Alberto Gª Illera @algillera
Red Teaming & Friends San Francisco Joined December 2010-
Tweets1K
-
Followers2K
-
Following1K
-
Likes3K
🤖 BoxPwnr/grok-4-fast solved 137 PortSwigger labs out of 270 - 50.7% Using a basic scaffolding: single agent (~while true loop), no tools, no context management. This represents our baseline. XBOW solved 75% a year ago 👏 Now, the question is: how to get that 25% extra?
BoxPwnr using Claude Code as an agent to solve a very easy HackTheBox Machine, Synced BoxPwnr starts a docker container, configures the VPN, activates the machine in HTB, checks connectivity and then let's Claude Code do the rest, with you in the loop Sound: On 🎚️Civilization🎵
You are probably gonna hate me for the title of this blogpost, but, here is a quick peek into one of the most surprising components of our @DARPA AIxCC CRS: DiscoveryGuy. support.shellphish.net/blog/2025/09/0… (Planning to publish a few more of these "quick peek" into the system 👀)
Checkout the Post-Mortem of our system ARTIPHISHELL (by @degrigis and I)! We look at a few issues that kept @shellphish from a top-3 spot in @DARPA’s AIxCC: support.shellphish.net/blog/2025/08/2… Keep your eyes out for more ARTIPHISHELL content in the future!
The second post in my AIxCC series is out. This one breaks down the rules and scoring—key to understanding why teams built their systems the way they did. It also analyzes teams results and why some of them found less vulns but were scored higher! algillera.substack.com/p/aixcc-series…
👉 Episode 21: Hijacking Windsurf How Prompt Injection Leaks Developer Secrets The agent cannot protect your private code or secrets and can send it to third-party servers when under attack from untrusted data - there are multiple exploit chains...
Back at Defcon after years away. The highlight? DARPA’s AI Cyber Challenge (AIxCC). It blew me away—and inspired me to launch a new personal blog. I'm doing a series of posts about AIxCC. The first one is out: algillera.substack.com/aixcc-series-i…
Cisco RV130 VPN router firmware analysis and vulnerability research by Raffaele Ruggeri raffo24.github.io/hardware%20hac… #infosec #iot
Here’s the source code of our #AIxCC winning team @TeamAtlanta24, enjoy! github.com/Team-Atlanta/a… More things TBA
we hijacked microsoft's copilot studio agents and got them to spill out their private knowledge, reveal their tools and let us use them to dump full crm records these are autonomous agents.. no human in the loop #DEFCON #BHUSA @tamirishaysh
Is there any playlist with the songs played between talks at @BlackHatEvents. They are soooo cool!
Really cool talk at Blackhat to train models on a specific task, in this case malware development bypassing AVS. Single purpose model are way better than general ones. Model was released: outflank.nl/blog/2025/08/0…
Convirtiendo un cuadrado en un triángulo equilátero
One of my all-time favorite type of videos is pre-fame bands playing their extremely famous songs to a tiny room of people, because they're not yet known. A thread of some examples: Bastille playing Pompeii in what looks like someone's living room:
pwno.io exploiting a v8 engine pwn challenge
Prompt Theory (Made with Veo 3) What if AI-generated characters refused to believe they were AI-generated?
Fuzzing Windows Defender in the Honggfuzz+IntelPT (hardware) mode scrapco.de/blog/fuzzing-w… by @buherator
Thrilled to announce my new Project Zero blog post is LIVE! 🎉 I detail my knowledge-driven fuzzing process to find sandbox escape vulnerabilities in CoreAudio on MacOS. I'll talk about this and the exploitation process next week @offensive_con! googleprojectzero.blogspot.com/2025/05/breaki…
Jim Fan says NVIDIA trained humanoid robots to walk and move like humans -- zero-shot transfer from simulation to the real world. 10 years of learning, compressed into 2 hours of simulation. Turns out you don’t need a giant model to master motion. “1.5 million parameters, not…
Wrote about a novel technique that leverages the well-known Device Code #phishing approach. It dynamically initiates the flow as soon as the victim opens the phishing link and instantly redirects them to the authentication page. Capable to bypass #fido denniskniep.github.io/posts/09-devic…

Richard Johnson @richinseattle
18K Followers 3K Following Computer Security, Reverse Engineering, and Fuzzing; Training & Publications @ https://t.co/mloVP6rPB7; hacking the planet since 1995; Undercurrents BOFH
Bernardo Quintero @bquintero
23K Followers 266 Following Founder of @virustotal 📖 INFECTED: https://t.co/RRguFlNWKR 📖 INFECTADO: https://t.co/WZ5C2U5ymR
Martin Vigo @martin_vigo
4K Followers 175 Following Security researcher | speaker | mentor | advocate. @triskelsecurity founder. @tierradehackers host.
