doyensec #appsec #security
🧞Your wish has been granted - the latest @pagedout_zine edition is out! In it, our @tell1c0 takes a quick look at #vibecoding, walking through the creation of an AI agent🤖. Check it out today! #doyensec #appsec #ai #Security pagedout.institute
📢 Our latest blog post shows why VBScript’s Randomize + Rnd are terrible for cryptographic token generation. See how attackers can easily recover seeds and secrets. 🔗 blog.doyensec.com/2025/09/25/yet… #doyensec #appsec #security #crypto
We'd like to welcome our newest addition Marcelino Siles Rubia (@imarcex_)! Another success story from our #internship program! The future of #appsec is looking bright 😎 at #doyensec!
📢It's here! Part 2 of Norbert Szetei's (@73696e65) research into ksmbd. See how customized fuzzing & the appropriate sanitizers led to discovering 23 Linux kernel CVEs, including use-after-frees & out-of-bounds reads/writes. blog.doyensec.com/2025/09/02/ksm… #doyensec #appsec #security
📖Read about a real-world C# #cryptography vulnerability we've discovered in the wild in our latest blog post! No math required (unless you're into that sort of thing)! blog.doyensec.com/2025/08/19/tri… #doyensec #appsec #security #csharp
Are you located in the US/EU? passionate about #appsec? Maybe you follow #bugbountytips or are an avid #ctf player and are ready to take the next step. If so, we're looking for our next #intern, so consider applying today - hackers.doyensec.com. #doyensec #security #internship
🚨Security Advisories🚨: multiple vulnerabilities in Retool (@retool), including host header injection and CSRF - discovered by Doyensec and the Robinhood (@RobinhoodApp) Red team! docs.retool.com/disclosures/cv… docs.retool.com/disclosures/cv… #doyensec #appsec #security #retool #robinhood
Our latest 🚨Security Advisory🚨 includes multiple vulnerabilities affecting the immersed platform (@immersedXR). The findings include an RCE via Session Overwriting, an RCE via CSRF and a Privilege Escalation flaw. doyensec.com/resources/Doye… #doyensec #appsec #security
📢Just published - Our new white paper comparing @semgrep's Code and Community editions! We dove into both versions of this popular tool to see what the differences were and how they performed against each other. doyensec.com/resources/Comp… #doyensec #appsec #security #semgrep
Several members of the @doyensec team are heading to @TumpiConIT 🇮🇹 for our Norbert Szetei's (@73696e65) presentation on his awesome ksmbd security research. If you're around, make sure to talk to @lucacarettoni & the team! #doyensec #appsec #TumpiCon tumpicon.org
🚀We have just released a new Security Advisory for @NASA's CFITSIO library 🛰️. Click the link for details on the Heap Overflow, Type Confusion, Out-of-Bound Writes and other vulnerabilities discovered by our @a_denkiewicz ! doyensec.com/resources/Doye… #doyensec #appsec #security
United States Trends
- 1. Grammy 445K posts
- 2. Vesia 3,425 posts
- 3. #FliffCashFriday 2,516 posts
- 4. Dizzy 11.2K posts
- 5. #drwfirstgoal N/A
- 6. James Watson 12.6K posts
- 7. Georgetown 2,306 posts
- 8. Thank a Republican 1,123 posts
- 9. Capitol Police 15.8K posts
- 10. Collar 14.4K posts
- 11. Dylan Edwards N/A
- 12. Silver Slugger 10.9K posts
- 13. Myles Rice N/A
- 14. NBA Cup 5,538 posts
- 15. Kansas 21.7K posts
- 16. Darryl Strawberry 1,844 posts
- 17. Chase 85.8K posts
- 18. Filibuster 377K posts
- 19. #cthsfb N/A
- 20. MANELYK EN COMPLICES 17K posts
You might like
-
ProjectDiscovery
@pdiscoveryio -
PT SWARM
@ptswarm -
Mastering Burp Suite Pro
@MasteringBurp -
Nicolas Grégoire
@Agarri_FR -
Gareth Heyes \u2028
@garethheyes -
Orange Tsai 🍊
@orange_8361 -
[email protected]
@0xdea -
William Bowling @[email protected]
@wcbowling -
André Baptista
@0xacb -
Soroush Dalili
@irsdl -
spaceraccoon | Eugene Lim
@spaceraccoonsec -
Louis Nyffenegger
@snyff -
Assetnote
@assetnote -
Dafydd Stuttard
@DafyddStuttard -
terjanq
@terjanq
Something went wrong.
Something went wrong.