Mathilde Venault @MathildeVenault
Security researcher at @CrowdStrike, living off cheese and adventures. Opinions are my own. Joined November 2019-
Tweets51
-
Followers257
-
Following187
-
Likes129
I often am asked for pointers on building a VM for malware analysis. I wrote a 40+ page chapter on this in my book Evasive Malware. You can download this chapter from the book on my blog for free here: evasivemalware.com/EvasiveMalware… Thanks @nostarch for allowing me to give it away 🤓
Looks like @BlueHatIL talks are online now, so here’s my talk for anyone who wanted to learn about the latest episode of KASLR and couldn’t make it: youtu.be/Dk2rLO2LC6I
FYI if you’re willing to link with ntdll or dynamically resolve it there’s a ton of APIs that return TEB/PEB or leave them in one of the registers. (Don’t believe official return values. MSDN is a liar!)
FYI if you’re willing to link with ntdll or dynamically resolve it there’s a ton of APIs that return TEB/PEB or leave them in one of the registers. (Don’t believe official return values. MSDN is a liar!) https://t.co/sb9UGHWy68
WinDbg doesn’t have to win the battle!🧠💥 Join @MathildeVenault at SINCON 2025 for a hands-on reverse engineering workshop that helps you make sense of the Windows debugger. 📅22-23 May 2025 | 📍voco Orchard, SG 🎟️Pass: event.cybersecuritysg.com/39kL3 #SINCON2025 #WindowsDebugging
Upcoming public training: clearseclabs.com/#portfolio
Really excited to give a talk at SINCON this year! I'll be presenting my tool github.com/CrowdStrike/dr…, that helps making the most of WinDbg in a minimum amount of time
Really excited to give a talk at SINCON this year! I'll be presenting my tool github.com/CrowdStrike/dr…, that helps making the most of WinDbg in a minimum amount of time
Save the date - @Blackhoodie_RE is partnering with @offensive_con this year to bring a BlackHoodie training to Berlin! Students will learn how to place compiler backdoors in innocent code. Mark your calendars for May 15th! Registration opens tomorrow, space is very limited ☺️
Windbg keyboard shortcuts docs have been updated recently. Includes both new and old bindings that were never documented: learn.microsoft.com/windows-hardwa…
I’m not saying you definitely have to go to @BlueHatIL this year, I’m just letting you know it’s free, by the beach and I’ll be there dropping kernel pointers to anyone who asks nicely
Today I’m sharing a blog post on the implementation of kernel mode shadow stacks on Windows! This post covers actively debugging the Secure Kernel and also outlines why VTL 1 is relied on to help maintain the integrity of the supervisor shadow stacks! connormcgarr.github.io/km-shadow-stac…
So glad to have been part of 44con this year!
So glad to have been part of 44con this year!
There’s a brand new conference which means you get another chance to take my Windows Internals class, this time in the US 😄 RE//verse, February 2025, Orlando Florida
There’s a brand new conference which means you get another chance to take my Windows Internals class, this time in the US 😄 RE//verse, February 2025, Orlando Florida
I'm happy to share that I'll be giving a workshop at @44CON about WinDbg, where I'll introduce a tool I've developed to make debugging much easier. Time to tame the Windows debugger together! 44con.com/44con-2024-tal…
In my new blog for @_CPResearch_ I propose a new injection technique, using the Thread Name API - check it out! 💙
In my new blog for @_CPResearch_ I propose a new injection technique, using the Thread Name API - check it out! 💙 https://t.co/D57HNKAOZq
Recently I was writing up a blog about Secure Kernel and NT working together to initialize Kernel CFG. I realized there were a lot of concepts in SK I was unfamiliar with. Because of this I wrote a post on one of those topics - Secure Image Objects. Enjoy! connormcgarr.github.io/secure-images/
Thanks to everyone who attended my talk! @offensive_con was an incredible experience. Couldn't make it? Don't worry- here are my slides! Recommend them to anyone wanting to learn more about Secure Boot's third-party risks. nbviewer.org/github/microso…
Thanks to everyone who attended my talk! @offensive_con was an incredible experience. Couldn't make it? Don't worry- here are my slides! Recommend them to anyone wanting to learn more about Secure Boot's third-party risks. nbviewer.org/github/microso…
Anyone who uses WinDbg a lot should learn to use Symbol Builder (by @wmessmer). Using it here to define a function signature and combining it with FileSystem module to write log all IOCTL requests to a file.

