0xor0ne @0xor0ne
| CyberSecurity | Reverse Engineering | C and Rust | Exploit | Linux kernel | PhD | My Tweets, My Opinions :) | github.com/0xor0ne Europe Joined August 2020-
Tweets2K
-
Followers55K
-
Following526
-
Likes2K
HITB2023 slides by @NCCGroupInfosec on home routers (SOHO) hacking "Your not so Home Office - SOHO Hacking at Pwn2Own" (HITB2023) conference.hitb.org/files/hitbsecc… #iot #cybersecurity
420 Byte Self-Replicating UEFI App (Binary Golf Grand Prix) Interesting reading! github.com/netspooky/golf… #uefi #infosec
Huawei Security Hypervisor analysis and reverse engineering by @the_impalabs Hypervisor analysis: blog.impalabs.com/2212_huawei-se… OOB vuln: blog.impalabs.com/2212_advisory_… #huawei #infosec
How older toolchains affect ASLR security in recent Linux kernel and glibc versions Credits @zolutal and @grsecurity zolutal.github.io/aslrnt/ grsecurity.net/toolchain_necr… #Linux #aslr
Beginners introduction to Linux processes and execve() system call iq.thc.org/how-does-linux… #Linux #cybersecurity
A two-parts blog series on reverse engineering and vulnerability analysis of DJI drones' firmware. Credits @nozominetworks Chain of weak Wi-Fi password cracking (CVE-2023-6951) followed by an unauthenticated HTTP APIs access (CVE-2023-6949) which allows for the exfiltration of…
Interesting blog post (2018) on (x86-64 ELF) Thread Local Storage (TLS) for (ELF format, Linux kernel, processes and dynamic linker) chao-tic.github.io/blog/2018/12/2… #elf #Linux
Interesting reading on antivirus evasion techniques for beginners Credits @gatariee gatari.dev/posts/a-trip-d… #infosec #evasion
Beginners introduction to basic Linux kernel exploitation techniques by @k3170Makan Debugging with QEMU: blog.k3170makan.com/2020/11/linux-… Stack Overflows: blog.k3170makan.com/2020/11/linux-… RIP control: blog.k3170makan.com/2021/01/linux-… #cybersecurity #Linux
From a one byte out-of-bounds write to a complete ROP chain Writeup by @pepsipu hackmd.io/@pepsipu/ry-SK… #cybersecurity #exploit
Introduction to IC decapsulation (2020) Great blog post by Juan Carlos Jiménez (@Palantir555) jcjc-dev.com/2020/10/20/lea… #cybersecurity #hardware
Industrial HMIs analysis and exploitation (Phoenix Contact) Credits Gabriele Quagliarella (@cdzeno) (@nozominetworks) Part 1: nozominetworks.com/blog/14-vulner… Part 2: nozominetworks.com/blog/protectin… Part 3: nozominetworks.com/blog/protectin… #infosec #embedded
Home router (SOHO) hacking "Your not so Home Office - SOHO Hacking at Pwn2Own" (HITB2023) HITB2023 presentation by @NCCGroupInfosec conference.hitb.org/files/hitbsecc… #iot #cybersecurity
memfd_create() technique for fileless ELF execution Introduction blog post by @MagisterQuis magisterquis.github.io/2018/03/31/in-… #malware #Linux
Breaking Secure Onboard Communication (SecOC) on 2021 RAV4 Prime by attacking the power steering ECU Credits Willem Melching (@PD0WM) icanhack.nl/blog/secoc-key… #automotive #infosec
Course on Linux debugging, profiling and tracing training by @bootlincom Slides: bootlin.com/doc/training/d… Lab exercises: bootlin.com/doc/training/d… Lab material (.tar.xz): bootlin.com/doc/training/d… #Linux #Linuxkernel
Great blog post by @ReynardSec_en on how to harden your #Docker platform. It's a step-by-step guide with a lot of useful tips and tricks. Check it out! reynardsec.com/en/docker-plat… #infosec
