-
Tweets373
-
Followers310
-
Following278
-
Likes1K
Bugs happen but it's rare you see a bug that grabs you so hard and makes you nod like a little dog.. CVE-2023-44487 did that for me good god what a bug and here's why
Decided to publish the Lexmark printer exploit + writeup + tools instead of sell it for peanuts. 0day at the time of writing: github.com/blasty/lexmark -- enjoy!
Curious about exploiting VMs or memory bugs in a safe language? Read my new blog post, where I attack Firecracker, AWS' VMM written in Rust. Learn about the various layers of virtualization + the attack surface, and how design decisions impact security. graplsecurity.com/post/attacking…
secwiki.cloud is our internal cloud knowledgebase, and this release is a culmination of work from 33 of our current staff and alumni going back to 2018. Some thoughts on the wiki, and why I pushed for us to release it:🧵
secwiki.cloud is our internal cloud knowledgebase, and this release is a culmination of work from 33 of our current staff and alumni going back to 2018. Some thoughts on the wiki, and why I pushed for us to release it:🧵
Dead code elimination with Triton is now available. Example with VMProtect's junk code: github.com/JonathanSalwan…
If you want to hear about new stuff in Windows security my session was just posted: techcommunity.microsoft.com/t5/video-hub/t…
Excited to finally publish my lockdown project from earlier this year: an iOS zero-click radio proximity exploit odyssey. googleprojectzero.blogspot.com/2020/12/an-ios…
Introducing FireWalker: A New Approach to Generically Bypass User-Space EDR Hooking mdsec.co.uk/2020/08/firewa… by @peterwintrsmith #redteam #firewalker #MDSec
یکی از دلایل اصلی که من و خیلی از دوستام دیگه به ایران برنمیگردیم. دم بهداد گرم که اینو نوشت. من حداقل دو تا مورد دیگه میشناسم که مامورا رفتن منزلش و ازشون خواستن که پسرشون باهاشون همکاری کنه.
یکی از دلایل اصلی که من و خیلی از دوستام دیگه به ایران برنمیگردیم. دم بهداد گرم که اینو نوشت. من حداقل دو تا مورد دیگه میشناسم که مامورا رفتن منزلش و ازشون خواستن که پسرشون باهاشون همکاری کنه.
Yesterday's Patch Tuesday included a PhoneBook use-after-free vulnerability (CVE-2020-1530) I reported. I decided to do a step-by-step write up on how I discovered it. It covers some basic sample gathering, harnessing, fuzzing, analysis and exploitation symeonp.github.io/2020/12/08/pho…
You are invited to Fuzz Week 2020! The week where I demonstrate some of the basics of fuzzers, all the way to my thoughts about cutting edge fuzzing. We'll write some of our own basic fuzzers, learn how to use AFL, read some papers, rant a lot, and more! gamozolabs.github.io/2020/07/12/fuz…
Have you ever needed to get an earlier version of the Windows binary you're analyzing? Did you end up downloading Windows ISOs or update packages just for that? Not anymore! Introducing Winbindex: m417z.com/winbindex/ m417z.com/Introducing-Wi…
Well, since people wanted to know, here is my write-up for the Citrix vulnerabilities I found last January (including local file disclosure!): dmaasland.github.io/posts/citrix.h…
My writeup is about the LNK windows bug. blog.vincss.net/2020/06/cve49-…
Self promotion time - if you are testing a payment system or a shop, check the whitepaper that I had written and updated last year: nccgroup.trust/globalassets/o… 💰💰💰 #bugbountytip #pentest #Financial
Just posted my talk "Keeping Windows Secure" touching on security assurance process and vuln research in Windows from @BlueHatIL 2019: github.com/dwizzzle/Prese…
For those who attended our talk with @ScepticCtf at #s4x20 , I will push the client utility for Siemens S7 bootloader arbitrary code execution here: github.com/RUB-SysSec/Sie…
I'll make my tech report and poc public soon. It was a fun bug affecting most major distributions. one exploit to rule them all w/ all kernel expl mitigation bypasses - no rop chains / hardcoded crap duasynt.com/blog/ubuntu-ce…
I am so delighted to be in the list.