. @useruse46513503
19 Followers 441 Following
Ruben Groenewoud @RFGroenewoud
524 Followers 301 Following A security research engineer at @Elastic focusing mainly on Linux behavior-, signature- and ML-based detection engineering. Github: https://t.co/KKlA2KIjGj
Sherrie Ellison @SEllison87727
6 Followers 162 Following Recruiting webshell engineers to penetrate websites, with a monthly salary of up to $100,000. If interested, please contact https://t.co/jwaaDqQyq0
Mostafa Noureldin @Mean___Machine
4 Followers 515 Following
andre @andre09839499
0 Followers 121 Following
John Sanders @Sandman46615
123 Followers 2K Following
Miguel I. Solano @miguelisolano
2K Followers 5K Following Co-founder and CEO of @VMindAI — https://t.co/eZXeY6vbXs
eliran @eliran26
9 Followers 2K Following "If you can visualize it, if you can dream it, there's some way to do it."
S0ns3 @0xs0ns3
85 Followers 131 Following Red Team Operator | Researcher | Everything burn when it come close to the sun ☄
ag @AlannahGuo
1K Followers 514 Following Some people don't think pen testing is a real job but have you seen my handwriting? ✨ Posts/silliness are my own 🤭 @AirglowSec | @0xCC
Noah @YRzhao164117
2 Followers 18 Following 收集口嗨反共国民党逃难余孽当宠物,特点:口嗨、无国籍、父辈有流亡逃难经历,对CCP有受害应激恐惧症,他们擅长捕捉中国社会问题与官员腐败问题甩给CCP,但是他们从来不会发布关注有关他们的社会问题与腐败问题,他们认为的事实=有反共倾向的图文,对中国发展认知停留在抗战与2014附近,这些宠物活动范围:中国大陆边缘地带与小岛
Etizaz Mohsin @aitezazmohsin
526 Followers 686 Following Hacker, Speaker, Featured on Forbes, BBC, Al Jazeera, WIRED, TechCrunch
Andrew McCallum @atr8472
725 Followers 6K Following
coldhands @co1dhands
0 Followers 2K Following
Everton Patitucci @epatuti
183 Followers 2K Following Tinkering with low-level, security, gfx, and perf @ Activision
がっちゃ @take_gattcha
2K Followers 2K Following なんちゃって Device Driver Engineer, Windows, Linux, Embedded, Firmware, Low-layer... RT 専門。稀にTweet。RT は私が好きなこと。気になること。どうでもいいけどなんとなく。
Austin ‘ItzHerbie�... @ItzHerbie
406 Followers 272 Following 💻Cybersecurity Operations, Threat Intel, Hunting, Detection Engineering 📱Tech 🗡️Speaking my mind
Harvester @Harvesterify
1K Followers 5K Following Protecting Galileo at @esa | Ground segment cybersecurity | All your ground stations are belong to us | Previously @SafranElecDef & @ANSSI_FR
hackoflpf @hackoflpf
32 Followers 1K Following
Joy @Authentic__Joy
40 Followers 322 Following Just a mom trying to learn more about asymmetric investment opportunities.
Schuvic @Schuvic
24 Followers 1K Following
Indigo 〰 @indigo79x
88 Followers 2K Following Happiness at dawn, Apple/kernel VR at dusk. Take a walk outside your head.
Bala @balaintwt
571 Followers 6K Following A linux ,container k8s security enthusiast. Avid runner and cyclist #Kubestronaut , open to sre roles
Shruti Dixit @rudyerudite
430 Followers 710 Following Security researcher by profession, bibliophile by passion 💻📖
lapinousexy @lapinousexy
91 Followers 411 Following OSCP / OSEP / CRTO I / CRTO II / https://t.co/zcub9fMkg7
0x4M1👨🏻💻 @rajahizami
866 Followers 3K Following Cyber Security | Pelari | Pemuzik | Pencinta NurSyazwani’s 💜
confidenceconf @CONFidenceConf
4K Followers 2K Following CONFidence, a legendary cybersecurity conference taking place on 2-3 June 2025 in Krakow, Poland.
Vishal @analavishal
63 Followers 1K Following
Adrien @chohco0A
2 Followers 61 Following
spider @LulleLullu63135
133 Followers 3K Following
Ahmed Y. Elmogy @AhmedYElmogy
40 Followers 1K Following Independent web security researcher and bug bounty hunter.
nico @MrNicoAndCo
67 Followers 485 Following C'est l'histoire d'une société qui tombe et qui au fur et à mesure de sa chute se répète sans cesse pour se rassurer juste qu'ici tvb, juste qu'ici tvb
x86byte @x86byte
100 Followers 825 Following Low-Level Security Enthusiast ^ iOS & Windows Vulnerability Researcher & Exploit Developer 👾🥤
Adrián Díaz @s4dbrd
418 Followers 192 Following Red Team | Reversing & Exploiting | I publish failed research in a blog with a friend
Leo @leotday
3K Followers 130 Following Founder of The PC Security Channel, Threat Researcher, MS (Computer Science, AI). Create some of the most engaging cybersecurity content on YouTube.