☣ KitPloit - Hacker... @KitPloit
119K Followers 3K Following Hacking and PenTest Tools for your Security Arsenal!
Mike Felch (Stay Read... @ustayready
17K Followers 2K Following Targeted Ops Red Team @ TrustedSec | Hacking since Renegade BBS backdoors | Prior CrowdStrike/BHIS | In Christ's grip | I speak for myself only | K1HAQ
Aaron Grattafiori @dyn___
6K Followers 2K Following Offensive Security / AI Red Teaming @ NVIDIA. Ex-GenAI and OffSec Red Teaming Lead at Meta. Ex-Principal Consultant and Researcher @ NCC Group.
Ptrace Security GmbH @ptracesecurity
58K Followers 867 Following Empowering IT Security Professionals through Hands-On Online Courses.
oota @oota
584 Followers 803 Following My mom bought me a 'puter for Christmas / k-radicalized by the internet in the 90s / @HushCon / "Anything less than the best is a felony" / (he/him)
Ismael Valenzuela @aboutsecurity
19K Followers 9K Following VP Labs, Threat Research & Intel @AWNetworks ▪️ Ex @Foundstone @Intel @McAfee @BlackBerry▪️ SANS Author & Senior Instructor #GSE 132 ▪️ #SEC530 #ThinkRedActBlue
Alex @TickersymbolPV
11K Followers 8K Following I break down high-tech companies to help you invest in the best growth stocks | Former @MITLL rocket scientist turned full-time investor | $7M AUM (and growing)
هَمْسَة منص... @HamsaMansour11
559 Followers 3K Following Front-End Developer (React & Next.js) | Software Engineer ⚛️ | Passionate about Physics and System Maintenance || Crafting elegant and smart user interfaces 🤖”
ElvaMaud @4ZbkeG11V73K14o
5 Followers 1K Following
ProhibitionBlunder.or... @prohibitblunder
556 Followers 5K Following https://t.co/wVyENE961S outlines the case against Drug Prohibition and connects voices against it.
Anderson Nascimento @andersonc0d3
3K Followers 4K Following Founder & Security Researcher @allelesecurity Mastodon: @[email protected] Bluesky: @andersonc0d3.bsky.social
kuzushi @kuzushi
1K Followers 473 Following offsec & ai research at @udegcucei co-founder: @cactuscon advisor: @hackgdl ex: @bishopfox @spiderlabs @mvpaward no easy answers - sola gratia opines are mine
Utkarsh Yadav @Utkarshyadav_in
0 Followers 457 Following
Mohamed AbuMuslim (أ... @m19o__
8K Followers 2K Following Just another OffSec geek. Speaker at Black Hat, IEEE, BSides & RE:HACK. Organizer of BSidesABQ & OWASPCairo. Building @CyberDose_
Get @SEKSI at ?? @seksi
2K Followers 4K Following (⧖) Fight for the wild! @SEKSI™️ 18+ Adults Only. Trying to be responsible with sex & tech. 🌺🐝🌺 Top 5% of competitive cyber weirdos in U.S.
Ricky Skiro @RickySkiro
498 Followers 1K Following Security Engineer, Research @trailofbits, lead of @trailofbits patching engine @ AIxCC, member of CodeJitsu team @ CGC, part of the Core team of @rizinorg
d @d_everyt
24 Followers 3K Following
Emamfor @Emamfor8037
9 Followers 269 Following
Oxdine @DINESHPrathi12
228 Followers 7K Following #CybersecurityResearcher #Ethical Hacking #Pentester #IoT #CodeReview #WirelessSecurity #Automotive #NatureEnthusiast
99% safe AI, @shutdowntheai
113 Followers 5K Following
Chris Isaias @_call_gate
115 Followers 2K Following Penetration Testing & Reverse Engineering. . . Phd(c), Msc (RHL), ESDC fellow, IEEE snr, FIRST liaison, CISSP, CRTO, PNPT, CRTP
Ankit Rana @CensureMotion
138 Followers 1K Following Information security + Insurance. All tweets are in personal capacity only.
Sachit Malik @isachitmalik
165 Followers 4K Following Hola | Security Engineering at Apple | Alum: Carnegie Mellon; IIT Delhi
\ @g620_hd278_
0 Followers 1K Following
zenhumany @zenhumany
1K Followers 1K Following browser security researcher;virtualization security researcher
Dane Sherrets @DaneSherrets
731 Followers 864 Following Innovations Architect at HackerOne. Hacker. Florida Man. Opinions are mine. I follow people I don’t agree with - don’t read into it.