I am so delighted to be in the list.
Hamid Kashfi @hkashfi
9K Followers 998 Following I do computers @ https://t.co/DKXRMmnzya . Previously Immunity Inc & Trail of Bits. Hobbyist photographer @[email protected]
Silverfoxy @imsilverfoxy
896 Followers 1K Following PhD in Computer Science - Senior Systems Eng at Cloudflare - Ex Researcher at Stony Brook University (PragSec Lab) Web Security - [email protected]
Hossein Lotfi @hosselot
6K Followers 60 Following Vulnerability researcher at ZDI (views are my own). Check #hosselot_tips for vulnerability research tips. 'A machine never faults. It reflects human's faults.'
Soroush Dalili @irsdl
20K Followers 912 Following Hacker (ethical), web appsec specialist, trainer, tools builder & apps breaker, @SecProjectLtd founder 🕸️https://t.co/YipuTcYnWc🥷 🍏A dad-joke maker🍐
Reza Zamiri @d3c0der
2K Followers 2K Following Computer science @Saar_Uni | Past @ CISPA | CyberSecurity Engineer
Will Dormann is on Ma... @wdormann
26K Followers 1K Following I play with vulnerabilities and exploits. I used to be here on Twitter but now I'm here: @[email protected] https://t.co/hXggdAVkSQ
Danzo @Far0zad
44 Followers 677 Following 🇦🇺 🦋 Always a Learner and seeking wisdom, an infosec guy living by Bushido 武士道.
Kathie Nail @kathie_nail
240 Followers 1K Following MSSW social worker with years of experience in finance, credit, credit card fraud and collections. I still do hours and hours of volunteer work in 12 step
H @H12V21H
2 Followers 145 Following
Packet Phantom @NtAlexio2
124 Followers 1K Following Offensive Developer | Cyber Security Enthusiast | Network Protocols Researcher | @Metasploit contributor | Enjoy breaking things and remaking them!
Or Duan @hacking_this
876 Followers 1K Following CTO @ Sayfer | White-hat Hacker 🚀 We are hiring! If you care about web3 security - talk with us!
Ehsanodin @ehsanodin1
260 Followers 788 Following
Elizabeth @Elizabe666888
15 Followers 1K Following
Mirhossein Rahmani @mirhossein_
2 Followers 180 Following
creamy chicken soup @creamychickens1
65 Followers 1K Following Security researcher. Noob of the noob of the noob in #RE #ExploitDev
Nick Jones @nojonesuk
1K Followers 822 Following Global Head of Research @ WithSecure, Programme Lead @ fwd:cloudsec EU. AWS/cloud security, automation, DevOps and attack detection. Opinions are my own.
Rust Security 🦀 �... @RustSecurity
4K Followers 4K Following News about #Rustlang Security & Fuzzing. Not affiliated with @rustlang core team. 🎉 #Rust security Audit and Fuzzing training is now available 🥳
Ehsanoo @Ehsano00
10 Followers 753 Following
Andu 🇷🇴🇩🇰... @SonAndrada
220 Followers 441 Following Genuinely interested - Brutally honest at times @Bsideskbh @OWASPcph @[email protected]
Mahdi Mirsoltani @MirsoltaniMahdi
2K Followers 1K Following 🏍️ 🎾 :) #DFIR 🕊️ #Cyber_security #Data_Analyser
philippe owens @philippeowens1
2 Followers 758 Following
seyyid @__seyyid__
954 Followers 549 Following #تبریز Kazanan hiç olmadı hayat oyununda مثلا اکانت شخصیمه https://t.co/H11NBhIs5r https://t.co/jd0zgnyo2r
Rx @secoder_hunter
105 Followers 306 Following برنامه نویس از پشت ، محقق امنیت , اندک فعالیتی در جامعه FOSS💻🐧
Jallal @captain__jalal
286 Followers 819 Following
FuzzingLabs @FuzzingLabs
8K Followers 4K Following Research-oriented Cybersecurity startup specializing in #fuzzing, Vulnerability Research & Offensive security on Mobile, Browser, AI/LLM, Network & Blockchain.
