I break Windows.... @DFIRdeferred
Spec Ops Army Vet, Ham Extra (satellites, sdr, dmr), Team Purple, Wireless Wizard, Creator of Identity Security Village trimarcsecurity.com United States Joined May 2020-
Tweets433
-
Followers512
-
Following452
-
Likes1K
Super stoked to share that @JimSycurity and I will be leading an Active Directory Security course at BSides Charm 2025! We will cover Active Directory infrastructure, common misconfigurations, vulnerabilities and mitigations, and hands-on labs!
New #AADInternals version is finally out now: ▪ Moved endpoint related stuff to new module: AADInternals-Endpoints ▪ Added blue team stuff: Get app consent info, find backdoors, convert SID<>Entra ID Object ID, find abusable dynamic groups ▪ Added red team stuff: Get ESTSAUTH…
Make sure you stop by the @TrimarcSecurity ISV (Active Directory Hacking) today at @hthackers Hackers Teaching Hackers. There might even be a second CTF flag there if you know where to look.....
Do you allow your high privileged users in Entra ID (e.g. Global Admin) to register authentication methods themselves after initial setup? Do you, to detect malicious actions, monitor the addition of e.g. passkeys and follow up with the user?
When it comes to Active Directory Security Descriptors, ignorance is NOT bliss... it can be a full-on SLASHER FLICK of misconfigurations 🔪 This Thursday, @JimSycurity shares insights we've learned across thousands of AD & Entra ID security assessments -- Tips that can arm you…
New project: FlameScale OS. An operating system aimed at Active Directory/Windows security research. I will be adding more functionality weekly on Sundays. Get your hands dirty with it at the @TrimarcISV (AD Hacking Village) at @hthackers Nov 13th-15th. github.com/dfirdeferred/F…
I created a wrapper/menu to make downloading and opening all of the @TrimarcSecurity tools on github easier and in one place. Just run the script and select which tool you want to download/open. github.com/dfirdeferred/T… #trimarc #activedirectory
Need a quick set of useful red/purple team Active Directory tools .....and happen to be running a Debian based distro......? Well look no further! Here are 2 scripts to save you 3 seconds. #activedirectory github.com/dfirdeferred/R…
Im stoked to be presenting my new tool! See you all this week!
Wild Wild West Hackin Fest is right around the corner! Im so ready for some good ol' "Break and Make!"
Wild Wild West Hackin Fest is right around the corner! Im so ready for some good ol' "Break and Make!"
Make sure you stop by the @TrimarcSecurity table at @GrrCON to start getting directly active with your Active Directory security! #grrcon
GrrCON is right around the corner! See you there!
I had a blast speaking at @BSidesCT last weekend. What an awesome conference! I cant wait to see whats in store for next year.
Slides from my @MCTTP_Con talk "A Decade of Active Directory Attacks - What We've Learned & What's Next" are now posted: trimarc.co/SeanTalkMCTTP2…
I can't wait!