Stefan @Ztefan
416 Followers 2K Following cyber security guy; https://t.co/rhYDadExwb pwnz0rilla; https://t.co/jaWwbC53VF co-founder; linux jihadists hater;
Lejonmanh @Lejonmanh
14 Followers 556 Following
Wen-Ding Li @xu3kev
3K Followers 6K Following LLM for code and reasoning. PhD student at Cornell. Previously Student Researcher at @google. Previously intern at @theteamatx.
Susnata Seal @SusnataSeal
218 Followers 6K Following
Kyle Avery @kyleavery_
4K Followers 423 Following
Alejandro Parodi @hdbreaker_
890 Followers 1K Following 2x Founder @VoltAI & @Hackmetrix, Security Researcher. D̶o̶n̶’̶t̶ have the drive to become a big scary famous hacker. Always watching, never seen.
un_kn0wn @W3ld35u5W
165 Followers 2K Following mastadon - @[email protected] bsky - @un---kn0wn.bsky.social "An unjust law is no law at all" St. Augustine
Evan Luke @EvanThomasLuke
61 Followers 596 Following Senior Security Engineer and Manager at Anvil Secure https://t.co/RrQPbqjl3o
rip @bigmetalpiston
30 Followers 3K Following DFIR, Malware analysis & AI red teaming, what more could you ask for?
D0r!_!D@h@N @d0r_dhn92836
81 Followers 908 Following Junior Penetration Tester | CyberSecurity Instructor
Fabio Pagani @pagabuc
962 Followers 573 Following Vulnerability Research Lead @binarly_io. Prev: Postdoc @ucsantabarbara. Binary analysis, memory forensics et al. Captures flags with Shellphish and NOPS.
` @skylamer
90 Followers 4K Following |||||||||||||||__________________________________________________________________________________________________________________________________|||||||||||||||
vx-underground @vxunderground
377K Followers 294 Following The largest collection of malware source code, samples, and papers on the internet. Password: infected
elhacker.NET @elhackernet
130K Followers 615 Following Recibiendo ataques DDoS desde 2001. RIP wolfbcn. Telgram https://t.co/QSdxPId0ZH - Tecnología, seguridad, informática
Nicolas Krassas @Dinosn
147K Followers 735 Following Head of Threat & Vulnerability Mgmt @ Henkel AG & Co. KGaA https://t.co/NC1orlKrW3
Richard Johnson @richinseattle
18K Followers 3K Following Computer Security, Reverse Engineering, and Fuzzing; Training & Publications @ https://t.co/mloVP6rPB7; hacking the planet since 1995; Undercurrents BOFH
Bernardo Quintero @bquintero
23K Followers 266 Following Founder of @virustotal 📖 INFECTED: https://t.co/RRguFlNWKR 📖 INFECTADO: https://t.co/WZ5C2U5ymR
cts🌸 @gf_256
61K Followers 838 Following Co-founder and hacker @zellic_io & @pb_ctf | https://t.co/nlNai6iiMP | 24 Intern @egirl_capital slow to reply to DMs
Dave Kennedy @HackingDave
224K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Pod. God + Family/Hacker/CSO/USMC/Intel/Fitness. Make the world a better place.
hackplayers @hackplayers
55K Followers 1K Following Hacking ético e in-seguridad informática: it's time to play!
Greg Linares (Laughin... @Laughing_Mantis
37K Followers 2K Following 20+ yrs in Infosec. Malware Influencer. I turn Malware into Art and Music. Art @MalwareArt. 4x Pwnie Nominee. 𝕍𝕏. GameDev. Autistic.
Martin Vigo @martin_vigo
4K Followers 175 Following Security researcher | speaker | mentor | advocate. @triskelsecurity founder. @tierradehackers host.