Eric Woodruff | MVP |... @ericonidentity
2K Followers 712 Following Security researcher @SemperisTech. Microsoft Security MVP, Entra nerd. Part-time hiker, full-time dad and partner. Opinions expressed are from my cat.
stark0de @stark0de1
341 Followers 855 Following Infosec addict, aspirant red teamer and proud geek Mr Fuzzer when I'm "allowed" to ;) https://t.co/IYwZj7TQrO
Hugo Teso @hteso
3K Followers 1K Following Security Researcher and Commercial Pilot with frozen ATPL. I usually mix both disciplines.
TheSAS2025 @TheSAScon
4K Followers 255 Following #TheSAS2025 book your place now 👉 https://t.co/cVsRzXM8OX
ransomNews @ransomnews
2K Followers 182 Following • your go-to source for #ransomware news, insights, and analysis • home of #RedACT monthly threat report
CactusCon @CactusCon
4K Followers 95 Following Arizona's hacker con. CactusCon 14: Feb 6 & 7 2026 in beautiful Mesa, AZ. https://t.co/29lnaRVQy9 + LinkedIn, Bluesky, Mastodon
Kyle Cucci @d4rksystem
6K Followers 560 Following Threat Research @proofpoint | Author of "Evasive Malware" @nostarch | Talks about cybercrime, threat intel, and malware stuff.
Pavel Yosifovich @zodiacon
14K Followers 916 Following Windows Internals expert, author, and trainer. Teaching system programming & debugging at TrainSec. Check out my books & courses! 🚀 #WindowsInternals #TrainSec
ag @AlannahGuo
1K Followers 514 Following Some people don't think pen testing is a real job but have you seen my handwriting? ✨ Posts/silliness are my own 🤭 @AirglowSec | @0xCC
Div0-N0H4TS @N0H4TS
111 Followers 27 Following #Div0_N0H4TS: N0H4TS Tinkerers is a Division Zero (Div0) quarter for creating an united community of tertiary cybersecurity enthusiasts.
RE//verse @REverseConf
3K Followers 26 Following A conference for all things in the reverse engineering universe... https://t.co/X54VHq2eD4
confidenceconf @CONFidenceConf
4K Followers 2K Following CONFidence, a legendary cybersecurity conference taking place on 2-3 June 2025 in Krakow, Poland.
Réact StarAc @staracreact
37K Followers 533 Following Ici on parle star Academy mais pas que... #StarAcademy #StarAcademyLeLive #StarAcademyLive Tournée Marine : https://t.co/iEThKx6GkD
Elliot @ElliotKillick
3K Followers 40 Following Security engineer and researcher | Elliot on Security
Infosec In the City (... @Infosec_City
1K Followers 77 Following IIC is an international cybersecurity capability & capacity development network. IIC organises training, events & conferences tailored to the city it is hosted.
Leo @leotday
3K Followers 130 Following Founder of The PC Security Channel, Threat Researcher, MS (Computer Science, AI). Create some of the most engaging cybersecurity content on YouTube.
Eric Woodruff | MVP |... @ericonidentity
2K Followers 712 Following Security researcher @SemperisTech. Microsoft Security MVP, Entra nerd. Part-time hiker, full-time dad and partner. Opinions expressed are from my cat.
clearseclabs @clearseclabs
89 Followers 1 Following Clear Security, Training, and Solutions Check out website for latest course offerings.
Carsten @0xcsandker
2K Followers 174 Following Security enthusiast, Likes Windows Internals, AD & Entra — https://t.co/mVVbfkO7IO
Ethical Hacker @offethhacker
2K Followers 5K Following
Duncan Ogilvie 🍍 @mrexodia
9K Followers 333 Following Reverse engineer, creator of @x64dbg and 100+ other projects. Love binary analysis and Windows internals. Dreaming about doing open source full time...
