Aurélien Duboc2026-02-21T10:50:08+00:00Aurélien Dubochttps://www.duboc.xyzaurelien@duboc.xyzEN - Prometheus: Outscale VM service discovery (new feature)/prometheus-outscale-vm-service-discovery2026-02-21T00:00:00+00:00<blockquote> <p>Prometheus can discover scrape targets from cloud APIs (EC2, Azure, GCE, etc.). This post describes a new discovery integration for <strong>Outscale Cloud</strong>: <code class="language-plaintext highlighter-rouge">outscale_sd_configs</code>, contributed upstream.</p> </blockquote> <h1 id="what-is-outscale">What is Outscale?</h1> <p><a href="https://outscale.com/">Outscale</a> is a cloud provider offering an AWS-compatible API (among others). If you run workloads on...EN - Prometheus AWS EC2 service discovery: fixing the custom endpoint (regression fix)/prometheus-ec2-sd-endpoint-fix2026-02-21T00:00:00+00:00<blockquote> <p>After the migration to AWS SDK v2, Prometheus AWS EC2 service discovery stopped applying the configured <code class="language-plaintext highlighter-rouge">endpoint</code> option. This post summarizes the regression and the fix contributed upstream.</p> </blockquote> <h1 id="context">Context</h1> <p>Prometheus <a href="https://prometheus.io/docs/prometheus/latest/configuration/configuration/#ec2_sd_config">EC2 service discovery</a> lets you discover scrape targets from AWS EC2. Some setups use...EN - Carrefour internal CTF (31/10/2025) - vulnerability themes/carrefour-ctf-vulnerabilities2025-10-31T00:00:00+00:00<blockquote> <p>CarrefourTheFlag 2025 (C4CTF) was an internal Capture The Flag run in late October 2025, with 102 participants. This post summarises the <strong>vulnerability types</strong> that appeared in the more advanced challenges and illustrates them with <strong>generic</strong> examples. It is not a write-up or solution guide.</p> </blockquote> <h1 id="context">Context</h1> <p>The CTF...EN - Velero disaster recovery: pre-hooks and post-hooks for application-consistent backups/velero-disaster-recovery-pre-post-hooks2024-06-12T00:00:00+00:00<blockquote> <p>In 2024 I spent a lot of time on disaster recovery (DR) for Kubernetes, mainly with <a href="https://velero.io/">Velero</a>. Getting backups that are safe to restore for stateful apps (databases, queues) means making them <strong>application-consistent</strong>. Velero’s pre-hooks and post-hooks are the right tool for that. This post sums up how...EN - Filecoin ecosystem: Lotus miner, Farcaster, and CID Gravity/filecoin-ecosystem-lotus-cid-gravity2023-08-22T00:00:00+00:00<blockquote> <p>In 2023 I worked in the <a href="https://filecoin.io/">Filecoin</a> ecosystem, mainly around <a href="https://github.com/filecoin-project/lotus">Lotus</a> (miner and node) and tooling for storage providers. This post is a short overview of that context and of <a href="https://www.cidgravity.com/">CID Gravity</a>, a gateway and management layer that makes it easier to work with Filecoin storage...EN - Re-parenting processes to a new terminal with reptyr/reptyr2023-03-25T00:00:00+00:00<blockquote> <p>Reptyr lets you move a running process (e.g. started in one SSH session or terminal) into another terminal or into tmux/screen, without stopping it. Useful when you forget to start a long job inside tmux, or when you need to hand off a process to another session.</p> </blockquote> <h1...FR - Writeup - HackSecuReims 2022/hsr-20222022-03-15T00:00:00+00:00<h1 id="---sommaire--">– – Sommaire – –</h1> <ul> <li><a href="#reverse-infinitecrackme-1">[Reverse] InfiniteCrackme 1</a></li> <li><a href="#reverse-infinitecrackme-2">[Reverse] InfiniteCrackme 2</a></li> <li><a href="#misc-oneliner">[Misc] Oneliner</a></li> <li><a href="#programming-mathematician">[Programming] Mathematician</a></li> <li><a href="#web-werkzeug-fuzzing-1">[Web] Werkzeug Fuzzing 1</a></li> <li><a href="#web-werkzeug-fuzzing-2">[Web] Werkzeug Fuzzing 2</a></li> <li><a href="#web-werkzeug-fuzzing-3">[Web] Werkzeug Fuzzing 3</a></li> </ul> <p><br /></p> <hr /> <p><br /></p> <h1 id="reverse-infinitecrackme-1">[Reverse] InfiniteCrackme 1</h1> <h2 id="source-de-téléchargement">Source de...EN - Kubernetes service accounts for Vault CSI with Confluent Helm charts/confluent-helm-vault-csi-service-accounts2021-11-17T00:00:00+00:00<blockquote> <p>When using the Vault CSI driver to inject secrets or certificates into pods, each pod needs a dedicated Kubernetes service account. This post describes a contribution to Confluent’s Kafka Helm charts to make those service accounts configurable.</p> </blockquote> <h1 id="context">Context</h1> <p>The <a href="https://developer.hashicorp.com/vault/docs/platform/k8s/csi">Vault CSI provider</a> lets Kubernetes pods get...EN - Introduction to Hacking Android/introduction-to-hacking-android2020-11-10T00:00:00+00:00<blockquote> <p>This article might help you to reverse Android application and access new features upon it. I disclaim any liability if you use this article for illegal actions.</p> </blockquote> <p><em>Thanks <a href="https://twitter.com/cyxo_o">@cyxo_o</a> for helping me on this</em></p> <h1 id="live-presentation-on-twitch">Live presentation on Twitch</h1> <iframe width="100%" height="378" src="https://www.youtube.com/embed/uybsqPEnSd4" frameborder="0" allow="accelerometer; autoplay; clipboard-write;...EN - Root-Me API: dealing with 429 rate limits when there was no public API/rootme-api-429-rate-limits2020-05-15T00:00:00+00:00<blockquote> <p><a href="https://www.root-me.org/">Root-Me</a> is a platform for security challenges and CTF. At the time this project was built, <strong>there was no official public API</strong>. I wrote an unofficial API (<a href="https://github.com/zteeed/Root-Me-API">Root-Me-API</a>) that exposed user stats, challenges, and scores. The main difficulty was dealing with <strong>rate-limiting</strong> on the server side (HTTP...