If you have VMware ESXi and Active Directory in your environment, take 5 minutes now & create a group in each AD domain called "ESX Admins". Make sure that the "ESX Admins" group is in a top-level administrative OU that only your AD admins manage. #QuickFix
If you have VMware ESXi and Active Directory in your environment, take 5 minutes now & create a group in each AD domain called "ESX Admins". Make sure that the "ESX Admins" group is in a top-level administrative OU that only your AD admins manage. #QuickFix
Hacker Summer Camp is just a couple weeks away & the Trimarc crew will be there! Trimarc Activities: * Office Hours (me) * Lightning Talks (@TechBrandon & me) * Microsoft Identity security Meet-up Want to join us? Signup here: trimarcsecurity.com/vegas-show *limited availability
One thing we highlight with customers during assessments are agents installed on DCs. I’ve seen a poorly configured Tanium query hang every DC - effectively a DoS since AD doesn’t work if you can’t talk to a DC. It’s time to talk about what agents are on DCs & the risks
One thing we highlight with customers during assessments are agents installed on DCs. I’ve seen a poorly configured Tanium query hang every DC - effectively a DoS since AD doesn’t work if you can’t talk to a DC. It’s time to talk about what agents are on DCs & the risks
ADCS attack paths with #BloodHound by @_wald0 and @Jonas_B_K

John Hammond @_JohnHammond
298K Followers 3K Following Cybersecurity Researcher @HuntressLabs || Just Hacking Training @JustHackingHQ w/ @ethicalhacker || https://t.co/UtsNJiyQtS || https://t.co/narO3sz7y6
rand0h @dakacki
23K Followers 1K Following Dogfather / Goon / @WSIIAOfficial / Existing in bluer skies @ https://t.co/ROEAl8ngeA / https://t.co/m3LR3M8mBX
Phillip Wylie @PhillipWylie
51K Followers 20K Following xIoT Security Evangelist @phosphorusinc | Offensive Security Expert | Phillip Wylie Show Podcast Host @thehackermaker | @pentesterblue coauthor
Justin Bollinger @Bandrel
6K Followers 2K Following hacker, finder of EKUwu (CVE-2024-49019) https://t.co/XQuqk8nGG6
Charles Shirer @bsdbandit
25K Followers 26K Following A Hacker who is A Lover of People, and Life @RetroTwinz @Secbsd, @GrumpyHackers, @NovaHackers, @deadpixelsec @hacknotcrime Advocate @PositivelyBlue_ OSCP, OSWP
Mike Felch (Stay Read... @ustayready
16K Followers 2K Following Targeted Ops Red Team @ TrustedSec | Hacking since Renegade BBS backdoors | Prior CrowdStrike/BHIS | In Christ's grip | I speak for myself only | K1HAQ
Jim Sykora @JimSycurity
2K Followers 2K Following I enjoy security, technology, learning, books, & the great outdoors. Trying to be human & kind. Opinions = mine. He/Him/Hän
shenetworks @shenetworks
72K Followers 844 Following a menace • hacker • shenetworks @ TikTok & YouTube & Twitch. Co-Host of @breakingthepod. New episodes biweekly.
Sean Metcalf @PyroTek3
36K Followers 615 Following Identity Security Architect @ TrustedSec. Microsoft Certified Master #ActiveDirectory & former Microsoft MVP. Co-Host @ Enterprise Security Weekly. He/Him. #BLM
mathew @mathew_dev
3K Followers 1K Following technologist, systems architect (code, data, infrastructure and networking). infantry (ret.) hobbies: RF Radio, Motorcycles. pronouns: boss/chief/sir/top
Jon Gorenflo 🇺🇦... @flakpaket
3K Followers 1K Following Family Man, Army Vet, Consultant, Founder @StartATTACKD, @SANSInstitute Principal Instructor, @hthackers Director.
Jeff McJunkin @jeffmcjunkin
12K Followers 4K Following Started in ops&blue, now I hack for a living. SANS author/instructor in Oregon. Founder: https://t.co/c36tmCXDpt. He/him. @[email protected]
