Jacob Soo @_jsoo_
Founder https://t.co/dU7gVAkwY9 Singapore Joined July 2011-
Tweets317
-
Followers10K
-
Following2K
-
Likes49K
Lost in Translation: Apache Vulnerabilities That Don’t Count (Literally) Found a few bugs in Apache projects in 2024 - SSRF in Pony Mail Foal & RCE on whimsy\.apache\.org Fixed but no CVEs Sharing is Caring: starlabs.sg/blog/2025/09-l… Found by @CurseRed & former intern Devesh.
Awesome work done by @CurseRed and Devesh
Running #TXM in userland thanks to binary instrumentation. Just attach lldb and enjoy breakpoints and single stepping. I assume attaching your favourite fuzzer shouldn’t be too hard either. All of this and more is available to our trainees in December. antid0te.sg/blog/25-12-15-…
🔥 FIRST BLOOD! 🔥 Wow, less than 24 hours and @junr0n drew first blood! 🩸 He just became the first student to solve our Summer Pwnables challenge and claim that $50 SGD + signed book! 📚💰 C-Shell level: CONFIRMED 🥷 We got a few more books+$ available for this challenge
🔥 FIRST BLOOD! 🔥 Wow, less than 24 hours and @junr0n drew first blood! 🩸 He just became the first student to solve our Summer Pwnables challenge and claim that $50 SGD + signed book! 📚💰 C-Shell level: CONFIRMED 🥷 We got a few more books+$ available for this challenge
Wow. @junr0n you are amazingly fast. 👍🏼👏🏼
CASE CLOSED: CVE-2025-29824 0 public samples, 0 information Suspect: Windows CLFS driver Crime: UAF leading to Privilege Escalation Status: ACTIVELY EXPLOITED ITW Investigation: Debugged and documented Case files: starlabs.sg/blog/2025/07-m… Done by our intern, Ong How Chong
One of our current intern, @goatmilkkk shared his Chrome-atic escape adventure using CVE-2024-30088 Epic obstacles documented in it too! starlabs.sg/blog/2025/07-f…
Refreshing to see the whole research journey documented by @goatmilkkk Awesome work
Refreshing to see the whole research journey documented by @goatmilkkk Awesome work
Our researchers, @KaligulaSec & @cplearns2h4ck were credited for 4 vulnerabilities in Microsoft this month. Huge congratulations to both of them for their exceptional work. 👏 msrc.microsoft.com/update-guide/v… msrc.microsoft.com/update-guide/v… msrc.microsoft.com/update-guide/v… msrc.microsoft.com/update-guide/v…
Awesome work by @KaligulaSec & @cplearns2h4ck . First time @KaligulaSec got credited with CVEs 🥳
Awesome work by @KaligulaSec & @cplearns2h4ck . First time @KaligulaSec got credited with CVEs 🥳
Exciting match so far between Samsung Lions 🦁 vs Doosan Bears 🐻 🥳🥳🥳
@offbyoneconf 2025 Day 2 presentation videos are now available on our official YouTube channel! Subscribe, like 👍 and comment! lnkd.in/geDcTSsr
@offbyoneconf 2025 Day 1 presentation videos are now available on our official YouTube channel! Subscribe, like 👍 and comment! lnkd.in/gi5jQBi4
For everyone who's pre-ordered: which were your favourite chapters? 1) Automated Variant Analysis 🤖 2) Hybrid Binary Analysis 🔎 C) Coverage-Guided Fuzzing 💥 D) Any other chapter? nostarch.com/zero-day 🤝 Let me know!