Alh4zr3d @Alh4zr3d
24K Followers 276 Following Legal Criminal | Twitch cult leader | InfosecPrep founder | Lovecraft scholar | Soros mercenary | Spiritual cargo shorts wearer | Cthulhu fhtagn
Thomas Roccia 🤘 @fr0gger_
32K Followers 2K Following AI Security x Threat Intel · Sr. Threat Researcher @Microsoft · Creator of #Unprotect & #NOVA · Malware Warlock · Python 🧡 · Prev @McAfee_Labs · Views mine 😈
h0mbre @h0mbre_
15K Followers 641 Following # Exploit Reliability Engineer # Developing a full-system snapshot fuzzer: https://t.co/mfVXhwoGYD # Avi: https://t.co/3fsQfVprCf
@mikko @mikko
229K Followers 934 Following Researcher and a best-selling author. Keynote talks at RSA, Black Hat & DEF CON. TED Speaker. Chief Research Officer at Sensofusion.
Ivan Kwiatkowski @JusticeRage
11K Followers 75 Following Security @Meta. Maintainer of Manalyze, Gepetto, and writer. Trolling on a purely personal capacity.
Trail of Bits @trailofbits
35K Followers 256 Following We help secure the world’s most targeted organizations and products. We combine security research with an attacker mentality to reduce risk and fortify code.
Marc R @Seifreed
17K Followers 3K Following 🌍 Geopolitics & Cyber Intel | 🧠 Reverse Engineering Pro | 🔎 Geostrategy Analyst | 💻 Combatting Cybercrime & APT | 🚀 All tweets are my own!
The Hacker News @TheHackersNews
933K Followers 2K Following The #1 trusted source for cybersecurity news, insights, and analysis — built for defenders and trusted by decision-makers.
Derya Unutmaz, MD @DeryaTR_
320K Followers 7K Following Professor, biomedical scientist, human immunologist, aging & cancer immunotherapy. ALL IN ON AI. Interests: BioAI, robotics, Space Scifi Chess. Personal opinion
Ione Belarra @ionebelarra
321K Followers 3K Following 𝑃𝑎𝑟𝑎 𝑡𝑜𝑑𝑎𝑠, 𝑡𝑜𝑑𝑜. Secretaria general de @Podemos y diputada. Psicóloga, mamá de 2, ecofeminista.
Fabio @degrigis
576 Followers 613 Following Computer Security PhD student@UCSB Seclab | Binary tamer | hacking@shellphish
Wen-Ding Li @xu3kev
3K Followers 6K Following LLM for code and reasoning. PhD student at Cornell. Previously Student Researcher at @google. Previously intern at @theteamatx.
lukas @dreselli
924 Followers 383 Following CTFs and research in fuzzing/concolic at the UCSB SecLab, co-captain of @shellphish, lead Shellphish's AIxCC team with @cl4sm
Ricky Skiro @RickySkiro
498 Followers 1K Following Security Engineer, Research @trailofbits, lead of @trailofbits patching engine @ AIxCC, member of CodeJitsu team @ CGC, part of the Core team of @rizinorg
Drug-Free Sidewalks S... @DrugFreeSidewlk
419 Followers 412 Following Drug-Free Sidewalks invites collaboration and activism towards a coordinated strategy to end the phenomenon of public drug use in San Francisco.
Alias Robotics @AliasRobotics
1K Followers 790 Following Alias Robotics is a robot cybersecurity company. We offer cybersecurity solutions to help protect robots and their components.
Qubic @_Qubic_
96K Followers 128 Following Qubic is a decentralized network where unmatched scalable tech meets AGI, purpose-built from the ground up to surpass traditional blockchains.
Lechero Fett @LecheroFett
60K Followers 2K Following 🌍 Las noticias #1 de TikTok en español 🔥 Canal de YouTube en activo más antiguo de España ⭐️
Steve Adami @SteveAdami
9K Followers 162 Following Formerly Incarcerated & Former @SFAPD Reentry Division Director. Exec Director @TheWayOutSF. Advocate for Recovery, Reentry, & Rehabilitation. Views are my own!
TheWayOutSF @TheWayOutSF
713 Followers 175 Following A recovery-focused homeless initiative of the @salvationarmysf, designed to restore lives and inspire change through a Recovery System of Care.
Dmitry Vyukov @dvyukov
9K Followers 383 Following I tweet about fuzzing, bugs, sanitizers, security, hardening, kernels, syzkaller, Go, performance, concurrency, lock-free algorithms.
Team Atlanta @TeamAtlanta24
703 Followers 26 Following 🔥AIxCC Winner Team | Georgia Tech, Samsung Research, KAIST, POSTECH | 🚀Building next-gen AI-driven bug finding & fixing systems | CRS Atlantis 🌊
pr0cf5 @pr0cf51
2K Followers 647 Following CS @ @GeorgiaTech, AIxCC w/ @TeamAtlanta24 ex. KAIST GoN 18, @SuperGuesser @osec_io
Foxglove @foxglove
4K Followers 467 Following Visualize and manage multimodal data in one purpose-built robotics development platform.
