EncapsulateJay @EncapsulateJ
SOC Analyst @HuntressLabs Joined February 2021-
Tweets134
-
Followers155
-
Following433
-
Likes2K
Cheers to @TheDFIRReport team for all the guidance and mentorship. This was a really interesting case to work!
Cheers to @TheDFIRReport team for all the guidance and mentorship. This was a really interesting case to work!
ClickFix just got clever-ditched Win+R for Win+X (Power User Menu) ⚠️ New variant drops Lumma after Defender exclusion: - Prompts for elevation till user accept - Add defender exclusion on %temp% - Drops & runs Lumma Multiple Sigma rules fired 💥 Process Tree👇
There's pretty much never been a better time to start learning or get hands on blue team experience through labs. The availability and quality of labs being released today compared to 4 years ago is night and day. Training providers like Xintra are paving the way for the future!
There's pretty much never been a better time to start learning or get hands on blue team experience through labs. The availability and quality of labs being released today compared to 4 years ago is night and day. Training providers like Xintra are paving the way for the future!
If you’re running an SSLVPN (SonicWall, Fortigate, etc.) and not retaining those logs, you’re setting yourself up for disaster. It's not uncommon to see sub-10 minute slices of activity in the totality of exported logs; which is next to useless.
🚨 Case from @HuntressLabs 🔎 Cephalus seen side loading DLL 'SentinelAgentCore.dll' into legitimate 'SentinelBrowserNativeHost.exe' for ransomware execution ✏️ File extension for encrypted files - '.sss'
🚨 Search for software, end up getting ransomware! SEO-driven #Bumblebee malware campaigns observed throughout July led to domain compromise, data theft & #Akira ransomware. Tools included #AdaptixC2 & #Netscan. thedfirreport.com/2025/08/05/fro…
Anton bringing the heat as always!
Proud to work alongside these two 🔥 Congrats to you both!
HijackLibs.net details hundreds of publicly disclosed DLL Hijacking opportunities. With over 700 stars on GitHub and a growing list, @Wietze does an amazing job maintaining it. Despite this contributing can be time consuming. That's why I've created HijackLibs Helper!👇
Sample deployed via low detection Octowave Loader caught: virustotal.com/gui/file/141a6… - econusi[.digital/nwmb Interestingly low detection C2 amongst the noise is the newly registered domain posing as @warhammer - wawrhamer[.live
Sample deployed via low detection Octowave Loader caught: virustotal.com/gui/file/141a6… - econusi[.digital/nwmb Interestingly low detection C2 amongst the noise is the newly registered domain posing as @warhammer - wawrhamer[.live https://t.co/wPuSqAtFLO
huntress.com/blog/cve-2025-… Check out what @HuntressLabs has been busy with this weekend! If you're an IR/SOC analyst responding to this, we've included a query using @WithSecure's Chainsaw to help ease the lift. #cve202530406 #CentreStack
Quality breakdown here from @xorJosh @Antonlovesdnb @Purp1eW0lf
Quality breakdown here from @xorJosh @Antonlovesdnb @Purp1eW0lf
We wrote up what @HuntressLabs has been seeing for the CrushFTP authentication bypass: CVE-2025-31161 (or CVE-2025-2825, whichever side of the bed you woke up on) leading to MeshCentral agents, AnyDesk, and neato "TelegramBot" malware. Patch plz! ✌️ huntress.com/blog/crushftp-…
Got a new @HuntressLabs blog out today looking at a case that @Purp1eW0lf @xorJosh and I worked on recently - VPN compromise, lateral movement, Veeam exploitation & some methodology notes throughout that newer folks might find particularly interesting! huntress.com/blog/untold-ta…

CTIN @CTIN_Global
2K Followers 5K Following Aggregating CTIN sources with real-time posts on threats | #OSINT #Analytics #ThreatIntel #CyberSecurity - #Human - See also: https://t.co/VsAQaHsUBS