To everyone who pre-ordered "From Day Zero to Zero Day" – thank you for your patience. The wait is almost over. We're in the final countdown to start shipping in early July from @nostarch (and 12 Aug officially everywhere else)! Your support has been incredible. It’s time to…
SQL Injection despite using prepared statements? 🧐 Turns out that SQL syntax can be ambiguous! Learn how this has led to vulnerabilities in several popular PostgreSQL client libraries: sonarsource.com/blog/double-da… #appsec #security #vulnerability
The embargo (12:00 UTC 2025-06-10) is over, let's start a thread on Hydroph0bia (CVE-2025-4275), a trivial SecureBoot and FW updater signature bypass in almost any Insyde H2O-based UEFI firmware used since 2012 and still in use today. English writeup: coderush.me/hydroph0bia-pa…
When life gives you tangerines🍊 Intern Lin Ze Wei's task: Port a 2-bug exploit to Pixel 6 Pro Problem: One bug "doesn't work" Solution: Make it work with 1 bug Sometimes the best research comes from working with what you think you have starlabs.sg/blog/2025/06-s…
Sometimes the best mentorship is giving space to explore. @Peterpan980927 guided Zewei to not just solve the problem, but understand it deeply. Now i want to drink tangerine juice too :D
Sometimes the best mentorship is giving space to explore. @Peterpan980927 guided Zewei to not just solve the problem, but understand it deeply. Now i want to drink tangerine juice too :D
[#POC2025 NOTICE] 20 Years. Reborn. The brand evolved - The mission remains. Welcome to a new era of POC. ⏰ Date: November 13–14, 2025 📍 Venue: Four Seasons Hotel, Seoul, South Korea 🇰🇷 🎤 CFP: June 5 – September 30 🧑💻 Training: June 5 – September 30 🎟️ Registration:…

chompie @chompie1337
83K Followers 1K Following hacker, weird machine mechanic, X-Force Offensive Research (XOR)
cts🌸 @gf_256
61K Followers 837 Following Co-founder and hacker @zellic_io & @pb_ctf | https://t.co/nlNai6iiMP | 24 Intern @egirl_capital slow to reply to DMs
Ptrace Security GmbH @ptracesecurity
58K Followers 867 Following Empowering IT Security Professionals through Hands-On Online Courses.
starlabs @starlabs_sg
9K Followers 18 Following A Singapore company that discovers vulnerabilities to help customers mitigate the risks of cyber attacks. Organisers of @offbyoneconf
Alex Plaskett @alexjplaskett
12K Followers 572 Following Security Researcher | Pwn2Own 2018, 2021, 2022, 2024 | Posts about 0day, OS, mobile and embedded security.
h0mbre @h0mbre_
15K Followers 641 Following # Exploit Reliability Engineer # Developing a full-system snapshot fuzzer: https://t.co/mfVXhwoGYD # Avi: https://t.co/3fsQfVprCf
blackorbird @blackorbird
36K Followers 672 Following Peace and Love. Just Analysis/Hunter. #APT #threatIntelligence #Exploit #CTI Need Job
Gareth Heyes \u2028 @garethheyes
37K Followers 1K Following JavaScript for hackers: Learn to think like a hacker. https://t.co/e0aNEbEDk5
kmkz @kmkz_security
19K Followers 2K Following Offensive Security, pom-pom girl... Who cares ?? Bourbon Offensive Security Services | BOSS
Haifei Li @HaifeiLi
8K Followers 151 Following For contact in the security community. NOTE: All the tweets are totally my personal opinions, not about any of my current employer stuff.