aabbc123asd @lzzbb111
3 Followers 793 Following
Anshuman Srivastava @TweetAnshumaan
373 Followers 6K Following Networking + Cyber Security - Firewalls + Ethical Hacking & Penetration Testing Enthusiast
munish tyagi @munishtyagi20
12 Followers 345 Following Technical specialist, Active Directory, Entra ID
Irquifee @Irquifee61254
39 Followers 1K Following
Plaqor @Plaqor0832857
37 Followers 2K Following
Nell01 will01 @NWill0181204
231 Followers 7K Following
Vinod More @vinodm41
95 Followers 2K Following Incident Response | Threat Hunting | Threat Intelligence | Threat Research | Red Teaming
jengelage @jengelage1
8 Followers 338 Following
Tursmoughl @Tursmoughl9WaD
36 Followers 938 Following Skilled in career development planning, enhancing employee loyalty and motivation.
Malaika @Tearsoyq5eX
4 Followers 483 Following
Boutil @Boutil132872
89 Followers 2K Following
TracyVirginia @Kn4JM6S82X1CQ
57 Followers 7K Following
Kim @duffy_kim53
281 Followers 3K Following
yeshuibo @yeshuibo
106 Followers 6K Following
てらだてしょう... @teradatesh8239
51 Followers 3K Following
Mickey1m @mickey221m
27 Followers 632 Following
Haxolotl 🌻 @Haxo1ot1
1K Followers 1K Following Chaotic good security analyst | CTI & OSINT | Wanna be threat hunter | They/them | 🏳️🌈 [email protected]
asmodeus 🅅 @asmodeusyrzero
310 Followers 610 Following Human, Trekkie, AppSec Engineer | DEFCON Smerch Goon | 👬 | Nerd | #ActuallyAutistic | ADHD | n00b hacker | BLM | 🏳️🌈 | @hacknotcrime advocate |
Chris Myers @swizzlez_
446 Followers 390 Following Co-Founder @getCourseStack Previously co-founder @snaplabsio
TeamVega @TeamVega666
5 Followers 188 Following
Peter Schawacker @PeterSchawacker
1K Followers 7K Following Cyber Business Innovator & Strategist | CISO | AI | GRC & SOC | DFIR/TTX | SecOps | Drive Margin | Nearshoring | LATAM-USA | Emerging Markets | GTM Advisor
Darren Webb ☠🕷 @spyd3r
1K Followers 7K Following Computational demonologist. The following tweets are classified SECRET GOLD JULY BOOJUM. 101 824 5150
R@ffutZen @raffutz
719 Followers 4K Following Security - obviously opinions are my own. Proud member of @r00tmi & @BsidesMilano #respect4responders
Theetor @TheetorcYmtaHg
38 Followers 1K Following
KiTchiNotchi @kitchinotchi
48 Followers 2K Following ليس ولكم نزال فلكم ولي خسارة / لستم بي قتال ولا انا فيكم قصارة /انا السان اللهب المقاص عصارة/ نحو المساح هل قفارة / انا الصحراء لي بكم نضارة
Sokratis @sokratissz
63 Followers 1K Following
Aman Kumar @AmancoolSam
188 Followers 2K Following Security Researchers - CRTO || CRTP || OSCP || CEH
jSecDown @jSecDown
11 Followers 196 Following
JodieMarner @EA3PrzE5EJ6cv
67 Followers 7K Following
Trimarc @TrimarcSecurity
5K Followers 136 Following We are the experts in Active Directory, Entra ID, and Identity security. Find out more about our services at https://t.co/3kWA6f7dh1.
Seebler @Seebler9Zq
29 Followers 4K Following
RuffLandings @RuffLandings
95 Followers 2K Following Dogs. Aviation. Cybersecurity. Not necessarily in that order. @[email protected]
dreh4cks @dreh4cks
2 Followers 55 Following
Bruno Martins @thyskorzen
195 Followers 3K Following European. Metalhead. IT enthusiast. Creative thinker. Two-time champion. 💚 Opinions are my own.Albert Tedjadiputra @atedja
70 Followers 2K Following IT professional specializing in designing, implementing, and managing Microsoft Azure, M365 and VMware technologies.
Bryanliftedit @bryanliftedit
3 Followers 93 Following
Dave Kennedy @HackingDave
223K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Pod. God + Family/Hacker/CSO/USMC/Intel/Fitness. Make the world a better place.
SwiftOnSecurity @SwiftOnSecurity
405K Followers 9K Following computer security person. former helpdesk.
