-
Tweets1K
-
Followers5K
-
Following1K
-
Likes1K
This release is probably going to be one of our biggest and most impactful! Kudos to the team @peterwintrsmith @modexpblog @s4ntiago_p @GigelV41464 @saab_sec 🙌
This release is probably going to be one of our biggest and most impactful! Kudos to the team @peterwintrsmith @modexpblog @s4ntiago_p @GigelV41464 @saab_sec 🙌
I've been researching the Microsoft cloud for almost 7 years now. A few months ago that research resulted in the most impactful vulnerability I will probably ever find: a token validation flaw allowing me to get Global Admin in any Entra ID tenant. Blog: dirkjanm.io/obtaining-glob…
Happy to finally share a new blog with @exploitph on our work revisiting the Kerberos Diamond Ticket. ✅ /opsec for a more genuine flow ✅ /ldap to populate the PAC 🆕 Forge a diamond service ticket using an ST We finally gave it a proper cut 💎 huntress.com/blog/recutting…
Have you ever wondered if there was a way to deploy a "Remote EDR"? Today I'm excited to share research I've been working on for the past couple months. This dives into DCOM Interfaces that enable remote ETW trace sessions without dropping an agent to disk. Includes a detailed…
My #SOCON2025 talk is now live for those interested in credential guard research. youtu.be/9U_7u849yQQ?fe…
fwiw, you can speed up cracking RC4 kerberoast tickets by requesting the ticket from the AS without a PAC
Mine and @_dirkjan's @defcon talk, Abusing Windows Hello Without a Severed Hand went live yesterday. We discuss both privileged and unprivileged Windows Hello abuse. Hope you all enjoy it. youtu.be/mFJ-NUnFBac?fe…
Spent some time updating the TelemetrySource project. - Updated mappings for the Threat-Intelligence provider - Added a folder for the Threat-Intelligence provider + added a README A lot more updates coming soon! Project link: github.com/jsecurity101/T…
Happy Friday! I have gotten a lot of questions around ETW Patching as of late. I decided to write a blog on understanding ETW Patching, check it out! jsecurity101.medium.com/understanding-…
Wow did not have “be in a book” for my 2024 🤯🤩 Thank you Denis Isakov! Thank you @exploitph for always including me in the journey of Kerberos with you 💜!
Today I am releasing PowerParse. This is a PE Parser I've created that has helped me in the past perform initial triage on malware. I'll provide some examples in the threads below. Link: github.com/jsecurity101/P… 1/x
Today I am releasing a whitepaper and new tool (ADOKit) as part of my @XForce research I will be presenting at @BlackHatEvents #BHEU on Wednesday. Links are below 🔗 Whitepaper: ibm.com/downloads/cas/… Tool: github.com/xforcered/ADOK…
Working on a new tool that will be ready soon. One thing I can say from the research.... if your environment leverages Windows Hello without TPM's, DO NOT allow the default setting of a digit only based pin. Windows stores the pin length and can be brute forced in seconds.
While I'm at it, I've published the PoC tool used in @4ndr3w6S, @jsecurity101 and my post: trustedsec.com/blog/the-clien… It's just a quick PoC but maybe someone will find it interesting: github.com/0xe7/EventSnip…
Finally updated my RitM tool with the DES TGT session roasting code if anyone is interested. Reminder, this isn't intended to be attack-ready code! github.com/0xe7/RoastInTh… The attack is described in detail in my DES post (currently pinned to my profile).
Like the opsec of NightHawk but missing Aggressor-like scripting functionality? Check out DayBird, an extension I built for NightHawk to allow for automation of operator workflows and initial check-in actions via C# plugins. b:securityintelligence.com/x-force/extend… gh:github.com/xforcered/DayB…
Happy to finally share our slide deck/demo videos from our @texascyber talk, “You DISliked DCSync? Wait For NetSync!” Thank you x3000 to @MindsEyeCCF, for help with the fantastic slides, & my co-presenter/friend/mentor/research partner @exploitph 🤗 github.com/4ndr3w6/Presen…
Continuing with Part 1- @4ndr3w6S and I take a look at the remainder of the attributes on the Hacker Recipies chart. Take a look! And get ready for Part 2! This is a series after all 😎
Continuing with Part 1- @4ndr3w6S and I take a look at the remainder of the attributes on the Hacker Recipies chart. Take a look! And get ready for Part 2! This is a series after all 😎
Continuing on our deep exploration of DACL abuse based detections, @4ndr3w6S and I take a look at object abuses with PowerMad. Remember, just because it may be banal, doesn't mean it doesn't have value! Many common attributes are great environmental baselineing tools!