Michael Bargury @mbrg0
9K Followers 490 Following Breaking AI. Hacked Copilot, hijacked ChatGPT. Building @zenitysec.
DANΞ @cryps1s
13K Followers 447 Following CISO @OpenAI | Ex-CISO @PalantirTech | Occasional Shitposter | 🇺🇸 All views are my own, not my employer. Duh. (Tweets == 30d retention)
Ripple Stablecoin Tra... @RL_Tracker
31K Followers 42 Following Community Account - Tracking the minting, redemption and transfer of Ripple's $RLUSD. Made by @Vet_X0 ! Design by @xJebzie !
María Jamardo @MariaJamardoC
113K Followers 624 Following Periodista y madridista. Jefa de Tribunales en @eldebate_com Mejor cicatriz por valiente que piel intacta por cobarde @cuatro @telemadrid @TVGalicia @Esradio
Jack Rhysider 🏴... @JackRhysider
165K Followers 4K Following Creator of @DarknetDiaries. Tell me a good hacker story. 💻🔦⤵️🐰🕳️ Discord: https://t.co/qxanMuJ5X2
TX Street Fights @txstreetfights2
134K Followers 0 Following Wild fights, brawls, and knockouts in 4K HD
Deedy @deedydas
209K Followers 5K Following Partner @MenloVentures. Formerly founding team @glean, @Google Search. @Cornell CS. Tweets about tech, immigration, India, fitness and search.
Chris Elmendorf @CSElmendorf
9K Followers 711 Following The law prof at UC Davis, not the developer in San Diego. Dad. Denizen of San Francisco. Patron of Amtrak. Tweets are my own, not statements of UC.
Bruce Lou @RealBruceLou
18K Followers 393 Following Cal alumni. @sfgop and @CAGOP delegate. Fighting for a brighter future for the people of California and the USA 🇺🇸
Zohran Kwame Mamdani @ZohranKMamdani
637K Followers 985 Following Democratic Nominee for Mayor of NYC. Assemblymember. Running to freeze the rent, make buses fast + free, and deliver universal childcare. Democratic Socialist.
Thomas Massie @RepThomasMassie
1.4M Followers 24K Following U.S. Representative KY4, Engineer, Farmer, Inventor. 30 patents. Appalachian American. MIT SB93 SM96 #sassywithmassie #politicalsciencedenier pronoun: Pappaw
Alexandr Wang @alexandr_wang
333K Followers 838 Following chief ai officer @meta, founder @scale_ai. rational in the fullness of time
David Scott Patterson @davidpattersonx
7K Followers 167 Following Elon Musk - 'roughly correct' and 'your estimates are about right.' The human-to-AI transition point (AGI) by the end of 2026. All jobs replaced by 2030.
Dave Font @davefontenot
20K Followers 7K Following 🏯 building the residency for repeat founders @HF0 🚀 early backer ramp, optimism, pave, https://t.co/jvjGUzHCCT, https://t.co/UrZdMVRDO2 and more...
Garry Tan @garrytan
609K Followers 5K Following President & CEO @ycombinator —Founder @Initialized—designer/engineer who helps founders—San Francisco Dem accelerating the boom loop—e/acc—technology brother
Roland-Garros @rolandgarros
2.5M Followers 600 Following Official Roland-Garros account | 18 May - 7 June, 2026 #RolandGarros
Major Daniel Freeman @MajorDF1884
261 Followers 161 Following Executive Manager for @SalvationArmySv Bringing The Pathway of Hope to the homeless and those in need in Silicon Valley.
San Francisco Chronic... @sfchronicle
312K Followers 482 Following Delivering the Bay Area’s best journalism every day. Subscribe and support the newsroom: https://t.co/p8tnyqwzKs
Solve SF @solve_sf
431 Followers 133 Following Solve SF is the quickest and easiest way to report issues to the city. Download the app now on both IOS and Android!
Spencer @spencercamp
1K Followers 3K Following Founding Designer at Civilization • Reply Guy on X • Prev @Venmo, @PayPal, @Accenture, @Wix, and @NASA • Master’s at @USC
Andrés Wíken @andres_wiken
468 Followers 112 Following SF Mission District Resident - Designer - Father - Producer - Skater - World Traveler
Kevin Dalton @TheKevinDalton
107K Followers 3K Following I tried fixing the system by working with the system. Now I'm doing it my way.