John Hammond @_JohnHammond
298K Followers 3K Following Cybersecurity Researcher @HuntressLabs || Just Hacking Training @JustHackingHQ w/ @ethicalhacker || https://t.co/UtsNJiyQtS || https://t.co/narO3sz7y6
Justin Elze @HackingLZ
65K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Florian Roth ⚡️ @cyb3rops
206K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
rand0h @dakacki
23K Followers 1K Following Dogfather / Goon / @WSIIAOfficial / Existing in bluer skies @ https://t.co/ROEAl8ngeA / https://t.co/m3LR3M8mBX
Phillip Wylie @PhillipWylie
51K Followers 20K Following xIoT Security Evangelist @phosphorusinc | Offensive Security Expert | Phillip Wylie Show Podcast Host @thehackermaker | @pentesterblue coauthor
Bryson 🦄 @brysonbort
19K Followers 495 Following 🦄 @scythe_io @grimmcyber, Sr Advisor @IST_Org, NatSec Inst Sr Fellow, Co-Fdr @ICS_Village, @c2_matrix co-creator, USMA Science Board, Angel Investor, US Army
Accidental CISO @AccidentalCISO
57K Followers 2K Following I accidentally became the CISO. I didn't want this job, but the job chose me. I'm scared, and I want to go home.
Jack Rhysider 🏴... @JackRhysider
164K Followers 4K Following Creator of @DarknetDiaries. Tell me a good hacker story. 💻🔦⤵️🐰🕳️ Discord: https://t.co/qxanMuJ5X2
InfoSecSherpa 🏔️ @InfoSecSherpa
51K Followers 4K Following #Librarian 📚 to #InfoSec 🤖 #Philly area hoagie mouth 🥨#Ginfosec 🍸 #Everton ⚽️ Your guide up a mountain of information! 🏔️ #GoBirds
TCM Security @TCMSecurity
207K Followers 360 Following Come learn to hack at TCM Security Academy! Veteran owned. Quality results.
Black Hills Informati... @BHinfoSecurity
48K Followers 2K Following Specializing in pen testing, red teaming, and Active SOC. We share our knowledge through blogs, webcasts, open-source tools, and Backdoors & Breaches game.
Charles Shirer @bsdbandit
25K Followers 26K Following A Hacker who is A Lover of People, and Life @RetroTwinz @Secbsd, @GrumpyHackers, @NovaHackers, @deadpixelsec @hacknotcrime Advocate @PositivelyBlue_ OSCP, OSWP
Mike Felch (Stay Read... @ustayready
16K Followers 2K Following Targeted Ops Red Team @ TrustedSec | Hacking since Renegade BBS backdoors | Prior CrowdStrike/BHIS | In Christ's grip | I speak for myself only | K1HAQ
strandjs - strandjs@b... @strandjs
45K Followers 2K Following I will light the way by the bridges I burn. Retired Senior SANS Instructor IANS Faculty Black Hills Information Security Active Countermeasures
Jen Gentleman 🌺 @JenMsft
94K Followers 231 Following I work on the Windows engineering team at Microsoft and help with feedback for Start menu, Settings, taskbar, input + more
TracketPacer @TracketPacer
58K Followers 396 Following 🚀 rockit network engineer 👩🏼💻🛜 weird use cases & silly tech | find me on a platform not run by a nazi 👋🏼
Dr. Nestori Syynimaa @DrAzureAD
20K Followers 2K Following Principal Identity Security Researcher at Microsoft. Ex-Secureworks. (MSc, MEng, PhD, CITP, CCSK). And yes, opinions are my own ;)
Chris Sanders 🔎 �... @chrissanders88
34K Followers 489 Following Ed.D. | Founder @networkdefense @RuralTechFund | Former @Mandiant, DoD | Author: Intrusion Detection Honeypots, Practical Packet Analysis, Applied NSM
Paul Asadoorian @paul... @securityweekly
76K Followers 9K Following Founder of Security Weekly, Principal Security Evangelist at Eclypsium
ACE Responder @ACEResponder
17K Followers 225 Following Practice threat hunting & detection engineering in a real SIEM with real attacks. Join us and become the best.