Continuing on our deep exploration of DACL abuse based detections, @4ndr3w6S and I take a look at object abuses with PowerMad. Remember, just because it may be banal, doesn't mean it doesn't have value! Many common attributes are great environmental baselineing tools!
Part 3 is out!! @4ndr3w6S and I cover several attributes that are, in our opinion, lesser known. However, some of these had some incredibly interesting attacks/detections. Check it out! And thanks for joining us on this journey! 😁
Part 3 is out!! @4ndr3w6S and I cover several attributes that are, in our opinion, lesser known. However, some of these had some incredibly interesting attacks/detections. Check it out! And thanks for joining us on this journey! 😁
Justin Elze @HackingLZ
65K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Charlie Bromberg « ... @_nwodtuhs
15K Followers 652 Following Trying to hack the way we hack things 🏴☠️
Florian Roth ⚡️ @cyb3rops
207K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Oliver Lyak @ly4k_
9K Followers 265 Following Yet another security researcher 🔦 Github: https://t.co/7WFOFz17KI
Grzegorz Tworek @0gtweet
36K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
Adam Chester 🏴�... @_xpn_
36K Followers 501 Following Hacker for Hire at @SpecterOps | Blog at https://t.co/tjfTOllCEu | Insta at https://t.co/PqR6CZPwjl
sn🥶vvcr💥sh @snovvcrash
12K Followers 490 Following Sr. Penetration Tester / Red Team Operator @ptswarm :: Author of the Pentester’s Promiscuous Notebook :: He/him :: Tweets’re my pwn 🐣
Dave Kennedy @HackingDave
224K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Pod. God + Family/Hacker/CSO/USMC/Intel/Fitness. Make the world a better place.
n00py @n00py1
13K Followers 962 Following Retweeter of InfoSec/Offsec/Pentest/Red Team. Occasional blogger/Independent security research.
mgeeky | Mariusz Bana... @mariuszbit
14K Followers 824 Following 🔴 Operator, Initial Access afficionado, Researcher, ex-AV engine developer, ex-Malware analyst 🦋 @mgeeky.bsky.social 🫖 green tea lover
mpgn @mpgn_x64
18K Followers 230 Following Flibustier du net ̿ ̿̿'̿'\̵͇̿̿\=(•̪●)=/̵͇̿̿/'̿̿ ̿ ̿ ̿ Podcast Hack'n Speak @hacknspeak / https://t.co/GyACSFg9mw
an0n @an0n_r0
13K Followers 727 Following CRT(E|O|L) | OSCP | @RingZer0_CTF 1st (for 2yrs) | HackTheBox Top10 | RPISEC MBE | Flare-On completer | GoogleCTF writeup winner | SSD research | Math MSc |🇭🇺
Josh @passthehashbrwn
10K Followers 334 Following Adversarial Simulation at IBM, tweets are mine etc.
Dirk-jan @_dirkjan
29K Followers 206 Following Hacker at @OutsiderSec. Researches AD and Azure (AD) security. Likes to play around with Python and write tools that make work easier.
Filip Dragovic @filip_dragovic
7K Followers 1K Following My research unless stated otherwise. My opinions are my own and do not represent the views of my employer.
klez @KlezVirus
8K Followers 708 Following Independent Cyber Security Researcher - Opinions are my own
Vincent Yiu @vysecurity
29K Followers 254 Following Director, Red Team, Offensive Security. Help organizations safeguard their businesses from the bad guys.
