Susan Ghosh @SubZero0x9
Security Analyst and Researcher. Trying very hard to figure out C, Assembly and Windows Internals. Eternal N00b.🐶 pushpopret.com Instruction Pointer Joined March 2018-
Tweets220
-
Followers618
-
Following167
-
Likes793
Check out Titanis, my new C#-based protocol library! It features implementations of SMB and various Windows RPC protocols along with Kerberos and NTLM. github.com/trustedsec/Tit…
I've been researching the Microsoft cloud for almost 7 years now. A few months ago that research resulted in the most impactful vulnerability I will probably ever find: a token validation flaw allowing me to get Global Admin in any Entra ID tenant. Blog: dirkjanm.io/obtaining-glob…
Windows local privilege escalation through the bitpixie vulnerability blog.syss.com/posts/bitpixie/
this is my short analysis of a little-known security feature built into Windows that inadvertently broke one of our authenticode signatures recently elastic.co/security-labs/…
You want to load your shellcode in .NET without calling VirtualProtect? Use RuntimeHelpers.PrepareMethod to create a predictable RWX memory region for you. This method also doesn't require a delegate function pointer, since you override a .NET method. github.com/Mr-Un1k0d3r/Do…
why do people hate secure boot? honest question
Black Hat Bonus: Learn more about @kyleavery_ 's research on training self-hosted LLMs to generate evasive malware and creation of a 7B parameter model that generates evasive Cobalt Strike shellcode loaders able to bypass Microsoft Defender for Endpoint. ow.ly/1EUf50WBI5e
🎁 We’re giving away 1 FREE seat to our premium live workshop: “EDR Internals – Research & Development”! 🔥 40+ hours of hands-on labs 🔍 Reverse real-world EDRs, build custom detection logic 🧠 Dive into syscall hooking, ETW tracing, kernel-mode techniques & more Want in? ✅…
I was messing around with symbol resolution in ELF and came up with an obfuscation technique on abusing symbol resolution in ELF programs that is able to trick tools (i.e. Ghidra, IDA, GDB) into showing the wrong library function calls. blog.elmo.sg/posts/breaking…
This will be one of the few OSEE trainings held in Asia. Welcome to Taiwan :) blog.orange.tw/posts/2025-07-…
Under-the-hood, Ember uses LightGBM to score a sample from 0 to 1. I added this functionality into Citadel so any binaries added to the framework are now summarised and scored as well as the rest of the Citadel analysis. Read it here: mez0.cc/posts/citadel-…
Including nice tool release 🔥 github.com/temp43487580/E…
Including nice tool release 🔥 github.com/temp43487580/E…
This is my research project in creating read, write and allocate primitives that can be turned into an injection in order to evade certain telemetry which I presented last year in RedTreat. I hope everyone likes it \m/. trickster0.github.io/posts/Primitiv…
Windows 11 24H2 broke a popular malware evasion technique! The Lloyd Labs self-deletion method now fails because of NTFS changes, so I spent time with kernel debugging to figure out why and how to fix it. Full technical breakdown: tkyn.dev/2025-6-8-The-N…
Have you ever wondered if there was a way to deploy a "Remote EDR"? Today I'm excited to share research I've been working on for the past couple months. This dives into DCOM Interfaces that enable remote ETW trace sessions without dropping an agent to disk. Includes a detailed…
RemoteMonologue - A Windows credential harvesting attack that leverages the Interactive User RunAs key and coerces NTLM authentications via DCOM. Remotely compromise users without moving laterally or touching LSASS. Hope you enjoy the blog & tool drop 🤟 ibm.com/think/x-force/…
(1/x) For some reason people keep asking me how to get into reverse engineering. The obvious answer would be do CTFs or reverse malware (aka just do it), but I also think game hacking/modding (not cheating!) can be fun and still provide the same learning experience. An example:
A small demo/tutorial on unpacking executables with #PEsieve and #TinyTracer: hshrzd.wordpress.com/2025/03/22/unp… - automatic OEP finding, reconstructing IAT, avoiding antidebugs and fixing imports broken by shims
Dave Kennedy @HackingDave
224K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Pod. God + Family/Hacker/CSO/USMC/Intel/Fitness. Make the world a better place.