shuz Law @ubzaro
0 Followers 47 Following
Terri @t_arnold96
180 Followers 3K FollowingDick Svensson @xj220
324 Followers 2K Following A techguy from Sweden. Messing both with BSD/Linux and plenty of MS software.
Zroher @Zroher9733
34 Followers 597 Following
Abdul Majeed @abdulmajeedx96
32 Followers 1K Following
Zach @svch0st
4K Followers 1K Following Everything DFIR @TheDFIRReport | @CuratedIntel | @XintraOrg https://t.co/ggakuKBS0S
Jin-Yeop Seung @JinYeopSeung1
1 Followers 40 Following
haaju @pirate_502
1 Followers 220 Following
slobodan rofa @RofaSlobodan
146 Followers 5K Following
🏈XXwillyXY🥢 @guillermoxd15
155 Followers 416 Following 26 | CiberSecurity enthusiasts | IR | Engineering
Adrian Luca (infosec.... @adrian__luca
767 Followers 2K Following Security Test & Threat intelligence Engineer @virusbtn
Yusef Ortiz Duarte @YusefDuart65667
4 Followers 132 Following
FalconFeeds.io @FalconFeedsio
60K Followers 796 Following Threat intelligence platform - Data from Deep Web, Dark Web, Open Web || For data API integration : [email protected] Democratizing Cyber Security.
Mario de Sousa Lima @MarioSousaLima
128 Followers 5K Following
Juan Carlos Vázquez ... @jc_vazquez
5K Followers 6K Following IT & Security Professional | #InfoSec #cybersecurity 🛡 | Attitude is a little thing that makes a big difference 
Rain @pRain1337
51 Followers 549 Following
pfransc @pfransces
79 Followers 2K Following
Raashid Bhat @raashidbhatt
2K Followers 240 Following Innovator | Solving cybersecurity problems @malwareid_
SubratSahu_IN @iamsubrat_IN
132 Followers 5K Following Coder| Cyber Security| AI ML DL #Infosec 01110010 01101111 01101111 01110100 01000000 01110011 01110101 01100100 01101111
James Northey @darkrym11
40 Followers 94 Following SOC Analyst @HuntressLabs | Malware junkie | 5+ yrs in Military Cyber Always learning, always curious
Tornado @0xtornado
3K Followers 541 Following Incident Responder & @TheDFIRReport Member • Hunting and dissecting smart creatures called malware, doing forensics between whiles…
Shina Mashiro @ShiinaaM
399 Followers 3K Following Microsoft Sentinel Enthusiast | 4n6 Investigator | Cloud Security | 🇮🇩 S.Kom
MyDFIR @MyDFIR
3K Followers 116 Following I run a community showing you how to build practical hands-on skills to become a Cybersecurity SOC analyst. 👇
Renzon @r3nzsec
4K Followers 905 Following IR/Forensics @Unit42_Intel | Co-Founder @guidemtraining | Contributor/Analyst @TheDFIRReport @XintraOrg | CTF member @_hackstreetboys
terrence @tstank
468 Followers 3K Following Father, Runner, Linux Admin, TurboNerd, USMC Veteran, Aspiring Security Pro.
J⩜⃝mie Williams @jamieantisocial
10K Followers 7K Following threats && stuff || #UNC1799 forever 🤘|| @DistrictHeather ♥️ + 🍷 **𝚅𝚒𝚎𝚠𝚜 𝚎𝚡𝚙𝚛𝚎𝚜𝚜𝚎𝚍 𝚊𝚛𝚎 𝚖𝚈 օ𝚠𝚗**
lee1981 @lee1981b
458 Followers 3K Following Learning Cyber-Security, Bug bounty hunting, Ethical hacking & Malware Analysis 😀
EZE BTC 👘🥂👘 @Official_EzeBtc
620 Followers 533 Following Eze BTC 🏬. I buy and sell all types of Cryptocurrencies at an amazing rates 💯. Grace got me🙇🏻♂️... iHack 🛡 iCode 〰 iProgramme 🔃 iTrade 💹 iBoobs 😩
Miixxedup @Miixxedup
403 Followers 547 Following CTI at @Mandiant | Analyst at @TheDFIRReport | Security Intelligence, Automation and Innovation | Sourdough baker noob but a connoisseur anyway.
