blackorbird @blackorbird
Peace and Love. Just Analysis/Hunter. #APT #threatIntelligence #Exploit Need Job github.com/blackorbird/AP… Joined February 2016-
Tweets2K
-
Followers28K
-
Following601
-
Likes523
Detect the Sliver framework huntandhackett.com/blog/hunting-f…
A Glance into the Spyware Industry github.com/blackorbird/AP…
UAT4356/STORM-1849 🦾 CVE-2024-20353 + CVE-2024-20359 blog.talosintelligence.com/arcanedoor-new…
4,000 threat groups ref m-trends-2024: github.com/blackorbird/AP…
Analyzing APT28 custom post-compromise tool for exploiting CVE-2022-38028 to obtain credentials (Windows Print Spooler Elevation of Privilege Vulnerability) microsoft.com/en-us/security…
analysis report wezard4u.tistory.com/6795
APT44: Unearthing #Sandworm Group pdf: github.com/blackorbird/AP… IOCs: virustotal.com/gui/collection…
The Annual Threat Assessment 2024 github.com/blackorbird/AP…
Starry Addax targets human rights defenders in North Africa with new malware blog.talosintelligence.com/starry-addax/
Command Injection and Backdoor Account in D-Link NAS Devices github.com/netsecfish/dli…
APT #Sidewinder C2: NGINX response is fingerprint-able blog.strikeready.com/blog/rattling-…
rheaeve.substack.com/p/xz-backdoor-…
rheaeve.substack.com/p/xz-backdoor-… https://t.co/LCwfFrKmjd
How APT groups operate in the Middle East ptsecurity.com/ww-en/analytic…
Re: the #xz #backdoor Looks like hansjans162 (hansjansen162[@]outlook[.]com) may be an alter ego OR accomplice of JiaT75 (jiat0218[@]gmail[.]com). e.g. burying a merge request in a bunch of similar requests for games salsa.debian.org/users/hjansen/…
Florian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇Michael Koczwara @MichalKoczwara
18K Followers 2K Following Founder @Intel_Ops_io Threat Intelligence, Adversary Infrastructure Hunting, Curated TI Feed (Coming Soon) https://t.co/vixTz8xKuF https://t.co/VQWaze6gaFJustin Elze @HackingLZ
52K Followers 5K Following Hacker/CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race carsWill @BushidoToken
29K Followers 3K Following Threat Intel & Hunting @Equinix | Co-founder @CuratedIntel | Co-author @SANSForensics FOR589 | @darknetdiaries #126: REvilThomas Roccia 🤘 @fr0gger_
25K Followers 2K Following Sr. Threat Researcher @Microsoft, Malware Warlock, Threat Intel, Python🧡- Former @McAfee_labs, Goon @Defcon, Creator of #UnprotectProject - Tweets are my ownςεяβεяμs - м�.. @c3rb3ru5d3d53c
21K Followers 235 Following 💕 Malware Hunter Killer 💕 #binlex & #mwcfg Developer 📽️ YouTuber 👩💻 She/Her 💍@DravenSwiftbow Support my work 👇 ☕️ https://t.co/SfTI8uJa23Germán Fernández @1ZRR4H
29K Followers 575 Following 🏴☠️ OFFENSIVE-INTEL 🏴☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱Alexandre Borges @ale_sp_brazil
23K Followers 111 Following Vulnerability Researcher and Exploit DeveloperClandestine @akaclandestine
36K Followers 5K Following | Security | Osint | Threat Research | Opsec | Threat Intelligence | Infosec | Threat Hunting |Karsten Hahn @struppigel
22K Followers 702 Following Malware Researcher at G DATA. Ransomware hunter. he/him 🦔🌈🏳️⚧️JAMESWT @JAMESWT_MHT
35K Followers 419 Following #Independent #Malware #Hunter #CyberSecurity #InfoSec https://t.co/KCFBJcHHcWGi7w0rm @Gi7w0rm
14K Followers 677 Following Threat Intelligence and #URINT Analyst | See my Linktree for other socials | In case I post false intel, contact me! Support me: https://t.co/5WgDqr0K8pSamir @SBousseaden
24K Followers 1K Following Detection Engineering | Elastic Security Mastodon: @[email protected]张惠倩 @momika233
15K Followers 195 Following 上天入地无所不能小女子是也!! Anda boleh melakukan segala-galanya dari syurga ke bumi, wanita kecil!! If you have any questions, please contact meKatie Nickels @likethecoins
54K Followers 3K Following Director of Intel at @redcanary. SANS Certified Instructor for FOR578: CTI. Senior Fellow at @CyberStatecraft. She/her. Mastodon: @[email protected]Cyber_OSINT @Cyber_O51NT
15K Followers 295 Following OSINT treasure hunter, investigator, Cyber Threat Intel analyst, cyberspace explorer. I enjoy studying cyber threat actors. Opinions are my own.Vincent Yiu @vysecurity