SwiftOnSecurity @SwiftOnSecurity
405K Followers 9K Following computer security person. former helpdesk.
Filip Dragovic @filip_dragovic
7K Followers 1K Following My research unless stated otherwise. My opinions are my own and do not represent the views of my employer.
Fairbanks.Dan @DanSing67540433
284 Followers 6K Following xsshunter and linuxmasterrace advocate.Poseidon in @suiecosystem.
Z2r4pl5s_4 @PadoniaL59406
2 Followers 146 Following "Ask me about the shadows of the internet. Not a ghost, just a whisper in the machine."
Naman Devnani @naman_devnani
420 Followers 7K Following Security Researcher | Purple Team | Bug Hunter | CTF Player | Science & Tech Enthusiast | R&D | All-Source Intelligence | CAP | DCSP | TTIA | BCDE | COL
db @whokilleddb
1K Followers 513 Following Maldev @bhinfosecurity | Finding increasingly stupid ways to do simple things
arip petits @AripPetits
6 Followers 1K Following
EXPMON @EXPMON_
1K Followers 71 Following Advanced sandbox-based system specifically designed and built for detecting file-based zero-day and hard-to-detect exploits. By @HaifeiLi.
Lalit_m3c4 @Lalitbhosale6
59 Followers 1K Following Lets H4ck | Pentest | Research | Bounty | CTFs | Researcher 🄱🄴🄻🄸🄴🅅🄴 🄺🄰🅁🄼🄰
Ulrica @agakeruka65834
76 Followers 7K Following
D4lj337 @D4lj337
35 Followers 520 Following
OPFUCHS 🦊 @opfuchs
34 Followers 593 Following @opfuchs.bsky.social Security research and stuff. You can't win, but you can definitely lose. 🇮🇹 / 🇦🇹 / 🇺🇸 #NAFO
Kazuya @Kazuya_1337
11 Followers 288 Following Exploring the depths of code to uncover vulnerabilities that threaten the digital world.
Harsh Dwivedi @H4R5H_D
12 Followers 324 Following Tech enthusiast and lifelong learner. Always on the lookout for the latest and greatest in the world of technology, if it involves technology, I'm interested.
Luca Giardullo @GiardulloLuca
1 Followers 1K Following
KK Mookhey @kkmookhey
3K Followers 2K Following All things AI and Cybersecurity. Founder of Transilience @transilienceai, Network Intelligence @niiconsulting, and Institute of Information Security @iinfosec.
Jayanth Kumar @jayanthkumarak
431 Followers 2K Following
R3dH3ad_Hacker_G1rl @R3dH3ad_Hacker
22 Followers 477 Following
dhiraj singh @dhirajtech86
87 Followers 197 Following
Sandra Walker @SandraW20451870
390 Followers 3K Following
Abid Khan @abid_oceanic
8 Followers 43 Following Exploring the Mysteries of Life, Science, Spirituality, Philosophia, Love, Compassion, Objectivity, Rationality, Truth & Reality.
Peter Winter-Smith @peterwintrsmith
6K Followers 3K Following Security researcher & implant developer @mdseclabs; developing SAST @wsastsupport; malware, code analysis, appsec, cryptography. Trying to follow Christ.
