Me
Rubrique-à-brac
The name of this blog is a wink to Gotlib, a great comics writer and illustrator.
whoami
- /id: Jeffrey Bencteux
- /alias: highlander/h1ghl4nd3r - “There can be only one” - good movie
- /interests: programming, network engineering, information security, CTF, general science
- /certifications:
- Offensive Security Certified Professional (OSCP)
- Zero-Point Security Certified Red Team Lead (CRTL)
- Zero-Point Security Certified Red Team Operator (CRTO)
- ELearnSecurity Certified Professional Penetration Tester (eCPPTv2)
- ELearnSecurity Certified Threat Hunting Professional (eCTHP)
- ElearnSecurity Certified Incident Responder (eCIR)
- ElearnSecurity Web Application Penetration Tester eXtreme (eWPTXv2)
- ElearnSecurity Web Application Penetration Tester (eWPT)
- ElearnSecurity Junior Penetration Tester (eJPT)
- AZ-500: Azure Security Engineer
- AZ-900: Microsoft Azure Fundamentals
- /vulnerabilities
- CVE-2023-40303: GNU inetutils
- CVE-2023-38336: netkit-rcp (rsh-client)
- CVE-2023-36631: Binisoft’s (Malwarebytes) Windows Firewall Control
- CVE-2022-27239, CVE-2022-29869: cifs-utils
- CVE-2022-26250, CVE-2022-26251: Synametrics' Synaman
- CVE-2021-20049, CVE-2021-20050: SonicWall SMA
- /mentions
- 27/09/2022: Deploying mail security in Microsoft Office 365
- 17/08/2022: Azure AD PIM as a Security Boundary
- 08/07/2022: Email security pitfalls
- 27/06/2022: Phish’n’Chimps: mail spoofing via marketing and CRM platforms
- 21/06/2022: All Your SPF Includes Are Belong To Us
- /books
- Email security: attack and defence.
You can also find me there
- root-me: excellent infosec learning platform, trying to reach the top :D
- TryHackMe: another really good infosec platform.
- stackoverflow: debugging some stuff
- github: checking out cool projects and making some. I also had a work-related account for the ANSSI there.