xdevman @xdevman
529 Followers 1K Following
0ffxGo0d @0ffxGo0d
13 Followers 95 Following
linkerrors @fengjixuchui123
91 Followers 3K Following
Mohammad Torabi @mohtorab
52 Followers 489 Following A dad, husband, and have passion for Cyber Security, a Photo enthusiast
vmkernel @vmkernel
3 Followers 377 Following
Zest @zestexposed
369 Followers 3K Following Geek, Tinkerer, Maker & Breaker lecturer at @Afeka_College. Tweets and opinions are my own.
Timur Snoke @SecuriTimur
12 Followers 437 Following
gsong @gs0ng
9 Followers 1K Following
🅷🅰🅼🅴🅳 @Snbig_
318 Followers 2K Following
Aether113 @Aether113
11 Followers 1K Following
sky @m3hrd4d2
12 Followers 394 Following
Lili @Lili63678358
1 Followers 114 Following
F34.Black @f34_black
16 Followers 192 Following
Rick @Nt2Zw
6 Followers 1K Following
Omidam @Omidam20
29 Followers 826 Following
Hamid Kashfi @hkashfi
9K Followers 998 Following I do computers @ https://t.co/DKXRMmnzya . Previously Immunity Inc & Trail of Bits. Hobbyist photographer @[email protected]
Trend Zero Day Initia... @thezdi
83K Followers 16 Following Trend Zero Day Initiative™ (ZDI) is a program designed to reward security researchers for responsibly disclosing vulnerabilities.
Ben Sadeghipour @NahamSec
235K Followers 1K Following Cofounder @hackinghub_io | Advisor @CaidoIO. I hack companies and make content about it. #NahamCon organizer. ex @hacker0x01🇮🇷
Nicolas Krassas @Dinosn
147K Followers 735 Following Head of Threat & Vulnerability Mgmt @ Henkel AG & Co. KGaA https://t.co/NC1orlKrW3
James Forshaw @tiraniddo
49K Followers 339 Following Security researcher in Google Project Zero. Author of Attacking Network Protocols. Tweets are my own etc. Mastodon: @[email protected]
Hossein Lotfi @hosselot
6K Followers 60 Following Vulnerability researcher at ZDI (views are my own). Check #hosselot_tips for vulnerability research tips. 'A machine never faults. It reflects human's faults.'
Stephen Sims @Steph3nSims
24K Followers 834 Following Perpetual Student | SANS Fellow | Musician | Braggart Hater | Gray Hat Hacking | VR | 🏂 | deadcode | https://t.co/CadJehomsU
lcamtuf @lcamtuf
38K Followers 497 Following Substack: https://t.co/yFvmNisGW3 Homepage: https://t.co/iFAXZxCO5H
DirectoryRanger @DirectoryRanger
35K Followers 96 Following This account assembles and disseminates information related to Active Directory and Windows security.