G@v1n@t0r @RustyGavin
271 Followers 942 Following I can explain it to you, BUT I can’t understand it for you.... / IT-OT Cybersecurity / Automation / Robotics / Hacker 2.1 / opinions = my own
Eldar Aharoni @AharoniEldar
0 Followers 236 Following
E1n @et3rn4lcha0s
29 Followers 621 Following SOC 𝙰𝚗𝚊𝚕𝚢𝚜𝚝 𝚋𝚢 𝚍𝚊𝚢, 𝚜𝚌𝚛𝚒𝚙𝚝 𝚔𝚒𝚍𝚍𝚒𝚎 𝚋𝚢 𝚗𝚒𝚐𝚑𝚝 • 𝙸𝚗𝚏𝟶𝚜𝚎𝚌 𝚗𝟶𝟶𝚋 • 𝙻𝚘𝚟𝚎𝚜 𝚘𝚏𝚏𝚎𝚗𝚜𝚒𝚟𝚎 𝚜𝚎𝚌
Zach Wasserman @thezachw
864 Followers 676 Following CTO @fleetctl. @osquery Technical Steering Committee member. Bringing open-source security tools to leaders of the tech industry. (he/him)
Elloh Sitsofe @Ellohx3
32 Followers 425 Following
Anita @anita____n
18 Followers 1K Following
helloworld/ @hellodebug8
255 Followers 6K Following
ringbi @Ringbi88
42 Followers 2K Following
Wes Monk @monkd
197 Followers 2K Following
Antonio Piazza 🇺�... @antman1P
2K Followers 2K Following GIAC x10 | SANS MSISE Grad | OSCP | Offensive AF | OIF Veteran | Tweets are mine, not yours, nor anyone else's... Certainly not my employer's.
Za Is Vaccinated @cultivatedpizza
27 Followers 1K Following
Valerio Cestrone @valeriocestrone
1K Followers 5K Following 👨💻 Security | Dev | OSCP | Att&ck and D3fend | 🇬🇧 🇮🇹 | [email protected]
Karthik @karthik0x00
23 Followers 824 Following
vx-underground @vxunderground
377K Followers 294 Following The largest collection of malware source code, samples, and papers on the internet. Password: infected
chompie @chompie1337
83K Followers 1K Following hacker, weird machine mechanic, X-Force Offensive Research (XOR)
Dave Kennedy @HackingDave
224K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Pod. God + Family/Hacker/CSO/USMC/Intel/Fitness. Make the world a better place.
SwiftOnSecurity @SwiftOnSecurity
405K Followers 9K Following computer security person. former helpdesk.
Florian Roth ⚡️ @cyb3rops
207K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Grzegorz Tworek @0gtweet
36K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
nixCraft 🐧 @nixcraft
386K Followers 622 Following Love Linux/Unix, open source, and programming? Into Sysadmin & DevOps? Follow us! Boost your IT career with daily new tools, apps, and humor ⤵️
TrustedSec @TrustedSec
77K Followers 765 Following End-to-end Cybersecurity consulting team leading the industry, supporting organizations, and giving back. #Hacktheplanet Blogs, news, webinars, and tools!
x86matthew @x86matthew
21K Followers 189 Following C / asm / system emulation / reverse engineering. @the_secret_club
SpecterOps @SpecterOps
39K Followers 397 Following Creators of BloodHound | Experts in Adversary Tradecraft | Leaders in Identity Attack Path Management
Adam Chester 🏴�... @_xpn_
36K Followers 502 Following Hacker for Hire at @SpecterOps | Blog at https://t.co/tjfTOllCEu | Insta at https://t.co/PqR6CZPwjl
mgeeky | Mariusz Bana... @mariuszbit
14K Followers 823 Following 🔴 Operator, Initial Access afficionado, Researcher, ex-AV engine developer, ex-Malware analyst 🦋 @mgeeky.bsky.social 🫖 green tea lover
Pavel Yosifovich @zodiacon
14K Followers 917 Following Windows Internals expert, author, and trainer. Teaching system programming & debugging at TrainSec. Check out my books & courses! 🚀 #WindowsInternals #TrainSec
Ange @angealbertini
25K Followers 910 Following Reverse engineer, file formats expert. Corkami, CPS2Shock, PoC||GTFO, Sha1tered, Magika... Security engineer @ Google. He/him.