Kelsey @Kelsey217482825
166 Followers 3K Following
Gary Rafferty @garyhak2009
177 Followers 5K Following
Zap @Cyber_zap
3 Followers 111 Following
Ransom-DB @Ransom_DB
2K Followers 79 Following Professional CTI service for advanced ransomware intelligence. Real-time incident tracking and deep insights to keep you updated with the most known threats.
AJ @Avdooljaleel
63 Followers 533 Following Web3 Enthusiast | Crypto Trader (EN/HA) | Building trust in Web3 🚀
lulz @0xDu4n
0 Followers 592 Following
Juan Carlos Vázquez ... @jc_vazquez
5K Followers 6K Following IT & Security Professional | #InfoSec #cybersecurity 🛡 | Attitude is a little thing that makes a big difference 
Raashid Bhat @raashidbhatt
2K Followers 240 Following Innovator | Solving cybersecurity problems @malwareid_
Karsten Hahn @struppigel
25K Followers 767 Following MalwareAnalysisForHedgehogs, Principal Malware Researcher at GDATA, he/him 🦔🌈🏳️⚧️
James Northey @darkrym11
40 Followers 94 Following SOC Analyst @HuntressLabs | Malware junkie | 5+ yrs in Military Cyber Always learning, always curious
Silas Cutler (p1nk) @silascutler
13K Followers 2K Following You may know me from your logs Research @Censys Advisor #DEVSEC Built @Only_Scans, @mal_share, #KeyDrop
Ayush Anand @Securityinbits
1K Followers 277 Following I tweet about my learning in Malware analysis, Threat Intel, Detection engineer and DFIR journey. Opinions are mine only!
Charlie @charliek65
985 Followers 1K Following Principal Analyst @StripeOLT / Ex-MSFT + CRWD / Caffeine Enthusiast / Hack The Box Ambassador & UK Meetup Lead / @BSidesChelt Committee Director
Shina Mashiro @ShiinaaM
399 Followers 3K Following Microsoft Sentinel Enthusiast | 4n6 Investigator | Cloud Security | 🇮🇩 S.Kom
BobDaHacker 🏳️�... @BobDaHacker
1K Followers 431 Following Can we hack it?? Yes we can!!! 😎😎😎 Hey Im BobDaHacker, reformed WinRAR trial abuser and Ethical Hacker. Thx 4 coming to my ted talk
MyDFIR @MyDFIR
3K Followers 116 Following I run a community showing you how to build practical hands-on skills to become a Cybersecurity SOC analyst. 👇
Malfors @MalforsHQ
289 Followers 57 Following Investigation platform. Send us a DM to join beta, follow for product updates.
Curated Intelligence @CuratedIntel
14K Followers 106 Following Bringing together intelligence researchers and incident responders. #TrackThePlanet
@𝖉𝖚𝖘𝖙𝖗... @dustrial
6K Followers 3K Following Design for Tomorrow 💿 Art, Design, Fashion, Glitch, Generative, Code - https://t.co/PmdevVo6AF // https://t.co/EsAzS0EFuZ // https://t.co/Eg0SIodSWV
GangExposed RU @GangExposed_RU
3K Followers 68 Following Cybercrime investigator | Exclusive leaks on $10M bounty targets
Evil Rabbit Security ... @EvilRabbitSec
4K Followers 521 Following I make sex offenders cry. What the hell do you do?