Bea Venzon 👾 @0x0bea
115 Followers 132 Following CTI + RE @CrowdStrike // 🐈🐈🐈⬛ // Find me on https://t.co/HiZ5P2owRF
Shmuel Cohen @_BinWalker_
248 Followers 243 Following Former Security researcher @SafeBreach | Former malware researcher @_CPResearch_ | 3x BlackHat speaker | DEFCON speaker | SecTor speaker
Samuel Chevet @w4kfu
1K Followers 254 Following
pfiatde @pfiatde
2K Followers 1K Following "Every machine is a smoke Machine if you operate it wrong enough" RedTeamer by day, sleeping at night! https://t.co/ZcTfWHeGZO
Women In Cybersecurit... @wicca_NL
2K Followers 230 Following WICCA 👩💻 Talks and drinks among ladies to discuss all things InfoSec 🔑🇳🇱 @vm00z @MiFare_lady @0xD4ni [email protected] 📩 #WICCA_NL
44CON @44CON
11K Followers 79 Following UK's best combined Information Security Conference and training event. Newsletter https://t.co/2P1WTeSK4E run by @alien8 https://t.co/lXrBRhPg83
Greg Linares (Laughin... @Laughing_Mantis
37K Followers 2K Following 20+ yrs in Infosec. Malware Influencer. I turn Malware into Art and Music. Art @MalwareArt. 4x Pwnie Nominee. 𝕍𝕏. GameDev. Autistic.
Trail of Bits @trailofbits
35K Followers 255 Following We help secure the world’s most targeted organizations and products. We combine security research with an attacker mentality to reduce risk and fortify code.
Or Yair @oryair1999
765 Followers 138 Following Security Research Team Lead @SafeBreach | Creativity is a decryption key for vulnerabilities🙃 | Speaker at BH USA+Europe+Asia, DEF CON, RSAC, SecTor, and more
ringzerø.training &&... @_ringzer0
5K Followers 500 Following Announcing Ringzer0 #COUNTERMEASURE25 - a premier cybersecurity training and conference event! Ottawa 🇨🇦 Nov 2025 ★ Registrations Open
TyphoonCon🌪️ @typhooncon
8K Followers 4 Following TyphoonCon is an annual all Offensive Security Conference, taking place May 25-39, 2026 in Seoul, South Korea 🌪️
Marie Palot @MarieCPalot
183K Followers 1K Following @telematin, Cine Canap sur RTL9. Mes ex sont cools : Culture Box, Zine Zine, Takeshi Castle, Nyusu Show •🎙️Podcast Yamanote @franceinter • 📖 Mon agenda (lien)
Review @TheGreatReview_
130K Followers 226 Following Youtube : https://t.co/D73xhMdtvq / Twitch : https://t.co/dlqgKqDMi0 / Patreon : https://t.co/0FSS4nMjou [email protected]
POC_Crew 👨👩�... @POC_Crew
7K Followers 677 Following Organizer of Zer0Con, MOSEC and #POC2025 (https://t.co/LP1W4KC4vY)
No Hat Con @nohatcon
3K Followers 10 Following Computer Security Conference | 18th October 2025 | Bergamo (Italy) | REGISTRATION IS OPEN
NolaCon @nola_con
3K Followers 2K Following New Orleans Information Security (IT)/Hacker Conference #nola #infosec #hackercon #nolacon
Erin Ragamonster🌻 @ragamonster
529 Followers 1K Following Cybersecurity Operations Center Analyst. Passionate about neurodiversity in cybersecurity. #actuallyautistic🤘👩🏻🦰🤘
Sh00k3ms @Sh00k3ms
1K Followers 960 Following Pentester | DEF CON C&E Goon crew | Landon’s human | Fluent in exploits & espresso https://t.co/VTSkrtm1Z2 https://t.co/CZaIMjUC3L
Alex Delamotte @spiderspiders_
1K Followers 1K Following Threat Researcher @ SentinelLabs. Resident of Las Vegas. Unabashed Futurist. Probably a Shiny Pokémon in human-like form. Opinions are mine.
Satoshi Tanda @standa_t
8K Followers 395 Following Software security engineer and trainer https://t.co/tenaquooTc
Virginie R☀️ @VSheHer
9K Followers 2K Following RAWR! The @dianainitiative 😻 and more non infosec topics of interest! AFK most of the time due to life! Mastodon: https://t.co/cmZlv9Pn9W
Alice Climent @AliceCliment
3K Followers 283 Following Malware and EDR stuff @harfanglab 🤓 || PTC || Sister of @h313n_0f_t0r & @lauriewired || https://t.co/fqvyNQ57ET
TROOPERS Conference @WEareTROOPERS
10K Followers 501 Following We are TROOPERS - IT-Security Conference & Trainings https://t.co/gO1lSzFuns Also at the infosec exchange @WEareTROOPERS