b33f | 🇺🇦✊ @FuzzySec
33K Followers 1K Following 意志 / Antiquarian @ IBM X-Force / Team 501 / Ex-TORE ⚔️🦅 / I rewrite pointers and read memory / AI Psychoanalyst / Teaching @CalypsoLabs
Chetan Nayak (Brute R... @NinjaParanoid
31K Followers 0 Following Founder Dark Vortex/Brute Ratel | Former RedTeam @CrowdStrike @Mandiant @niiconsulting
Marcello @byt3bl33d3r
30K Followers 561 Following CyBeRsEcUrItY | Not afraid to put down with some THICC malware on disk | securing and breaking AI @PaloAltoNtwks | Ex @spacex
klez @KlezVirus
8K Followers 708 Following Independent Cyber Security Researcher - Opinions are my own
alex short 🇺🇦 @alexsho71327477
542 Followers 63 Following windows low level developer. windows internals, #winapi, #debugging, research. #opentowork https://t.co/fwJiUT1uR0 https://t.co/LirA9CTOBK…
Matt Hand @matterpreter
10K Followers 295 Following Director, Security Research @preluderesearch💜 | Author of Evading EDR https://t.co/E5fs0sSTOv 📖 | Adversary tradecraft & windows internals 🦠
sixtyvividtails @sixtyvividtails
3K Followers 395 Following Currently working as an independent GUID merchant. Fully licensed. I acquire, produce, and sell high-quality GUIDs.
EXPMON @EXPMON_
1K Followers 71 Following Advanced sandbox-based system specifically designed and built for detecting file-based zero-day and hard-to-detect exploits. By @HaifeiLi.
Haifei Li @HaifeiLi
8K Followers 151 Following For contact in the security community. NOTE: All the tweets are totally my personal opinions, not about any of my current employer stuff.
Rolf Rolles @RolfRolles
14K Followers 357 Following Static reverse engineering, deobfuscation, program analysis and formal verification, training, mathematics, compilers, functional programming, etc.
Andrea P @decoder_it
8K Followers 292 Following Security Consultant @semperistech . Independent Security Researcher. Cyclist & Scubadiver. MSRC MVR 2022. "So di non sapere"
Dylan Tran @d_tranman
2K Followers 181 Following salsa sultan, verde villain, condiment connoisseur Adversary Simulation @xforce Red Team @wrccdc Former: @NationalCCDC+@wrccdc & @globalcptc @calpolyswift
Mark @offlinemark
6K Followers 1K Following trying hard. streaming kernel dev - https://t.co/aO5X4jXGQD blogging about life, art & systems programming. non-expert work: @ableton, prev @trailofbits
Xion @0x10n
4K Followers 123 Following CMU CSD PhD student / 2024 Top#0 Chrome Researcher / P2O Vancouver '24, TyphoonPWN '24/'25, DEFCON CTF 31-33, ... / PPP, KAIST GoN '18, @zer0pts
Yuki Chen @guhe120
10K Followers 281 Following 古河, Indepent security researcher, Bug bounty, ACG Otaku, Pwn2Own 15/16/17, PwnFest16,TianfuCup 18/19/20, 5 times MSRC MVR yearly Top 1. Got two pwnie awards.
Melvin langvik @Flangvik
11K Followers 516 Following Red Team @TrustedSec , terrible creator of InfoSec content 📹Opinions are my own and not the views of my employer.
eversinc33 🤍🔪�... @eversinc33
6K Followers 1K Following computers be computin | https://t.co/Eiur8iOJQ4
Tetsuo @tetsuoai
213K Followers 1K Following Low-level dev since '94 | CS/Math & C/Assembly Projects: @7etsuo @beeldcoin @groktprompt c/asm 🇺🇸
Кириакос Эк... @kyREcon
3K Followers 748 Following @ShellterProject. R&D. Exploit Dev. Malware RE. AV/EDR Evasion. The greatest trick the devil ever pulled was convincing the world stupid questions didn't exist.
db @whokilleddb
1K Followers 513 Following Maldev @bhinfosecurity | Finding increasingly stupid ways to do simple things
Tim Blazytko @mr_phrazer
5K Followers 258 Following Binary Security Researcher, Chief Scientist at https://t.co/XhN07utPLu and Trainer. Also at https://t.co/YBfgAt3kc7
HackGit @hack_git
55K Followers 2 Following The channel was created for cybersecurity specialists 🥷 → Open Source Software → RedTeam → BugBounty → etc 🍻 https://t.co/0PYtBpfJ4f
secret club @the_secret_club
17K Followers 0 Following secret club is a not-for-profit reverse-engineering group; publishing new research on popular software. No ads, no cookies, just research.