This was an interesting research (2022) by @matthiasdeeg on reverse engineering of AES protected USB flash drives blog.syss.com/posts/hacking-… blog.syss.com/posts/hacking-… #hardware #infosec
Glitching the MediaTek MT8163V SoC BootROM with fault injection (2020) Credits Ilya Zhuravlev and Jeremy Boone (@NCCGroupInfosec) research.nccgroup.com/2020/10/15/the… #faultinjection #cybersecurity
Compilers, linkers, JITs and assemblers internals with focus on software security hardening Low-Level Software Security for Compiler Developers: llsoftsec.github.io/llsoftsecbook/ #compilers #cybersecurity
Nicolas Krassas @Dinosn
122K Followers 735 Following Head of Threat & Vulnerability Mgmt @ Henkel AG & Co. KGaA https://t.co/NC1orlKrW3Abhishek Meena - {�.. @RadhaSec
31K Followers 230 Following COO at @Vulncure | Bug Hunter | 🖊️ Tester 🤝 Sharing Knowledge with infosec community 📬 Inbox Whenever Need HelpMd Ismail Šojal @0x0SojalSec
22K Followers 4K Following Cyber_Security_Researchers || 0SINT || Digital Forensics System Analysis / incident Response II Pwn || GH0ST_3xP10iT || 0ld Accounts Suspended @0xSojalSec ||Clandestine @akaclandestine
36K Followers 5K Following | Security | Osint | Threat Research | Opsec | Threat Intelligence | Infosec | Threat Hunting |Justin Elze @HackingLZ
52K Followers 5K Following Hacker/CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race carsNikhil @Ox4d5a
15K Followers 1K Following Penetration Tester | i XCHG 0's 1's and do hacks | Red Team Sorcery https://t.co/6LUhkvNA77 | #eJPT | #OSCP | #CRTP | #CRTA | #CESP | #CRTEHet Mehta @hetmehtaa
24K Followers 954 Following Security Analyst | Content Creator | I Spread Cyber Security & Talk about AI, Cloud, Tech, Tools & UpdatesYarden Shafir @yarden_shafir
19K Followers 273 Following A circus artist with a visual studio licenseStephen Sims @Steph3nSims
20K Followers 601 Following Perpetual Student | SANS Fellow | Musician | Braggart Hater | Gray Hat Hacking | VR | 🏂 | d3adc0de | oNLyHaCKeRs | https://t.co/CadJehomsUPwnFunction @PwnFunction
38K Followers 981 Following I make animated computer science videos • product & ai @pdiscoveryio • blog at https://t.co/RLiSNOVQ0W张惠倩 @momika233
15K Followers 194 Following 上天入地无所不能小女子是也!! Anda boleh melakukan segala-galanya dari syurga ke bumi, wanita kecil!! If you have any questions, please contact mekmkz @kmkz_security
18K Followers 1K Following Offensive Security fanatic, Offsec Team lead... pom-pom girl? Who fuckin' cares ??InfoSec Community @InfoSecComm
38K Followers 636 Following Largest InfoSec publication with 30k+ followers and 1M+ monthly views. 3rd edition of @IWcon_ happening in December 2023!Matthew @embee_research
12K Followers 1K Following Malware Researcher & Reverse Engineer | Creating and Sharing Educational Cyber ContentMobile Security @mobilesecurity_
31K Followers 1K Following Mobile Security ✌🏻 #MobileSecurity #AndroidSecurity #iOSsecurityMichael Koczwara @MichalKoczwara
18K Followers 2K Following Founder @Intel_Ops_io Threat Intelligence, Adversary Infrastructure Hunting, Curated TI Feed (Coming Soon) https://t.co/vixTz8xKuF https://t.co/VQWaze6gaFMr. Rc @rcx86
11K Followers 446 Following Low-Level CS, RE & Systems Programming. 16 y/o ◦ Member @thehackerscrew1 ◦ https://t.co/HDi3p5I8pV | 🇮🇳Ben @fullstackpotato
68 Followers 606 Following A full stack potato that tries to do some security. @[email protected]Annie Annu @annieannu981
3K Followers 3K Following Laughing like a baby, living like a queen.||Imran khan Fan||ไม่มีบั.. @midirabxnuyat