27K Followers 203 Following Follow me for Cybersecurity #Thought #Leadership. Director Red Team. Help organizations safeguard their businesses from the bad guys.Matthew @embee_research
12K Followers 1K Following Malware Researcher & Reverse Engineer | Creating and Sharing Educational Cyber ContentWill Dormann @wdormann
26K Followers 1K Following I play with vulnerabilities and exploits. @[email protected]0xMalwa.re @0xM4lw4r3
0 Followers 23 FollowingJosef Anger @Josef761469504
41 Followers 195 Following Owner and CEO in technological joint-stock companies as chairman of the board. Alliance of Liberals and DemocratsEmenike Okorie @Arcl0rd
80 Followers 843 Following B2B Technical writer transitioning to Cybersecurity | S&L-form Video editor - Tik-Tok, FB, IG, & YouTube | Adobe Premiere Pro & RUSH, CapCut, Inshot, Canvashiyan @shiyan2025
3 Followers 44 FollowingAmr Teleb @Amr_Teleb22
5 Followers 205 Following0x59901R @0x59901R
37 Followers 499 FollowingMike @mmaurialj
3 Followers 295 Following Academic background in healthcare admin & management; CS & infosec enthusiast.xff @xff16310397
15 Followers 435 FollowingElios @elios_security
1 Followers 76 Following Qui que l'on soit au fond de nous, nous ne sommes jugés que d'après nos actes.Lol @Lol61899072
0 Followers 4 FollowingCyberForged @CyberForgedVkng
478 Followers 643 Following Hacker FTW #InformationSecurity #Cybersecurity #BugbountyEtc @Etseterra
2 Followers 517 Following0xMahmud @cybersheikhhh
4 Followers 299 Following !maginary , Muslim , #cybersecurity , #computerscience , security researcherdaemon @daemon_circle
1 Followers 19 Following TI researcher with an affinity for the dark arts occasionally rambles on a blogEmma jack @emmajack005
206 Followers 2K FollowingXiaoleng @xiaoleng4444
2 Followers 22 Followingresearcher Gpt LLM @researchGptllm
230 Followers 4K FollowingMDC9ISRT @Rabbit250993
3 Followers 88 Followingeveryall @Everyall0101
5 Followers 153 Followingjovial @grepNstep
30 Followers 2K Following Retweet != endorsement. Trust those who seek the truth, doubt those who find it@techbrunchfr@infosec.. @TechBrunchFR
2K Followers 897 Following Jack of all trades, master of some. CTO / Pentester @vaadata - Mastodon: @[email protected]MIKE @MIKE79759695
20 Followers 196 FollowingPaula Olivia Rapetti @paulaoliviara
8 Followers 191 FollowingSecgen @Secgen14
20 Followers 506 FollowingBlue Sky @Bye00Sky
0 Followers 62 FollowingRafael @rafaeleliasf
145 Followers 1K FollowingChungus Bungus @Syedjunaid6119
1 Followers 179 FollowingAbdulrazaq Bello @BelloAbdul10390
5 Followers 187 Following Professional #resume writers trained to optimize your resume. Helping you write the next chapter of your career. v #resume #career #jobhuntingThanks Always @iTimonPumbaa
8 Followers 368 FollowingHassin Ahmed @ahm77347
2 Followers 13 FollowingMichele @MicheleAnne_24
1 Followers 124 FollowingAndreas Bråthen @andtux
4 Followers 703 Followingtek @tek49853691
6 Followers 2K FollowingGuardbit @guard__bit
10 Followers 115 Following Your Trusted Cybersecurity Partner. Join us in securing every click, every swipe, and every interaction. #GuardBit #CyberSecuritygnida project @gnidaproject
19 Followers 38 Following Всероссийский научно-исследовательский институт гнидFlorian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇MalwareHunterTeam @malwrhunterteam
219K Followers 36 Following Official MHT Twitter account. Check out ID Ransomware (created by @demonslay335). More photos & gifs, less malware.Michael Koczwara @MichalKoczwara
18K Followers 2K Following Founder @Intel_Ops_io Threat Intelligence, Adversary Infrastructure Hunting, Curated TI Feed (Coming Soon) https://t.co/vixTz8xKuF https://t.co/VQWaze6gaFUnit 42 @Unit42_Intel
51K Followers 88 Following The latest research and news from Unit 42, the Palo Alto Networks (@paloaltontwks) Threat Intelligence and Security Consulting Team covering incident response.Justin Elze @HackingLZ
52K Followers 5K Following Hacker/CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race carsWill @BushidoToken