simo @_simo36
7K Followers 116 Following
hasherezade @hasherezade
89K Followers 909 Following Programmer, #malware analyst. Author of #PEbear, #PEsieve, #TinyTracer. Private account. All opinions expressed here are mine only (not of my employer etc)
b33f | 🇺🇦✊ @FuzzySec
33K Followers 1K Following 意志 / Antiquarian @ IBM X-Force / Team 501 / Ex-TORE ⚔️🦅 / I rewrite pointers and read memory / AI Psychoanalyst / Teaching @CalypsoLabs
crazyman_army @CrazymanArmy
6K Followers 3K Following CTFer / APT hunter / RedTeam / BlueTeam the member of @r3kapig the leader of @ShadowChasing1 CVE-2022-30190 find job opportunities opinions are own not group
Richard Johnson @richinseattle
18K Followers 3K Following Computer Security, Reverse Engineering, and Fuzzing; Training & Publications @ https://t.co/mloVP6rPB7; hacking the planet since 1995; Undercurrents BOFH
Sanjay Vardhan @0xspektre
144 Followers 453 Following messing with js engines | pwner & ex-captain @teambi0s
LnTFSOnkine @TfsLn45587
0 Followers 131 Following
Ravi Kumar Mahaur @ravikar6
15 Followers 482 Following
micheal339 @micheal33922570
6 Followers 299 Following
Ray @xiaobye_tw
5 Followers 290 Following
[email protected] @r3tr074
1K Followers 556 Following Security research | https://t.co/SFZNGja5pn | CTF pwn/rev @eltctfbr + @r3kapig | yes, I'm the browser guy
PkNova @PkNova76
20 Followers 243 Following
Robert Smith @Smith1731642
15 Followers 245 Following
asdf @qwerzxcv1234a
1 Followers 62 Following
Kiri To @KiTo2037137
0 Followers 26 Following
Dummy Account @Asta_nine
3 Followers 533 Following
George Botrs @BotrsGeorg83808
7 Followers 591 Following
Gadeela dinesh Reddy @DineshGade17125
2 Followers 174 Following
bowen @hubowent
8 Followers 196 Following
Alphe @Alphe_
541 Followers 623 Following セキュリティに興味のある学生です 顔と名前覚えるの苦手なので、出会ったら声かけてもらえると嬉しいです! SecHack365'24/Seccamp'24 サブ垢: @Alphe_sub
Dru Banks @c0dex_dang3r
57 Followers 890 Following ◇Veteran◇ 🇺🇸 | Offensive Security ⚔️ | Reverse Engineering 👨🏿💻 | Malware Analysis 🐞
Titan @TitanDevv
65 Followers 499 Following
Bryce McDonald @Moses_876
67 Followers 682 Following
floating @speck415
2 Followers 1K Following
hik hok @hikhok998371
0 Followers 35 Following
hugo @hugo202_
1 Followers 37 Following
G LLeaves @GLleaves
1 Followers 35 Following
monkeontheroof @monke0ntheroof
4 Followers 243 Following
Prateek Shrivastva @Prateek41041453
2 Followers 314 Following
Sabre MCity Sabre Man... @Sabre0196
301 Followers 6K Following
Bhagirathsinh Vala @Vala9007
94 Followers 2K Following Dad first 👨👧 | Building apps (iOS & Android) | Leading engineers | Into AI, health tech & global affairs 🌍 | Caffeine-dependent lifeform ☕
john doesh @doesh_john65688
9 Followers 363 Following
Fokov @Fokov9093629
2 Followers 481 Following
Harsh Jaiswal @rootxharsh
22K Followers 1K Following Building @hacktronai | researching at @httpvoid0x2f | auditing at @cure53berlin | prev @zomato @vimeo @pdiscoveryio
chompie @chompie1337
83K Followers 1K Following hacker, weird machine mechanic, X-Force Offensive Research (XOR)
cts🌸 @gf_256
61K Followers 837 Following Co-founder and hacker @zellic_io & @pb_ctf | https://t.co/nlNai6iiMP | 24 Intern @egirl_capital slow to reply to DMs
Trend Zero Day Initia... @thezdi
83K Followers 16 Following Trend Zero Day Initiative™ (ZDI) is a program designed to reward security researchers for responsibly disclosing vulnerabilities.
Ptrace Security GmbH @ptracesecurity
58K Followers 867 Following Empowering IT Security Professionals through Hands-On Online Courses.
starlabs @starlabs_sg
9K Followers 18 Following A Singapore company that discovers vulnerabilities to help customers mitigate the risks of cyber attacks. Organisers of @offbyoneconf
Alex Plaskett @alexjplaskett
12K Followers 572 Following Security Researcher | Pwn2Own 2018, 2021, 2022, 2024 | Posts about 0day, OS, mobile and embedded security.