81 Followers 546 Following@wG1 @wG122847146
1 Followers 60 FollowingMai Hung @MaiHung2064349
0 Followers 28 FollowingIshu Vats @sukuna_hack69
13 Followers 46 FollowingAlexMarz808 @AlexMarz808
11 Followers 282 FollowingEvil Seeker @evil_seeker
0 Followers 846 FollowingPranay Patel 💙⚡ @pranaypatel_
2K Followers 3K Following Senior Software Engineer - Android/Flutter @mutualmobile | OpenSource, Tech savvy | Investor | MentorHmmCoin @HmmCoin
463 Followers 1K Following HmmCoin is the new kid on the block. HmmCoin is open source, friendly peer-to-peer digital currency.TAta Mama @TAtaMama1141796
0 Followers 15 Followingmustafa @mustafa02025004
0 Followers 176 FollowingAtlantis @phb_1024
253 Followers 4K Followingflyfan @flyfan16
0 Followers 14 Followingkaichima @kaichima194560
14 Followers 143 FollowingDon Tapper @don_tapper
116 Followers 1K FollowingInfoSecEU @Fosey3
60 Followers 1K FollowingDotNak @TheDotNak
2 Followers 84 Following The DotNak is Nothing For Stupids , But He is Everything For the Aliensmkhntr @mk_log_hntr
0 Followers 40 Following Detection Content and Splunk SME - technology enthusiast and privacy paranoid.Kevin Mwenda @Kevoaladeen
5 Followers 100 FollowingKevin @Kevin99907157
15 Followers 127 FollowingPeter @heypetegq
235 Followers 2K FollowingIvan Medina @samemedina96
0 Followers 39 Followingmaiker pacheco @MaikerPacheco10
33 Followers 910 Followingdna @dna2056524
3 Followers 52 FollowingREDACTED @InfraTau
129 Followers 1K Following Wannabe volcanologist, WWTBAM fan, the man who bits the computers, bad joke generator, and human-looking introverted universe.Nikshay Ghode @NikshayGhode
52 Followers 180 FollowingParas dubey @parasdubey10
11 Followers 22 Following # By profession ethical hacker. #By choice gray hat hackerchrysa3tos @chrysa3tos
6 Followers 84 FollowingYan Araujo @yansspsilva
3 Followers 24 FollowingPrabhat Barnwal @PrabhatBarnwal_
33 Followers 814 Following A Technophile. A Great observer. A Life-long learner. You?Bernard Ngandu 🇨�.. @BernardNgandu
542 Followers 1K Following Developer with a passion for research | Founder at @devscast_org | from PHP to Ruby 👌🏽evans kibuyu @EKibuyu
205 Followers 3K FollowingPtrace Security GmbH @ptracesecurity
53K Followers 883 Following Empowering IT Security Professionals through Hands-On Online Courses.Binni Shah @binitamshah
132K Followers 175 Following Linux Evangelist, Malwares , Security Enthusiast, Philanthropist , Reformist , Jain. binitamshah at protonmail dot comLiveOverflow 🔴 @LiveOverflow
142K Followers 1K Following wannabe hacker... he/him 🌱 grow your hacking skills @hextreeioFlorian Hansemann @CyberWarship
75K Followers 47 Following Father, Founder @HanseSecure, Pentesting, Student, ExploitDev, Redteaming, InfoSec & CyberCyber; -- Mastodon: https://t.co/KFSKYUN98MAlh4zr3d @Alh4zr3d
19K Followers 283 Following Legal Criminal | Twitch cult leader | InfosecPrep founder | Lovecraft scholar | Soros mercenary | Spiritual cargo shorts wearer | Cthulhu fhtagnHack The Box @hackthebox_eu
190K Followers 226 Following #1 Cyber Performance Center, providing a human-first platform to create and maintain high-performing cybersecurity individuals and organizations.Justin Elze @HackingLZ
52K Followers 5K Following Hacker/CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars[email protected].. @0xdea
12K Followers 19 Following When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl.ippsec @ippsec