Dummy Account @Asta_nine
2 Followers 612 Following
nuyo4h @nuyo4h
0 Followers 3K Following
Mostafa Mohamed @Mostafa86145563
5 Followers 111 Following
Edward @ElroyG28863
1K Followers 2K Following
Kylm @0xKylm
355 Followers 1K Following reverse fuzzing and maldev / internals enjoyer at @FuzzingLabs 20yo https://t.co/koi6Phdmmf
Cerbersec @cerbersec
4K Followers 215 Following I make things to break things | Red Team @MDSecLabs | Opinions are my own
Mathieu @Mathieu1396284
0 Followers 11 Following
Abdullah Asif @Abdulla36287154
16 Followers 434 Following
Shawn @anthemtotheego
2K Followers 397 Following Adversary Sim @ X-Force Red | Head of Capability R&D | Offensive AI | Implant Dev | Work In Progress | Thoughts My Own | https://t.co/eNspx7jLvm
Raphaël Lacroix @Chepycou
1 Followers 101 Following 🇫🇷 French ✏️ Aspiring penetration tester (Currently looking for a Penetration Tester position in Toulouse). CTF Player 🎹 Plays piano, drums and composes
m3zalians @m3zalians2137
0 Followers 11 Following
Nicole @Nicole190640
1 Followers 41 Following
Hosein @Hosein635643
0 Followers 198 Following
JFK_The_Best @JFK_The_Best
15 Followers 685 Following
SquareZer0 @__squarezero__
137 Followers 1K Following @protos3c team member | CTF player | Pentester
Hannibal Barca @Hanniofbarca
0 Followers 81 Following
lanske @lanske0110
2 Followers 205 Following
isenhu @isenhu
36 Followers 2K Following
Rohit Rajwansi @rajwansi_rohit
20 Followers 418 Following IIT Bombay EE 2018 भारतीय अभियंता, Network Security, Red Team, White Hat, Backend developer, Python, Lang-chain, LLM, Bug Bounty, DHH, Music production 🎁
butterp0sa @butterp0sa
4 Followers 595 Following
Umarhau @Umarhau4418
52 Followers 699 Following
Mert @Mert298432
1 Followers 206 Following
Hak Chandara @sec_Littleboy
13 Followers 574 Following Figuring out how to protect networks while fueled by coffee. ☕ | Management Information Technology student & InfoSec enthusiast.
Bumblebee @Lolippop23
172 Followers 2K Following Cybersecurity & AI enthusiast | Offensive Security Learner | Building, breaking & understanding systems | Curious mind
./desktop/krypt skidd... @helpmehackyou
29 Followers 680 Following penetration tester , security+ , network server security professional , systems developer , end-user-computing .
InfoSec09 @infosec09
5 Followers 2K Following
loiute buio @LoiuteB4155
6 Followers 416 Following
techris.eth @techris45
172 Followers 2K Following
Jesse Moses @Cre4T3Tiv3
782 Followers 7K Following AI/ML Engineer | Temporal Intelligence | Building Next-Gen AI/ML | Mathematical Foundations → Practical Engineering | https://t.co/3i5qOknsqp
saraogawa59 @saraogawa59
2 Followers 180 Following
Khaos @KhaosShield
194 Followers 1K Following Infosec enthusiast, Locksport wannabe & more. Tweets are just tweets.
yabo @yabo255944
4 Followers 543 Following
Uzair Ali 🔻 @r00tali
359 Followers 1K Following White Hat, Pentester, Deobfuscator, Hunter of Bug-Bounties, Red-Teamer, InfoSec, OS-INTEL, HEX-Metadata Analyst, Responsible Disclosures
jocker @DavidSpid12189
2 Followers 953 Following
CryptoKingKa @manager9268
11 Followers 65 Following #coin8 #CEX #crypto #developer #marcketing #manager #football #future #trader
Justin Elze @HackingLZ
65K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Charlie Bromberg « ... @_nwodtuhs
15K Followers 652 Following Trying to hack the way we hack things 🏴☠️
Florian Hansemann @CyberWarship
84K Followers 46 Following Father, Founder @HanseSecure, Pentesting, Student, ExploitDev, Redteaming, InfoSec & CyberCyber; -- Mastodon: https://t.co/KFSKYUN98M
Florian Roth ⚡️ @cyb3rops
207K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Oliver Lyak @ly4k_
9K Followers 265 Following Yet another security researcher 🔦 Github: https://t.co/7WFOFz17KI
Grzegorz Tworek @0gtweet
36K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
Adam Chester 🏴�... @_xpn_
36K Followers 501 Following Hacker for Hire at @SpecterOps | Blog at https://t.co/tjfTOllCEu | Insta at https://t.co/PqR6CZPwjl
Dave Kennedy @HackingDave
224K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Pod. God + Family/Hacker/CSO/USMC/Intel/Fitness. Make the world a better place.
ippsec @ippsec
120K Followers 352 Following
mpgn @mpgn_x64
18K Followers 230 Following Flibustier du net ̿ ̿̿'̿'\̵͇̿̿\=(•̪●)=/̵͇̿̿/'̿̿ ̿ ̿ ̿ Podcast Hack'n Speak @hacknspeak / https://t.co/GyACSFg9mw
Mike Felch (Stay Read... @ustayready
17K Followers 2K Following Targeted Ops Red Team @ TrustedSec | Hacking since Renegade BBS backdoors | Prior CrowdStrike/BHIS | In Christ's grip | I speak for myself only | K1HAQ
an0n @an0n_r0
13K Followers 727 Following CRT(E|O|L) | OSCP | @RingZer0_CTF 1st (for 2yrs) | HackTheBox Top10 | RPISEC MBE | Flare-On completer | GoogleCTF writeup winner | SSD research | Math MSc |🇭🇺
Dirk-jan @_dirkjan
29K Followers 206 Following Hacker at @OutsiderSec. Researches AD and Azure (AD) security. Likes to play around with Python and write tools that make work easier.