Chris Duggan @TLP_R3D
7K Followers 3K Following Head of Threat Informed Defence for a FSTE 100 | Malware Geek | Curated Intel Member | Threat Intelligence Expert Extraordinaire
Ollie Whitehouse @ollieatnowhere
6K Followers 1K Following CTO @NCSC Former: PortSwigger, Interrupt Labs, NCC Group, BlackBerry, Symantec and Atstake
Robert McArdle @bobmcardle
2K Followers 133 Following Director FTR - CyberCrime Research for @TrendMicro. Lecturer in Malware Analysis. Expect post ratio of 2:1 riveting & unmissable cybercrime updates / @StarWars
J⩜⃝mie Williams @jamieantisocial
10K Followers 7K Following threats && stuff || #UNC1799 forever 🤘|| @DistrictHeather ♥️ + 🍷 **𝚅𝚒𝚎𝚠𝚜 𝚎𝚡𝚙𝚛𝚎𝚜𝚜𝚎𝚍 𝚊𝚛𝚎 𝚖𝚈 օ𝚠𝚗**
Mathias Fuchs @mathias_fuchs
3K Followers 964 Following Something with IR and Intelligence @InfoGuardAG, Certified Instructor and author @SANSInstitute (@SANSEMEA), Former Principal IR Consultant @Mandiant
𝙁 𝙀 𝙇 𝙄 �... @felixm_pw
1K Followers 486 Following Senior Researcher @Sophos | https://t.co/rAj5k8LMif
Gameel Ali 🤘 @MalGamy12
6K Followers 961 Following Threat Researcher @nextronsystems and volunteer at @vxunderground.
ShadowOpCode @ShadowOpCode
645 Followers 119 Following Malware analyst & reverse engineer 🧠 Threat intel on stealers, RATs, live campaigns 🕵️ Technical analysis. No buzzwords. 📍DM open for research collabs
Cyber Ghost @CyberGhost13337
287 Followers 1K Following Hacker - Reverse Engineer - Malware Analyst - PWN lover https://t.co/f0z8MFOf9E
0verfl0w @0verfl0w_
16K Followers 256 Following Malware Reverse Engineer & Malware Analysis Course Author | RE @ Unit 42
Mikhail Kasimov @500mk500
5K Followers 596 Following Malicious traffic detection system: @maltrail; Maltrail Demo Page: https://t.co/eimXdZvjWo; Maltrail FAQ: https://t.co/Kne9lewPHT
James @James_inthe_box
22K Followers 467 Following
Rad @rad9800
9K Followers 455 Following irrational. founder. building solutions to secure organizations. @deceptiq_
No Starch Press @nostarch
36K Followers 3K Following The finest in geek entertainment. Email us: [email protected] We're live M-F, 7am-6pm PDT
Joseph Cox @josephfcox
93K Followers 3K Following Hacking/crime/privacy journalist. Author of DARK WIRE. Co-founder of @404mediaco. Signal: joseph.404 Email: [email protected]
Allison Nixon @nixonnixoff
3K Followers 615 Following Chief Research Officer at Unit 221B -- if you need to get ahold of me use Linkedin or my company's outreach form, not this website
Pierogi @ScammerPayback
90K Followers 163 Following Come join us as we go on the adventure of giving visibility into scammers and how they operate. [email protected] (Business ONLY, no investigations)
UNPACME @unpacme
4K Followers 2 Following An automated malware unpacking service from OpenAnalysis Inc.
Kyle Cucci @d4rksystem
6K Followers 560 Following Threat Research @proofpoint | Author of "Evasive Malware" @nostarch | Talks about cybercrime, threat intel, and malware stuff.
Lena @LambdaMamba
4K Followers 428 Following Founder of @MalwareVillage | Creator of https://t.co/AKyp6xMGO0 | Keynote Speaker | Malware Researcher | Artist | Banned from JSAC 🐍
Miixxedup @Miixxedup
403 Followers 547 Following CTI at @Mandiant | Analyst at @TheDFIRReport | Security Intelligence, Automation and Innovation | Sourdough baker noob but a connoisseur anyway.
Ciarán Cotter @monkehack
4K Followers 551 Following • Irish/Japanese web hacker living in Scotland. • Researcher for @ctbbpodcast Lab. I run https://t.co/Ja1P3vco1X | Newsletter weekly at https://t.co/KA5b2kY8ih
TEAM CYMRU @teamcymru
41K Followers 187 Following We provide digital business risk platforms and community services. Since 2005, our reputation has remained unchallenged Check out our research @teamcymru_S2!
Team Cymru Threat Res... @teamcymru_S2
5K Followers 93 Following Follow us for the latest blogs and IOCs from Team Cymru Threat Research A part of @teamcymru
Invoke RE @InvokeReversing
2K Followers 94 Following Empowering you to take on today's toughest threats.