[email protected]... @0xdea
14K Followers 20 Following When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl.
h0mbre @h0mbre_
15K Followers 641 Following # Exploit Reliability Engineer # Developing a full-system snapshot fuzzer: https://t.co/mfVXhwoGYD # Avi: https://t.co/3fsQfVprCf
Yarden Shafir @yarden_shafir
24K Followers 311 Following A circus artist with a visual studio license
Halvar Flake @halvarflake
44K Followers 3K Following Choose disfavour where obedience does not bring honour. I do math. And was once asked by R. Morris Sr. : "For whom?" @[email protected]
blackorbird @blackorbird
36K Followers 672 Following Peace and Love. Just Analysis/Hunter. #APT #threatIntelligence #Exploit #CTI Need Job
Zhuowei Zhang @zhuowei
33K Followers 187 Following link in bio ⬛⬛⬛⬛⬛🟩🟩🟩🟩🟩🟩 ⬛⬛⬛⬛🟩🟩🟩🟩🟩🟩🟩🟩 ⬛⬛🟧⬛🟩🟫🟫🟫🟫🟫🟫🟩 ⬛⬛🟧⬛🟫🟫🟫🟫🟫🟫🟫🟫 ⬛⬛🟧🟧🟫🟧🟩🟧🟧🟩🟧🟫🟧 ⬛⬛🟧🟧🟫🟧🟫🟧🟧🟫🟧🟫🟧 ⬛⬛⬛🟧🟧🟧🟧🟧🟧🟧🟧🟧🟧 ⬛⬛⬛🟩🟩🟧🟧🟫🟫🟧🟧🟩🟩 ⬛🟫🟫🟫🟫🟫🟧🟧🟧🟧🟩🟩🟫 🟫🟫🟧🟫🟫🟫🟫🟩🟩🟩🟩🟩🟧 🟫🟧🟧🟧🟫🟫🟧🟫🟫🟩🟩🟧🟧
mdowd @mdowd
32K Followers 746 Following Internet Hacker. Founder of @vigilant_labs. Previously, co-founder of Azimuth Security (now L3Harris Trenchant)
Gareth Heyes \u2028 @garethheyes
37K Followers 1K Following JavaScript for hackers: Learn to think like a hacker. https://t.co/e0aNEbEDk5
kmkz @kmkz_security
19K Followers 2K Following Offensive Security, pom-pom girl... Who cares ?? Bourbon Offensive Security Services | BOSS
Haifei Li @HaifeiLi
8K Followers 151 Following For contact in the security community. NOTE: All the tweets are totally my personal opinions, not about any of my current employer stuff.
skateboarding dog @sk8boardingdog
79 Followers 15 Following skateboarding dog CTF 🚩 BSides Canberra 2025
Ray @xiaobye_tw
5 Followers 290 Following
GongXiling @GXiling
272 Followers 248 Following
John Cena @JohnCena
14.4M Followers 1.1M Following A forum of thoughts and perspectives designed to ignite conversations and actions leading to growth, and occasional self promotion. #NeverGiveUp #RiseAboveHate
Ken Gannon (伊藤 �... @Yogehi
2K Followers 289 Following 95% random tweets, 5% security related tweets. Pwn2Own 2023/2024. YayTweetsAreMyOwnYay
Alphe @Alphe_
541 Followers 623 Following セキュリティに興味のある学生です 顔と名前覚えるの苦手なので、出会ったら声かけてもらえると嬉しいです! SecHack365'24/Seccamp'24 サブ垢: @Alphe_sub
Quentin Minster Picav... @laomaiweng
196 Followers 377 Following Usual mood: confused. Ingénierie à rebours & endless home renovation. Page table walk enjoyer. He/him. @[email protected] @laomaiweng.bsky.social
RewriteLab @RewriteLab
47 Followers 9 Following A specialized research team focused on web security vulnerabilities and exploitation techniques
Jiří Vinopal @vinopaljiri
10K Followers 469 Following Threat Researcher at Check Point @_CPResearch_ #DFIR #Reversing - All opinions expressed here are mine only. https://t.co/iWvwWF1AnN
Adriana Porter Felt @__apf__
64K Followers 932 Following I like writing silly Tweets, but that doesn't pay so I also type at @googledeepmind. Principal Engineer. ex-@googlechrome. volunteer @2ndharvest. 🇺🇸🇨🇷
Battle Programmer Yuu @netspooky
20K Followers 1K Following knuck if you buck 日本語/español OK (he/they) @tmpout @binarygolf @[email protected] (fedi) @ https://t.co/mZ77OENytt (bsky)
azraelxuemo @azraelxuemo
118 Followers 19 Following BlackHat Europe 2024, Zer0Con 2025, OFF-BY-ONE 2025, BlackHat USA 2025, DEFCON 33
Minh Duong @WhiteHoodHacker
2K Followers 1K Following uiuc cs | ctf @sigpwny | @defcon 30 speaker | he/him
Frank Wu @FrankOverF1ow
721 Followers 383 Following CTFer, Student, (Rev & Pwn & Automation), DEFCON 33 Finalist Exploring System Security and Porgram Analysis. Hacking with @r3kapig and @S1uM4i for fun.