Dr. Nestori Syynimaa @DrAzureAD
20K Followers 2K Following Principal Identity Security Researcher at Microsoft. Ex-Secureworks. (MSc, MEng, PhD, CITP, CCSK). And yes, opinions are my own ;)
DirectoryRanger @DirectoryRanger
35K Followers 96 Following This account assembles and disseminates information related to Active Directory and Windows security.
SEKTOR7 Institute @SEKTOR7net
15K Followers 346 Following Homo Aptus. Vincit qui se vincit - Publilius Syrus. Consulting, Training, Technology, Cyber domain, and more... @x33fcon founder.
Filip Dragovic @filip_dragovic
7K Followers 1K Following My research unless stated otherwise. My opinions are my own and do not represent the views of my employer.
Pliny the Liberator �... @elder_plinius
135K Followers 987 Following ⊰•-•⦑ latent space steward ❦ prompt incanter 𓃹 hacker of matrices ⊞ breaker of markov chains ☣︎ ai danger researcher ⚔︎ bt6 ⚕︎ architect-healer ⦒•-•⊱
Sinaei @Intel80x86
8K Followers 399 Following Windows Internals enthusiast, Interested in hardware design & low-level programming. An active developer of @HyperDbg debugger. https://t.co/TUALkTusHt
Daax @daaximus
12K Followers 396 Following reverse engineering • secure processor design • system emulation • µarch bugs @the_secret_club
sixtyvividtails @sixtyvividtails
3K Followers 394 Following Currently working as an independent GUID merchant. Fully licensed. I acquire, produce, and sell high-quality GUIDs.
Gary Stevenson @garyseconomics
183K Followers 304 Following Inequality Economist. Former Trader. Other Economists make predictions, but my ones are actually right. Explaining Economics on YouTube - garyseconomics
Dlive @D1iv3
2K Followers 1K Following Security Researcher. 2022 MSRC MVR. Windows Active Directory Security / Cloud Security / Web Security. Tweets are my own.
X-C3LL @TheXC3LL
5K Followers 632 Following Just a biologist that loves to break cyber-stuff. Ka0labs / @AdeptsOf0xcc / ID-10-Ts member. 🦉
Yarden Shafir @yarden_shafir
24K Followers 311 Following A circus artist with a visual studio license
Soroush Dalili @irsdl
20K Followers 912 Following Hacker (ethical), web appsec specialist, trainer, tools builder & apps breaker, @SecProjectLtd founder 🕸️https://t.co/YipuTcYnWc🥷 🍏A dad-joke maker🍐
Stephen Fewer @stephenfewer
9K Followers 244 Following Senior Principal Security Researcher @rapid7. Specializing in software vulnerabilities and exploitation.
VictorV @vv474172261
3K Followers 164 Following Binary Sec😉VMware Escape at TFC 2018/21/23. Hyper-V Escape. Top3 of MSRC 23Q3/Q4/24Q1/Q3/Q4/Annual/25Q1/Annual. Watchlist for security news.
Megan @mega_spl0it
550 Followers 274 Following Purple Teamer | Probably a SIEM log | Send Memes | Putting the Tater in Administater | Security Spud @TrustedSec
Lee McWhorter - Last ... @tleemcjr
964 Followers 1K Following IT & Cyber Security Expert Generalist, Speaker/Author/Educator, CTO @Covered6llc, Chief Geek McWhorter Technologies, CompTIA Instructor & Board Member, Texan!