29K Followers 3K Following Threat Intel & Hunting @Equinix | Co-founder @CuratedIntel | Co-author @SANSForensics FOR589 | @darknetdiaries #126: REvilESET Research @ESETresearch
32K Followers 30 Following Security research and breaking news straight from ESET Research Labs.Virus Bulletin @virusbtn
59K Followers 1K Following Security information portal, testing and certification body. Organisers of the annual Virus Bulletin conference. @[email protected]Thomas Roccia 🤘 @fr0gger_
25K Followers 2K Following Sr. Threat Researcher @Microsoft, Malware Warlock, Threat Intel, Python🧡- Former @McAfee_labs, Goon @Defcon, Creator of #UnprotectProject - Tweets are my ownGermán Fernández @1ZRR4H
29K Followers 575 Following 🏴☠️ OFFENSIVE-INTEL 🏴☠️ Cyber Threat Intelligence by Hackers | Security Researcher en https://t.co/rDrSxZASB3 | @CuratedIntel Member | 🥷🧠🇨🇱Alexandre Borges @ale_sp_brazil
23K Followers 111 Following Vulnerability Researcher and Exploit DeveloperThe DFIR Report @TheDFIRReport
53K Followers 0 Following Real Intrusions by Real Attackers, the Truth Behind the Intrusion. Services: https://t.co/XW613EKt2wSentinelOne @SentinelOne
52K Followers 1K Following ONE autonomous platform to prevent, detect, respond, and hunt. Do more, save time, secure your enterprise: https://t.co/N75g1HAnCs 🐱💻Karsten Hahn @struppigel
22K Followers 702 Following Malware Researcher at G DATA. Ransomware hunter. he/him 🦔🌈🏳️⚧️x0rz @x0rz
98K Followers 422 Following Cybersecurity & Threat Intelligence. Knowledge is power, France is bacon 🥓JAMESWT @JAMESWT_MHT
35K Followers 419 Following #Independent #Malware #Hunter #CyberSecurity #InfoSec https://t.co/KCFBJcHHcWGi7w0rm @Gi7w0rm
14K Followers 677 Following Threat Intelligence and #URINT Analyst | See my Linktree for other socials | In case I post false intel, contact me! Support me: https://t.co/5WgDqr0K8pSamir @SBousseaden
24K Followers 1K Following Detection Engineering | Elastic Security Mastodon: @[email protected]张惠倩 @momika233
15K Followers 195 Following 上天入地无所不能小女子是也!! Anda boleh melakukan segala-galanya dari syurga ke bumi, wanita kecil!! If you have any questions, please contact meCrypto | #1 Free Sign.. @best_analysts
8K Followers 65 Following We have been in the Crypto Industry since 2016 🚀 Join us on the journey of portfolio building 👈 Free Top Sygnals from the best analysts ⚔️ Over 2000+ Coins 🔥HackerGPT @thehackergpt
8K Followers 0 Following #1 Trusted ethical hacking AI for web and network hacking.Marius 'f0wL' Genheim.. @f0wlsec
3K Followers 2K Following Malware REsearch/DFIR @SI_FalconTeam | Staff @vxunderground (Malware & APT Curation) | @chaosdarmstadt | @[email protected]Cyber Team @Cyberteam008
912 Followers 50 Following Threat Hunting | APT Tracking | Malware Analysis | Darkweb Monitoring "Unity is Strength"hithere @asdasd13asbz
529 Followers 12 FollowingChaofan Shou @shoucccc
8K Followers 2K Following phd student @ucberkeley working on security (#fuzzing #plse #llm) / intern @hackthedefiChris Duggan @TLP_R3D
4K Followers 2K Following Inventor of Patent Pending Endpoint Threat Intelligence Agent (GB2314601.2)Objective-See Foundat.. @objective_see
19K Followers 1 Following 🍎 🛡️ 🛠️ Open-Source Tools 📚 "The Art of Mac Malware" books 🫂 "Objective by the Sea" conference Support us on https://t.co/tuGceSeyiC 🙏[email protected].. @0xdea
12K Followers 19 Following When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl.CertiK @CertiK
417K Followers 1K Following Smart contract audits, KYC, on-chain monitoring, bug bounties, penetration testing, and more. Also follow 🤝 @CertiKCommunity 🚨 @CertiKAlertJohn Hammond @_JohnHammond
240K Followers 2K Following Hacker. Cybersecurity Researcher @HuntressLabs || https://t.co/qUeDM3lSClZuk @ihackbanme
17K Followers 1K Following Mobile & Security Research | Founder @ZecOps (Acq. by JAMF) 🐊 & @ZIMPERIUM (Acq.) | #FreeTheSandbox✌ | ❤️ Chess | My random thoughts, only some are accurate.Arda Büyükkaya @WhichbufferArda