Shreyas Penkar @streypaws
279 Followers 254 Following Android Vulnerability Researcher (Kernel/Chrome)
Project Zero Bugs @ProjectZeroBugs
35K Followers 0 Following A bot that posts the latest blog posts and disclosures from Google's Project Zero
Attila Szasz @4ttil4sz1a
294 Followers 693 Following security researcher, aficionado of theoretical CS and program analysis, player of 🎹 and 🎸. connoisseur of class 4 scrambling & technical hikes⛰️
My Space! @Supakiad_Mee
2K Followers 243 Following
たけまる🦦 @tkmru
2K Followers 1K Following 昼は炭酸水を飲んで、夜は星を見てる / 著書『ポートスキャナ自作ではじめるペネトレーションテスト ―Linux環境で学ぶ攻撃者の思考 』『マスタリングGhidra』他 / AVTOKYO, Black Hat Arsenal, CODEBLUE Bluebox 他 / 頭取 of @sterrasec
Emu Exploit @EmuExploit
710 Followers 23 Following Perth based Aussie CTF Team 🇦🇺 https://t.co/6ZecPNl3At
charli xss @_bradan
233 Followers 378 Following monkey enthusiast, apprentice wizard. father of @EmuExploit and ctf with @malta_ctf
canalun @i_am_canalun
1K Followers 2K Following sec research💣 (@flatt_security) / @firefox dev🦊 (Birchill)
hashkitten @hash_kitten
2K Followers 173 Following vulnerability research @assetnote // hacking // codegolf // ctf with 🛹🐶
Security Research Lab... @SecReLabs
2K Followers 30 Following We are SRLabs, a hacking research collective and consulting think tank. Follow us to stay on top of the latest hacking research. https://t.co/GtjRnKnr9N
Kalmarunionen @kalmarunionenDM
2K Followers 94 Following Homepage: https://t.co/R1QLSkNBhi CTFtime Link: https://t.co/UZqSKg6yJ6
GEEKCON @GEEKCONTOP
532 Followers 62 Following Initiated by DARKNAVY. New @GeekPwn. Globally unmatched security geek event, promoting the visualization & measurable value of security ecosystem capabilities.
Sto @YoursSto
46 Followers 342 Following Founder of @N0PSctf | Cybersecurity Engineering Student 🦋 | Member of @BrHackeuses
Azara / Norihide Sait... @a_zara_n
3K Followers 1K Following 🇯🇵/🧑💻/Security(Cyber,Cloud,Web)/実務者/@flatt_security/ Expert of Cloud Security @gmodev /CloudSecJP CoreMember/ #AWSCommunityBuilder / すべて個人の見解
Michael.Gorelik @smgoreli
1K Followers 322 Following CTO at Morphisec, CISSP, GitHub - https://t.co/JlYOhDEG5c
Rémi J. @netsecurity1
996 Followers 611 Following Security engineer interested in reverse engineering, vulnerability exploitation & low level stuff. Working at @Synacktiv. Techno music enthusiast 🎧
Angelos T. Kalaitzidi... @0xShad3
378 Followers 709 Following RE / VR & Intense Coffee Consumption. He/Him. Opinions are my own . Curr: iOS . Past: Hypervisors.
Cristofaro Mune @pulsoid
2K Followers 778 Following In between Physics & Computing. Fault Injection, TEEs, IoT & anything else challenging my curiosity. Founder at Raelize (@raelizecom)
Crusaders of Rust @cor_ctf
2K Followers 37 Following A European and American Security Research Group
st98 @st98_
3K Followers 2K Following CTF(team: @BunkyoWesterns🐈, @zer0pts🐣, @TeamHarekaze⚓)が楽しくて好き。Web問ばかり解いています。