Zain Memon @zainmemon_
941 Followers 15 Following Founder - Department of Lore, Memesys || Creator - @maya_lore_ SHASN & AZADI @shasnthegame Futurist. Rationalist. Optimist. he/him
Kyle Avery @kyleavery_
4K Followers 423 Following
☠️ Brandon @__mez0__
3K Followers 432 Following 👽 UNC1194 🔥 Targeted Ops @TrustedSec 🤖 Dev @preemptdev "purveyors of the prettiest log files"
ESET Research @ESETresearch
35K Followers 30 Following Security research and breaking news straight from ESET Research Labs.
Mr.Un1k0d3r @MrUn1k0d3r
13K Followers 509 Following I don't know how to search on Google so I do research on my own and tweet about it. Hacking as a life style https://t.co/a05mevChzu
mpgn @mpgn_x64
18K Followers 230 Following Flibustier du net ̿ ̿̿'̿'\̵͇̿̿\=(•̪●)=/̵͇̿̿/'̿̿ ̿ ̿ ̿ Podcast Hack'n Speak @hacknspeak / https://t.co/GyACSFg9mw
Cas van Cooten @chvancooten
10K Followers 673 Following Benevolently malicious offensive security enthusiast || OffSec Developer & Malware Linguist || NimPlant & NimPackt author || @ABNAMRO Red Team
Emeric Nasi @EmericNasi
5K Followers 427 Following CyberSecurity researcher and founder of BallisKit. I have a passion for all infosec subjects especially redteam and writing offensive tools!
Jack Halon @jack_halon
5K Followers 400 Following Red Team and Offensive R&D at @CrowdStrike | Powered by ☕🍻🍩
Antonio Cocomazzi @splinter_code
9K Followers 326 Following offensive security - windows internals | BlueSky: https://t.co/ytvJCoaF2c | Mastodon: https://t.co/hNIHa6L14d
Abid Khan @abid_oceanic
8 Followers 43 Following Exploring the Mysteries of Life, Science, Spirituality, Philosophia, Love, Compassion, Objectivity, Rationality, Truth & Reality.
William Burgess @joehowwolf
2K Followers 4K Following Ex-theoretical physicist, currently terrible hacker and wannabe security researcher. Views are, regrettably, my own. Likes = bookmarks
Threat Insight @threatinsight
11K Followers 217 Following @Proofpoint's insights on targeted attacks & the security landscape. Follow us on Bluesky: https://t.co/8OVfhotdeP
J. A. Guerrero-Saade @juanandres_gs
16K Followers 273 Following Executive Director for Intelligence and Research @SentinelOne | Distinguished Fellow, @SAISHopkins Alperovitch |LABScon|Cyber Paleontologist|4thParty Collector
Peter Winter-Smith @peterwintrsmith
6K Followers 3K Following Security researcher & implant developer @mdseclabs; developing SAST @wsastsupport; malware, code analysis, appsec, cryptography. Trying to follow Christ.
MDSec @MDSecLabs
15K Followers 0 Following Consultancy and Training from a trusted supplier of offensive security. Red Team and Adversary Simulation by ActiveBreach team | https://t.co/fqpbJ9WDXD | https://t.co/UvOhGA4Zou
CCob🏴�... @_EthicalChaos_
9K Followers 440 Following Ceri Coburn: Hacker | R̷u̷n̷n̷e̷r̷ DIYer| Vizsla Fanboy and a Little Welsh Bull apparently 🏴 Author of poorly coded tools: https://t.co/P6tT2qQksC
Trends for United States
You might like