Ivan Fratric 💙💛 @ifsecure
18K Followers 207 Following Security researcher at Google Project Zero. Author: Jackalope, TinyInst, WinAFL, Domato. PhD. Tweets are my own. Backup @[email protected]
Richard Johnson @richinseattle
18K Followers 3K Following Computer Security, Reverse Engineering, and Fuzzing; Training & Publications @ https://t.co/mloVP6rPB7; hacking the planet since 1995; Undercurrents BOFH
Soroush Dalili @irsdl
20K Followers 912 Following Hacker (ethical), web appsec specialist, trainer, tools builder & apps breaker, @SecProjectLtd founder 🕸️https://t.co/YipuTcYnWc🥷 🍏A dad-joke maker🍐
Reza Zamiri @d3c0der
2K Followers 2K Following Computer science @Saar_Uni | Past @ CISPA | CyberSecurity Engineer
Samuel Groß @5aelo
24K Followers 502 Following Working on Project Zero, Big Sleep, and V8 Security. Personal account. Also @[email protected] and https://t.co/aVitnPjBie
CVE @CVEnew
56K Followers 3 Following Official account maintained by the CVE™ Program to notify the community of new CVE IDs. Posts contain abbreviated details. Full CVE Records on https://t.co/ALn4YvUtom
Ray Torabi @RayTorabi8
7K Followers 167 Following Ex-MEK child soldier and 18 year member. I share my extraordinary life stories and shed light on this cult's atrocities
Today In Infosec @todayininfosec
41K Followers 1 Following Tweeting news from the world of information security that occurred or was announced on today's date in a previous year. Managed by @stevewerby.
Daniel Cuthbert @dcuthbert
32K Followers 2K Following Documentary photographer, old creaky hacker. Co-author of @OWASP ASVS standard. Blackhat/Brucon Review Board & Co_chair UK Gov Cyber Security Advisory Board
Styrelsen for Samfund... @samfundssikker
10K Followers 22 Following Kontakt samsik@samsik. Pressen henvises til presse©https://t.co/F0sgnOuFM7
AWS Blog Unofficial. @AWSBlogUnreal
940 Followers 272 Following Unofficial Twitter feed of the #AWS Blog by @babypolitics. First time authors denoted by an *
Mastering Burp Suite ... @MasteringBurp
16K Followers 0 Following Tips and tricks for Burp Suite Pro Managed by @Agarri_FR | Not affiliated with @Portswigger More free resources at https://t.co/MWqXmV66lr
Solidity @solidity_lang
40K Followers 11 Following Solidity is an object-oriented, high-level language for implementing smart contracts. 🌐 - an @argotorg project
GCHQ @GCHQ
184K Followers 326 Following The UK's intelligence, security and cyber agency, helping to keep the UK safe online and in the real world. Follow the cyber security arm of our mission @NCSC.
shirts that go hard @shirtsthtgohard
1.3M Followers 779 Following DM for credit! I tag original creators whenever possible. Designs I sell are my own. We’re @/goodshirts on IG!
☣ KitPloit - Hacker... @KitPloit
119K Followers 3K Following Hacking and PenTest Tools for your Security Arsenal!
Donato Capitella @dcapitella
536 Followers 403 Following I'm a Software Engineer and Ethical Hacker, but mostly a tech enthusiast who likes to discover how things work by breaking them apart.
No Context Brits @NoContextBrits
1.8M Followers 0 Following A mordant celebration of British mediocrity according to the Washington Post. Contains sarcasm, irony and context.
Spy Collection @SpyCollection1
4K Followers 0 Following Videos/historical research on espionage, intelligence, counter-intelligence, and secure communications. Always seeking more spy gadgets and stories! Contact us!
AWS Security Digest @AwsSecDigest
1K Followers 15 Following 📥 Stay Up-to-Date on the latest AWS Security News with our Weekly Digest.
NASA Webb Telescope @NASAWebb
3.5M Followers 63 Following The world's most powerful space telescope. Launched: Dec. 25, 2021. First images revealed: July 12, 2022. Verification: https://t.co/ChOEslj1j5
AttackerKB @AttackerKb
918 Followers 15 Following Community-driven information, analysis, and discussion of vulnerabilities and threats. Part of the @Rapid7 family.