111K Followers 350 FollowingAnge @angealbertini
24K Followers 941 Following File Formats for ever! Corkami, CPS2Shock, PoC||GTFO, Sha1tered. Security engineer @ Google/Mandiant/Flare. He/him.ςεяβεяμs - м�.. @c3rb3ru5d3d53c
21K Followers 235 Following 💕 Malware Hunter Killer 💕 #binlex & #mwcfg Developer 📽️ YouTuber 👩💻 She/Her 💍@DravenSwiftbow Support my work 👇 ☕️ https://t.co/SfTI8uJa23stacksmashing @ghidraninja
47K Followers 430 Following Security researcher with a focus on hardware & firmware. I occasionally publish stuff on YouTube. Co-founder of @hextreeio. Contact: [email protected]Yarden Shafir @yarden_shafir
19K Followers 273 Following A circus artist with a visual studio licenseZero Day Initiative @thezdi
77K Followers 17 Following Trend Micro’s Zero Day Initiative (ZDI) is a program designed to reward security researchers for responsibly disclosing vulnerabilities.Stephen Sims @Steph3nSims
20K Followers 601 Following Perpetual Student | SANS Fellow | Musician | Braggart Hater | Gray Hat Hacking | VR | 🏂 | d3adc0de | oNLyHaCKeRs | https://t.co/CadJehomsUGrzegorz Tworek @0gtweet
30K Followers 1K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-h0mbre @h0mbre_
12K Followers 577 Following tryhard at linux kernel && avatar is by Ching Yeh: https://t.co/oanjFPPhe7kmkz @kmkz_security
18K Followers 1K Following Offensive Security fanatic, Offsec Team lead... pom-pom girl? Who fuckin' cares ??The Hacker's Choice (.. @hackerschoice
20K Followers 51 Following Not much activity here anymore, follow us at https://t.co/ZFXJjJAKvM security research group: The Hacker's Choice (1995). group account.cdzeno @cdzeno
133 Followers 494 Following Security Researcher @nozominetworks focused on IoT, SCADA and embedded devices. My main interests are: binary analysis, emulation and fuzzing.Objective-See Foundat.. @objective_see
19K Followers 1 Following 🍎 🛡️ 🛠️ Open-Source Tools 📚 "The Art of Mac Malware" books 🫂 "Objective by the Sea" conference Support us on https://t.co/tuGceSeyiC 🙏Wojciech Reguła @_r3ggi
5K Followers 853 Following iOS/macOS app security researcher & blogger. All opinions are my own 🤐Max 'Libra' Kersten @Libranalysis
3K Followers 350 Following Malware analyst and reverse engineer, author of the Binary Analysis Course. DMs are always open. Opinions are my own and not the views of my employer.InfoconDB @InfoconDB
212 Followers 216 Following https://t.co/CUzNAEf27r catalogs and cross-references hacker conferencesStefan Esser @i0n1c
120K Followers 469 Following CEO of @Antid0tecom (former CEO of @SektionEins) (contact: [email protected])Samuel Groß @5aelo
24K Followers 499 Following V8 Security technical lead. Previously Project Zero. Personal account. Also @[email protected] and https://t.co/aVitnPjBieEloi Benoist-Vanderbe.. @elvanderb
5K Followers 285 Following Enthusiast reverse engineer of obfuscated and protected binaries. Exploit things @Synacktiv. Very occasionally on twitter, email/discord if you want to ping me.onejailbreak @onejailbreak_
18K Followers 287 Following The best Jailbreak News website on the Internet. IPA Library.clearbluejar @clearbluejar
978 Followers 295 Following Research | Learn | Write | Code | Repeat | https://t.co/aMkHjDdfTq #patchdiffing | Author of #ghidriff | Security Researcher @clearseclabsMarc Newlin @marcnewlin
3K Followers 765 Following Hacker. Engineer. Burner. I'm a DARPA challenge junkie, and recently acquired a fourth pair of pants. #BlackLivesMatter.Joseph Ravichandran @0xjprx