3K Followers 941 Following Cyber Threat Intelligence Analyst @EclecticIQ | Threat Hunter | Malware Analyst |. (All opinions expressed here are mine only). 🇹🇷🇳🇱Elon Musk (Parody) @ElonMuskAOC
1.4M Followers 635 Following I’m on a quest to bang AOC on Mars. (Parody Account)Leonid Bezvershenko @bzvr_
3K Followers 286 Following Studying math, reversing and Twitter... | Security Researcher @ Kaspersky, GReAT | Drovosec CTF team | Tweets are my ownIvan Kwiatkowski @JusticeRage
9K Followers 73 Following Lead cyber threat researcher @HarfangLab. Maintainer of Manalyze, Gepetto, and writer. Trolling on a purely personal capacity.ahhhhfs @abskoop
660K Followers 1K Following ❤️虚假推友🫶🫰😘💕 收集分享各种互联网垃圾|投稿侵权请私信|谢谢不接推|TG频道订阅更新:https://t.co/OmSvNms9yl |小号:@ahhhhfs l🔔重复刷无相关评论会被拉黑|链接打不开用Chrome浏览器,不要用国产浏览器Oddvar Moe @Oddvarmoe
19K Followers 1K Following Red Teamer @TrustedSec | MS MVP | Speaker | Security Researcher | Blogger | Total n00b & always learning | UNC1194 | Tinkerer | Gamer I try to inspire!Joshua J. Drake @jduck
28K Followers 2K Following A funemployed researcher living in the intersection between security and embedded Rust.Jonathan Scott @jonathandata1
26K Followers 598 Following American Mobile, IoT & Crypto Researcher (Malware/Spyware/Forensics) Founder @TheMiladGroup, Doctoral Student - Comp Sci - Digital Espionaget3ft3lb @t3ft3lb
2K Followers 182 Following Threat researcher, Malware analyst All tweets represent my personal opinionramado @ramado78
650 Followers 274 Following Threat hunter, Pentester, Sec researcher. #lab52 and #securityartwork Editor https://t.co/PPE94bluEfMikhail Kasimov @500mk500
3K Followers 549 Following Malicious traffic detection system -- @maltrail -- co-developer Maltrail Demo Page: https://t.co/eimXdZvjWo Maltrail FAQ: https://t.co/Kne9lewPHTSKII @SethKingHi
1K Followers 597 Following Senior Security Researcher @kaspersky GReAT, tweets and opinions are my own.阿米娜・阔伊姆.. @rebecca_hoshino
234K Followers 291 Following 25°C, 78%, 19:31 | 春を告げ踊り出す山菜、夏を見る宇治野原唐草乾くわ、秋の月登ったまん丸さお祝い、冬を過ぎまた月日を数えるŁukasz @maldr0id
13K Followers 999 Following Military-grade @Android malware reverse engineer @Google || "Tom Brady of malware strings analysis" - @MalwareTech || Tweets are my own opinions || he/him ✨🌈🦄Pokémon @Pokemon
8.1M Followers 56 Following The official account for The Pokémon Company International. Catching 'em all since '96! ❤️💜 https://t.co/eidYL7oDfszhixiang hao @HaoZhixiang
1K Followers 296 Following APT threat,Web security,Osint Shandong Lanxiang School China。My sample analysis is just for learning researchAnonymous Operations @AnonOpsSE
548K Followers 335 Following AoS 2.0 - Tweeting news concerning #Anonymous and everything of importance.来去之间🇺🇦�.. @ComeAndGo8964
43K Followers 10K Following 移动互联网分析师/不拉黑任何人/牛排吃9成熟/囤积强迫症/电影/大聪明/网络安全质检员/爆脾气/不对任何政治人物产生信仰/黑暗游侠/大叔/无权解封账号/能打胜仗/作风优良/私信功能已关闭Donald J. Trump @realDonaldTrump
87.3M Followers 51 Following 45th President of the United States of America🇺🇸Anonymous TV 🇺🇦 @YourAnonTV
376K Followers 246 Following We are #Anonymous, internet-based, international team from literally all around the world | Latest Anonymous news regarding #OpRussia & #OpIran campaignsSlowMist @SlowMist_Team
78K Followers 388 Following SlowMist is a Blockchain security firm established in 2018, providing services such as security audits, security consultants, red teaming, and more.Cos(余弦)😶�.. @evilcos
72K Followers 1K Following Founder of @SlowMist_Team. Creator of https://t.co/tFCQExsAlL // 要么驾驭机器、要么被机器奴役。Gameel Ali 🤘 @MalGamy12
5K Followers 920 Following Threat Researcher @nextronsystems and volunteer at @vxunderground@blackorbird That malware is pretty 🌶️ it test the environment first pretty throughly before orchestrating the attack. I like how they went above and beyond to get plausible phishing emails too to try and get a better rate
Microsoft Copilot for Security, generally available today, is informed by large-scale data and Microsoft threat intelligence to deliver insights and improve security outcomes. It has prebuilt promptbooks, collections of prompts that accomplish specific security-related tasks.