Higinio “w0rmer” ... @0x686967
6K Followers 4K Following Father ×3 | Full-Spectrum Operator (Offense/Defense) | Web & Network Intrusions + Fortifications | @w0rmer.bsky.social | HW Killer | Stack Ghost
🇦🇺Kylie Ochoa �... @MissAnonFatale
5K Followers 3K Following I have “the most famous breasts in FBI Cybercrime / Anonymous / Hacking history” 🤣 Mum of 2 boys | Single, not married | Darknet Diaries Ep. 63
Scott Nusbaum @_snus
449 Followers 148 Following
Jeff Foley @jeff_foley
6K Followers 903 Following vice chair of the @owasp project committee | @owaspamass project leader | mastodon: https://t.co/5tzmNUcL6R
Jamie Shaw @1nPr0c
5K Followers 564 Following Principal Security Consultant / Red Team Lead @mdseclabs
Altered Security @AlteredSecurity
7K Followers 2K Following Global leader in hands-on learning for enterprise and cloud security education. Join 40000+ infosec professionals from 130+ countries
Olaf Hartong @olafhartong
17K Followers 967 Following @FalconForceTeam | researcher with a camera | Microsoft MVP | Snow man role model
hasherezade @hasherezade
89K Followers 911 Following Programmer, #malware analyst. Author of #PEbear, #PEsieve, #TinyTracer. Private account. All opinions expressed here are mine only (not of my employer etc)
Matt Hand @matterpreter
10K Followers 295 Following Director, Security Research @preluderesearch💜 | Author of Evading EDR https://t.co/E5fs0sSTOv 📖 | Adversary tradecraft & windows internals 🦠
Stephen Sims @Steph3nSims
24K Followers 835 Following Perpetual Student | SANS Fellow | Musician | Braggart Hater | Gray Hat Hacking | VR | 🏂 | deadcode | https://t.co/CadJehomsU
Stephen Woodford | Ra... @RationalityRule
22K Followers 145 Following We are not even a pawn in the cosmic game at play... and that's okay!
Gregory Hartley @1greghartley
13K Followers 588 Following Author, former army interrogator, and resistance to interrogation instructor applying the skills of an interrogator to daily life for TV, Radio, and Print.
⭕️ Chase Hughes @NCIUniversity
29K Followers 2K Following 🌐 NCI University | Empowering Success through Mastery, Insight, and Connection - Founded by Chase Hughes and Applied Behavior Research
Machine Learning Mast... @TeachTheMachine
73K Followers 35 Following Making Developers Awesome At Machine Learning
Marc Rogers @marcwrogers
17K Followers 1K Following Ramblings of Mad Englishman: Hacker @ BBC Real Hustle & Mr Robot. Head of Sec @ DEFCON. Founder @ CTI-League, Ransomware Taskforce, (He/Him).
cje @caseyjohnellis
29K Followers 4K Following troublemaker & troubleshooter | founder @bugcrowd @disclose_io, board advisor, investor | pioneer of #bugbounty as-a-service | opinions CC0 1.0 | #hacktheplanet
Dafydd Stuttard @DafyddStuttard
7K Followers 78 Following Founder and Chief Swig at @PortSwigger. Creator of @Burp_Suite and @WebSecAcademy. Author of The Web Application Hacker's Handbook.
Abacus.AI @abacusai
94K Followers 0 Following The world's first AI super assistant and general-purpose agent - DeepAgent. We have two products: ChatLLM for professionals and Abacus Enterprise
Lex Fridman @lexfridman
4.4M Followers 594 Following Host of Lex Fridman Podcast. Interested in robots and humans.
Will Dormann is on Ma... @wdormann
26K Followers 1K Following I play with vulnerabilities and exploits. I used to be here on Twitter but now I'm here: @[email protected] https://t.co/hXggdAVkSQ
Labman @Amarjit_Labu
2K Followers 2K Following Lover of breaking things | Cybersec researcher with a wide taste in music genres!! https://t.co/AOHvviQE9r ||| chr°ᶰ1k |||
Merill Fernando @merill
19K Followers 4K Following Product Manager @microsoft | Tweets my own Built → https://t.co/ujxKqxXjf2 • https://t.co/QbUp63ffXf • Graph XRay • https://t.co/tSWrIw8Ajh 📰 Newsletter→ https://t.co/tPzAEl0Zuq 🎙️ Podcast→ https://t.co/TBlNKTzn8t
Giorgio @cloned_tweets
178 Followers 535 Following On the internet nobody knows you're a sloth. Evil numerical optimization enthusiast.
Yuki Chen @guhe120
10K Followers 281 Following 古河, Indepent security researcher, Bug bounty, ACG Otaku, Pwn2Own 15/16/17, PwnFest16,TianfuCup 18/19/20, 5 times MSRC MVR yearly Top 1. Got two pwnie awards.
James Fridman @fjamie013
2.2M Followers 1 Following Do not submit any personal photos that you do not want to be made public. Terms and conditions apply. https://t.co/WWtgLUfRED
Dmitry Vostokov 🇮�... @DumpAnalysis
8K Followers 6K Following Diagnostician. Author of Diagnomicon. Gang of One. Software Surgeon. Machine Learning and AI for Software Diagnostics and Observability. Generative Debugging.
Trends for United States
You might like