3K Followers 544 Following PhD Student studying Microarchitectural Security @MITIvan Krstić @radian
11K Followers 901 Following Head of Security Engineering+Architecture at Apple. I don’t speak for my employer. @[email protected]Filippo Bigarella @FilippoBiga
20K Followers 392 Following Security Engineering and Architecture 🇪🇺🇮🇹🇫🇷🌉 @[email protected]Andy Nguyen @theflow0
56K Followers 434 Following The opinions stated here are my own, not those of my company.Simon Scannell @scannell_simon
3K Followers 481 Following Cloud Vulnerability Research @ google. Opinions are my ownFederico Maggi @phretor
3K Followers 1K Following Cybersecurity engineer, researcher, and advisor with broad technical and scientific experience on designing, analyzing, and testing security-critical systems.Will Dormann @wdormann
26K Followers 1K Following I play with vulnerabilities and exploits. @[email protected]h4k @h4kb4n
521 Followers 40 Following LianSecurity Founder "Discord with US https://t.co/nQei46beNH"Sonar Research @Sonar_Research
10K Followers 9 Following Cutting-edge security research by @SonarSource to educate the world about code security across all software. We're also at @[email protected] 🦣Avigayil Mechtinger @AbbyMCH
2K Followers 287 Following Threat Researcher @wiz_io | Former Product Manager & Security Researcher @IntezerLabs2OURC3 @2ourc3
967 Followers 23 Following Security researcher. Building things, breaking others. (Opinions are not mine at all)Jonathan Metzman @metzmanj
2K Followers 437 Following Fuzzing on Google's Open Source Security Team. I work on FuzzBench/OSS-Fuzz/ClusterFuzz. Speaking on behalf of myself, not my employer.Lukas Seidel @pr0me
758 Followers 398 Following Firmware Security • Embedded Systems • AI x Infosec • Researcher @binarly_io • PhD Candidate @TUBerlin • Capturing Flags for @ENOFLAGJavier P Rufo @javierprtd
340 Followers 228 Following Ingeniero Informático por la UPNA. Security researcher. Android. CTF player at @amn3s1a_team & @id10t_ctf as pwner.The Linux Foundation @linuxfoundation
543K Followers 10K Following A nonprofit organization enabling mass innovation through open source. #linux #kubernetes #riscv #hyperledger #anuket #openssf #openjs #o3de and more!Linaro @LinaroOrg
5K Followers 571 Following Linaro™ brings together industry and the open source engineering community to collaboratively develop software on Arm. Arm software is our expertise.Scott Bauer | sbauer@.. @ScottyBauer1
3K Followers 443 Following I find 0 days. Android/Linux Kernel/Crap written in C. Will trade 0 days for bottles of DRCBootlin @bootlincom
6K Followers 49 Following Embedded Linux Experts - Kernel, drivers, real-time and embedded Linux development, consulting and training.cygaar @0xCygaar
86K Followers 437 Following I explain crypto topics in simple terms. contributing to @frame_xyz. advisor @MocaverseNFT.Daniel Feichter @VirtualAllocEx
6K Followers 232 Following Founder @RedOps / IT-Sec Research / Red Team/r/redteamsec @r_redteamsec
10K Followers 3 Following /r/redteamsec - bot operated by @domchell Discord - https://t.co/2dP3tTjq75SCYTHE @scythe_io
7K Followers 379 Following The most advanced attack emulation platform on the market. Know where you stand with the real thing. 🦄hackaday @hackaday