Active Directory Thin... @ADAllTheTime
3K Followers 718 Following Microsoft Certified Master (MCM): Active Directory. Previously AD field engineer at Microsoft. Notes from the field & the lab (@duff22b)
Rohan Vazarkar @CptJesus
17K Followers 110 Following Penetration Tester and BloodHound Developer @specterops
Chris Sistrunk @chrissistrunk
10K Followers 4K Following Husband, Dad, ⚡EE⚡, Technical Leader @Mandiant ICS/OT, @BEERISAC #002, @BSidesJackson, @LaTech Alum, bbq engr, weirdo, klugemeister, #sockstatus #DJaaS, FSD
Michael Koczwara @MichalKoczwara
23K Followers 2K Following Threat Researcher/Founder @Intel_Ops_io Threat Intelligence, Adversary Infrastructure Hunting, Curated TI Feed (Coming Soon) https://t.co/VQWaze6gaF
Kathryn Hedley @4enzikat0r
3K Followers 802 Following #DFIR & #DFIRFit geek, SANS Author/Instructor #FOR308, Instructor #FOR500. All opinions mine.
Matthew @embee_research
14K Followers 2K Following Security Researcher, Creating and Sharing Educational Content.
Jiří Vinopal @vinopaljiri
10K Followers 462 Following Threat Researcher at Check Point @_CPResearch_ #DFIR #Reversing - All opinions expressed here are mine only. https://t.co/iWvwWF1AnN
Karsten Hahn @struppigel
24K Followers 756 Following MalwareAnalysisForHedgehogs, Principal Malware Researcher at GDATA, he/him 🦔🌈🏳️⚧️
Kostas @Kostastsale
18K Followers 367 Following @TheDFIRReport | No longer active here – find me on Bluesky: https://t.co/qHzDSxCRfG. 🇬🇷🇨🇦
Anurag Khanna @khannaanurag
780 Followers 1K Following SANS Certified Instructor, Incident Response@CRWD, GSE #97, Detecting and Responding to Security breaches. My personal views. Down Under.
THOTCON! @thotcon
10K Followers 132 Following Chicago's Hacking Conference - May 30th & 31st 2025 - Discord: https://t.co/2EUmMpHcJc - a 501(c)(3) nonprofit organization - Donate: https://t.co/gxZT07dbCU
Burp Suite @Burp_Suite
131K Followers 14 Following Burp Suite is the leading software for web security testing.
Web Security Academy @WebSecAcademy
130K Followers 36 Following Free web security training from @PortSwigger
sysengineer @_sysengineer
27K Followers 961 Following I do not give Facebook permission to print anything off my computer
Supriya & 🐆 @supg0x80
971 Followers 629 Following (DFIR) Security Engineer @ AMZN | Passionate about #dfir and #cloudsec | @MidAtlanticCCDC 2017 | 🤍Researching/Learning | (she/her) Opinions = mainly my 😸’s
investigatorchic @investigatorchi
2K Followers 586 Following (She/her) @wallofsheep @hacknotcrime Speaker, keynote, and author - https://t.co/ZEMgoDYdm9
Jason Blanchard @BanjoCrashland
6K Followers 1K Following Storyteller. Christian. Husband. Father. Author: I Am Whale Man. Black Hills InfoSec: Excitement Co-Creator. REKCAH! Comics: Co-Chief Creative Officer.
Mike Padrick @FearlessSec
2K Followers 538 Following Christ follower | Husband and father | ILF Volunteer | martial artist, turned pool man, turned penetration tester | CARTP | eCPPTv2 | OWSP | CVEx2
Ray Felch @llcoder
152 Followers 52 Following
Matthew Green is on B... @matthew_d_green
150K Followers 1K Following I teach cryptography at Johns Hopkins. Mostly on BlueSky these days at https://t.co/GI4QlxZr2S.