Check out this list of DLL side-loading commonly employed by the Lazarus group lately. Stay on high alert and be cautious of any unusual DLL file loading from suspicious folder paths Missing DLL: spoolsv.exe ➡️ ualapi.dll Side-loaded by legitimate binary: mobsync.exe ➡️…
I can't believe so many people are sleeping on this research: code-white.com/blog/leaking-o… Code White again smashes it out of the park with their meticulous knowledge of software stacks. I have so much respect for them publishing this. Nice work, @mwulftange!
⚠️ Update for CVE-2024-21413 💣 Managed & confirmed Microsoft Outlook Remote Code Execution (RCE) but won't publish details (yet).
GitHub - Sh3lldon/FullBypass: A tool which bypasses AMSI (AntiMalware Scan Interface) and PowerShell CLM (Constrained Language Mode) and gives you a FullLanguage PowerShell reverse shell. Feel free to modiy and DM if you find some bugs :) github.com/Sh3lldon/FullB…
We've posted an update on what's currently known and unknown about this obscure debugging feature.
We're revealing details of an obscure debugging feature in the Apple A12-A16 SoC’s that bypasses all of the hard-to-hack hardware-based memory protections on new iPhones. Its not used by the firmware and we don't know how the attackers found out about it. securelist.com/operation-tria…
Looks like #APT #Turla sample from #Hungary @ShadowChasing1 @Arkbird_SOLG @blackorbird bazaar.abuse.ch/sample/b3119dc…
@blackorbird more and more entity:domain whois:[email protected] cloudproxyserv[.]com cflayerprotection[.]com cloudlflares[.]com
@blackorbird Damn you succeed to have all of them in a screenshot 😅🙌
@blackorbird more and more🤣 offers-ptclnetpk[.serveirc.com
We just published an analysis of ClearFake, a new "fake updates" threat using watering holes, smart contracts and fake browser updates. In a nutshell, #ClearFake is a malicious JavaScript framework deployed on compromised websites to deliver malware. blog.sekoia.io/clearfake-a-ne… ⬇️
🚨 VMware Zero-Day A threat actor on the forum claimed to have found a vulnerability in VMware. He stated that when the VM image related to the #vulnerability is downloaded, opened, and run from the guest OS in VMWare, an executable file is uploaded to the host OS. #VMware…
@blackorbird analyzing v1.1.1.1 cnc and 3.1.1.2 client??? XD lmao reverse harder yo
@blackorbird It's the same webp/v8 bug in IOImage from a few days ago. The patch landed the same day it was disclosed for iOS. chromium.googlesource.com/webm/libwebp/+…
23 years ago, I joined the Kaspersky team. Today, I am 46 and that makes it half my life dedicated to protecting the world. You probably know some of the research we did over the years in GReAT – looking back, I’m very proud of what we accomplished. It has been an incredible…
Cobalt Strike redirector technique used recently by Russian APT29/Nobellium ⚡️ This is a Red Team technique (T1090.002 External Proxy) attack.mitre.org/techniques/T10… to hide C2 behind a legit website. This could be very useful for Threat Hunters/Intel to set up a hypothesis/monitor…
A new samples of the PowerMagic script mentioned in @kaspersky's Bad Magic report surfaced on @virustotal Report securelist.com/bad-magic-apt/… Rule valhalla.nextron-systems.com/info/rule/APT_… Sample; uses OneDrive instead of Dropbox virustotal.com/gui/file/8288a…