260K Followers 2K Following 🔥 Read: https://t.co/KG4TpCzO7H ☠️ Contribute: tips at hackaday dot com 👉 Projects: @hackadayio #Fediverse: @[email protected] 📒 Learn: https://t.co/p1jaCktSDtFast and Curious: Emulating Renesas RH850 System-on-Chip using Unicorn Engine Brought to you by @virtualabs and @Phil_BARR3TT to make your automotive vulnerability research easier blog.quarkslab.com/emulating-rh85…
Howdy folks🤠! Excited to see the community be able to get their hands on Incinerator! If you're a malware SME, work in threat intelligence/hunting, just getting started, or wanna first-blood android CTFs check out Incinerator! ❤️ boschko.ca/incinerator/
FIRST EPSS (Exploit prediction scoring system) is now integrated into the Open-Source firmware analyzer EMBA. Beside CVEs, Exploits, PoCs you have an additional possibility to optimize your vulnerability evaluation. Check it out github.com/e-m-b-a/emba
Apple HID devices have this neat feature where you can read the contents of flash over USB. Here's a PoC for keyboards A1843, A2449, A2450, A2520, mouse A1657, and TV remote A2854. Happy Hacking :) gist.github.com/marcnewlin/bbd…
🚀 BIG ANNOUNCEMENT! 🚀 The full rev.ng decompiler pipeline is now fully open source! Also, we'll soon start to invite people to participate in the UI closed beta. Check out our latest blog post: rev.ng/blog/open-sour…
Awesome tool released by @trailofbits ✊ Streamline your static analysis triage with #SARIF Explorer blog.trailofbits.com/2024/03/20/str… infosec.exchange/@raptor/112137…
Just published a writeup of a Buffer Overflow in TP-Link's TDDP programs causing memory structure destruction resulting in a denial of service affecting at least 26 models 🤠 this bug was exploited and discovered using Shambles 🔥 boschko.ca/tp-link-tddp-b…
Ever faced a WAF/EDR while exploiting a Java deserialization? Checkout our latest blogpost by @loadlow for a stealthier exploitation, exfiltration and persistence by diving deep into translets, transformers and more! synacktiv.com/publications/j…
Two Bytes is Plenty: #FortiGate #RCE with CVE-2024-21762 ✊ assetnote.io/resources/rese… infosec.exchange/@raptor/112109…
Weekly Blog Post: Creating a BLE Advertiser on ESP with Rust 🦀 @ThisWeekInRust Embedded Rust Bluetooth on ESP: BLE Advertiser { by @apollolabsbin } from @hashnode apollolabsblog.hashnode.dev/embedded-rust-…
I have been working on this with my team over the last year, so super happy it’s finally out ! ✨I’m providing as much details as possible about implementation and the academic research that inspired me in the post. onekey.com/blog/binary-st…
@Dariansweb @0xor0ne New security research is in progress!
A case of missing bytes: #bruteforcing your way through #Jenkins' CVE-2024-23897 (In which US crypto export restrictions prove to be still harmful after 25 years) errno.fr/bruteforcing_C… infosec.exchange/@raptor/112092…
github.com/TravMurav/Qcom… Ohhh someone reverse engineered QC SL!! :-)
Hacking a Smart Home Device - by @jmswrnr How I reverse engineered an ESP32-based smart home device to gain remote control access and integrate it with Home Assistant. jmswrnr.com/blog/hacking-a…
@0xor0ne @TrenchantARC They've refactored the website so the new link is at: l3harris.com/newsroom/edito…
@0xor0ne @bishopfox there's more: x.com/noperator/stat…
last year, my team at @bishopfox published our research on cracking fortinet firmware for good-faith vuln research. fortinet subsequently added a deeper of encryption—and we cracked it again. ChaCha20 real smooth 💃 bishopfox.com/blog/further-a…