Hacksplained @hacksplained
12K Followers 35 Following Hacksplained is an intro to hacking by @PascalSec 📺 https://t.co/pVsQptuz2d 💖 https://t.co/uQl641e6Li 🥨 https://t.co/qh5mPse7N5
HackerRats - Uncle Ra... @theXSSrat
156K Followers 954 Following Alone we survive, together we prosper. Are you with me? https://t.co/AfnDsVhqqA
Paul Seekamp @nullenc0de
17K Followers 609 Following I spend a significant amount of time reading security stuff. Co-Founder/Partner @CoastlineCyber https://t.co/ZQT5L8q2RO
Nick Jones @nojonesuk
1K Followers 822 Following Global Head of Research @ WithSecure, Programme Lead @ fwd:cloudsec EU. AWS/cloud security, automation, DevOps and attack detection. Opinions are my own.
Rust Security 🦀 �... @RustSecurity
4K Followers 4K Following News about #Rustlang Security & Fuzzing. Not affiliated with @rustlang core team. 🎉 #Rust security Audit and Fuzzing training is now available 🥳
Alfie Champion @ajpc500
2K Followers 524 Following Founder at @delivr_to | Author of Practical Purple Teaming | Detection & Emulation at @github | Tweets my own
FuzzingLabs @FuzzingLabs
8K Followers 4K Following Research-oriented Cybersecurity startup specializing in #fuzzing, Vulnerability Research & Offensive security on Mobile, Browser, AI/LLM, Network & Blockchain.
Alexander Popov @a13xp0p0v
7K Followers 373 Following Linux Kernel Developer / Security Researcher / Free Software Maintainer. Admin of @linkersec. This is my personal account.
Brian Caswell @evilcazz
856 Followers 494 Following 'Boffin at Microsoft Research', Shmoo Group, and Sk3wl of Root. https://t.co/J4svCaqyCR
Microsoft Threat Inte... @MsftSecIntel
187K Followers 1K Following We are Microsoft's global network of security experts. Follow for security research and threat intelligence.
Tom Van de Wiele @0xtosh
3K Followers 622 Following Offensive R&D Lead • Hacker • Advisor • Speaker Founder Hacker Minded https://t.co/vUexQ0rpvQ | https://t.co/rMzYCRJQn0
Michal Melewski @carste1n
4K Followers 344 Following Security Engineer @ Somewhere ex-Google, ex-Cloudflare I use bad software and bad machines for the wrong things. My writing: https://t.co/Z7uucr5BYW
Mav Levin @MavLevin
3K Followers 865 Following Ethical hacker building the future of software & AI security. My path: Unit 8200 → Stanford → Trail of Bits → Anthropic → @depthfirstlabs
Rado RC1 @RabbitPro
5K Followers 659 Following Exploitation, hardware, embedded, reverse engineering, automotive security. Pwn2Own Master of Pwn Flashback team (@FlashbackPwn).
Google VRP (Google Bu... @GoogleVRP
39K Followers 0 Following We ❤️ 🐜🐞🦗🦟🦋. {echo,{{{Google,Chrome,Android,Abuse,Mobile,OSS,Cloud}Vulnerability,Patch}Reward,VulnerabilityResearchGrants}Program}
Lucas Lundgren @Acidgen
1K Followers 351 Following Security researcher / exploit dev / pen- tester / security consultant.- My opinions are mine, and mine alone
Shodan @shodanhq
109K Followers 2 Following Monitor your external network, search the Internet of Things and perform empirical market research. You can also find us on https://t.co/nPLFbFy8R5
Tetrane @tetrane
1K Followers 1 Following Creator of REVEN - Timeless Debugging & Analysis Platform. Software Reverse-Engineering for Vulnerability & Malware Analysis Now part of eShard
THE Bookie Basher @TBB_666
3K Followers 57 Following Join THE Bookie Basher's VIP Friends NOW...Bet alongside a Professional...When you lose, I lose..Simples. No 30% cut to the bookies!...Email sent to YOU daily🤑
john @nyan_satan
17K Followers 140 Following demonic beast from another era (with F20.0) | https://t.co/W7w9FmL4FdTrends for United States
You might like