Beau Bullock @dafthack
18K Followers 659 Following Hacker, trainer, and guitarist | Black Hills InfoSec #RedTeam | @BreakForge Training | Produces music to hack to at @N0BANDW1DTH
@manicPxiSIEMGrl@info... @manicPxiSiemGrl
511 Followers 388 Following @[email protected] Hacker | break into buildings | gone phishing | runs on coffee fumes and spite | Tweets are my own | she/her
Blake Regan @crash0ver1d3
739 Followers 702 Following Christian | #GirlDad | #BlueTeam | #DFIR | Leader | Blue Team Con Staff | My views != my employer @ https://t.co/ZvmPDjcFLV
Julian @Japluas93
146 Followers 902 Following To say that I am hacking my life away would be an understatement. Information Security and Cybersecurity Professional. Doc Keyboard. I'm your huckleberry.
CYBERWARCON @CYBERWARCON
6K Followers 569 Following #CYBERWARCON 2025 Registration and CFP are now open | 📧 Subscribe to receive updates at https://t.co/5lb0WvK6MJ
sec_junkie @sec_junkie
759 Followers 1K Following #Security addict, #Linux enthusiast, #AntiForensics fan, #DarthBane loyalist. (he/him)
Nick Bouwhuis @nickbouwhuis
2K Followers 2K Following NOC engineer 👨💻 at @Speakupnl | Tweets mostly in Dutch 🇳🇱 | Please disregard any undeserved compliments | Views are my own | https://t.co/ZGRvVCJMfb
eric brumfield @ericbrumfield18
1 Followers 0 Following
JD John @Infin_silence
1 Followers 3 Following
Mike Weaver @MADMike_365
231 Followers 269 Following Microsoft MVP | Office 365 Technologist Specializing in Mergers, Acquisitions & Divestitures | Equality & Inclusion Advocate | Author of https://t.co/jyetLJeBeE | He/Him
paulrobichaux @paulrobichaux
4K Followers 2K Following Cajun. Marine. Pilot. Triathlete. Exchange MVP. he / his. Always learning & doing new stuff. Employed by, not speaking for, Keepit. [email protected]
Jeremy Stevens @JStevens5591
7 Followers 115 Following
Karen Stones @KarenMStones
191 Followers 156 Following Modern Marketing Mastermind. Tech. Water. Sun. Cycle. Founder & Managing Partner @13JacksInc Marketing Agency. Podcast host ThirtyFiveSixtyFour.
Jorge Lopez @JorgeALopez
510 Followers 868 Following Product Manager | Proud Latino : 🇲🇽 🇺🇸 - ⚽️ 🏋️♀️ //
Mark Rackley 🐗 @NA... @mrackley
8K Followers 1K Following Microsoft MVP, SharePoint Hillbilly, Director @ Protiviti, Solutions Architect, Blogger, Speaker, Author, & general pain in the butt - My tweets are my own
Tony Redmond @12Knocksinna
12K Followers 97 Following Lead author for the "Office 365 for IT Pros" eBook and site (https://t.co/VTzkNBbhr4). Often rambles, but sometimes hits the point.
Manuel Carlotto @ManuelCarlotto
275 Followers 394 Following
Whitney Champion 🍪... @shortxstack
30K Followers 11K Following security architect / cofounder @Recon_InfoSec / cofounder @DDI_training / ♥️♥♥ == @eric_capuano, nerdery, rainbows, sweatpants | she/her 🤍🌿🍄🌈🫶
Elad Shamir @elad_shamir
5K Followers 39 Following
Charlie Clark @exploitph
5K Followers 1K Following
Christopher Peacock @SecurePeacock
7K Followers 2K Following #PurpleTeam | Ex @RaytheonTech MSSP, @SCYTHE_IO, & @GD_OTS | Taught at BlackHat & DEFCON | #100DaysofSigma | Keep exploring, keep learning, and stay curious
Martin McKeay @mckeay
23K Followers 1K Following You can find me on Mastodon at https://t.co/Xd6p4Unzqe Instigator, agent of chaos, friend. My opinions are my own, you can't have them!
Clint Gibler @clintgibler
22K Followers 563 Following 🗡️ Head of Security Research @semgrep 📚 Creator of https://t.co/xwtIAI0CuJ newsletter