//
sign in
Profile
by @danabra.mov
Profile
by @dansshadow.bsky.social
Profile
by @jimpick.com
AviHandle
by @danabra.mov
AviHandle
by @dansshadow.bsky.social
AviHandle
by @katherine.computer
EventsList
by @katherine.computer
ProfileHeader
by @dansshadow.bsky.social
ProfileHeader
by @danabra.mov
ProfileMedia
by @danabra.mov
ProfilePlays
by @danabra.mov
ProfilePosts
by @danabra.mov
ProfilePosts
by @dansshadow.bsky.social
ProfileReplies
by @danabra.mov
Record
by @atsui.org
Skircle
by @danabra.mov
StreamPlacePlaylist
by @katherine.computer
+ new component
Profile
🐝 New blog post at skyblue.team/posts/unsafe... At Airbus CERT, we worked on the sudo CVE-2025-32463 to create detection and hunting rules. Based on the underlying vulnerability, we developed an eBPF based tool to monitor unsafe chroot behavior regarding NSS reloading. github.com/airbus-cert/...
Ever dreamt of parsing the $I3O INDX files from a 80GB drive in under 10 seconds? ⏱️ Dream no more ✨ Courtesy of @eeriedusk.bsky.social and #RustLang πŸ¦€πŸ¦€πŸ¦€ #DFIR #Forensics
New release of minusone (v0.4.0) with a lot of new deobfuscation pattern : github.com/airbus-cert/... 🚨Online version : minusone.skyblue.team 🚨 #powershell #deobfuscation
7mo
11mo
10mo
A story of a bee, a sandwich and a crab
skyblue.team
Analyzing the unsafe chroot behavior of sudo CVE-2025-32463 | Sky Blueteam
Powershell Linter. Contribute to airbus-cert/minusone development by creating an account on GitHub.
github.com
Airbus CERT
GitHub - airbus-cert/minusone: Powershell Linter
Airbus CERT
We just released an $I30 INDX carver written in Rust! πŸ¦€ πŸš€ github.com/airbus-cert/...
11mo
GitHub - airbus-cert/indx-rs: $I30 INDX Carver
$I30 INDX Carver. Contribute to airbus-cert/indx-rs development by creating an account on GitHub.
github.com