François Proulx @francoisproulx
Senior Product Security Expert at https://t.co/W9ORax2pW6 ellipticasecurity.com Montréal, Québec Joined February 2007-
Tweets1K
-
Followers499
-
Following404
-
Likes2K
0
0
1
52
0
Download Image
François Proulx retweeted
Nice analysis of the Kong supply chain attack
✈️ en route to Toronto, 📣 speaking at Black Hat SecTor 2024 tomorrow at 9:10am about how we found 0-days in the build pipeline of Open Source packages 🚢 😈📦
Thanks Jonathan. It was fun. I was happy to give the talk.
Thanks Jonathan. It was fun. I was happy to give the talk.
Looking forward to give my talk about 0 days in build pipelines.
Looking forward to give my talk about 0 days in build pipelines.
🎉 Big News! 🎉 I'll give my talk "Under the Radar: How we found 0-days in the Build Pipeline of OSS Packages" at OWASP Global AppSec San Francisco 2024! 🌟 My favorite conference for over a decade. 🚀#OWASP #GlobalAppSecSanFran #SupplyChainSecurity #OpenSource
If true, it would make it a far less potent worm... though could make tons of damage on airport WiFi...
If true, it would make it a far less potent worm... though could make tons of damage on airport WiFi...
François Proulx retweeted
I need to make a correction. Upon closer inspection it seems you need to be authenticated on the same network as the victim. I wonder if @KunlunLab are planning a talk or blogpost on this vulnerability.
If you are at @openssf SOSS Community Day today. Make sure to come to our talk at 2:25pm in Room 437 sosscdna24.sched.com/event/bbdbc9f6… #openssf #soss #linuxfoundation #GitHub #GitHubactions
We are announcing the Public Beta release of ‘poutine’ - an Open Source security scanner built by our team @boostsecurityio to detect misconfigurations and vulnerabilities in Build Pipelines. boostsecurity.io/blog/unveiling…
I'm excited to speak at SOSS Community Day NA 2024 sosscdna24.sched.com/event/bbdbc9f6… @sched
🚀 Just blogged about a responsible disclosure on an AWS OSS project, it's complex to mitigate Insider Threats in OSS. 🛡️ GitHub Actions hardening tips to combat Insider Threats effectively. #supplychain #responsibledisclosure #githubactions boostsecurity.io/blog/opening-p…
François Proulx retweeted
My Chrome bug just got disclosed! It’s a really cool chain of 4 vulns leading to local file read and universal XSS (including extensions). Maybe I’ll make a blog post about it issues.chromium.org/issues/40942152
Thanks for spreading the word 😃
Thanks for spreading the word 😃
You guys love OIDC just as much as we do :-) Exactly one year ago, we built almost exactly the same thing that you guys call OctoSTS.
You guys love OIDC just as much as we do :-) Exactly one year ago, we built almost exactly the same thing that you guys call OctoSTS.
Just published "The tale of a Supply Chain near-miss incident" article about a responsible disclosure my team at BoostSecurity.io made as well as announcing the Living Off The Pipeline (LOTP) project. link.medium.com/dsnMkFBonHb
ramsexy @plmaltais
8K Followers 755 Following French-Canadian hacker 🇨🇦 Full-time bug bounty hunter 🐛💥 Strava Local Legend 🏃♂️💨 Surfing the web and hacking the waves 🌊🏄
Louis Dion-Marcil @ldionmarcil
2K Followers 748 Following vegan btw. appsec @ mandiant/google cloud. opinions my own etc @ldionmarcil.bsky.social
Dan Lorenc @lorenc_dan
11K Followers 2K Following OSS Supply Chain Security. Founder/CEO/Primary Ariba Admin at https://t.co/sGmuUU9JbG Sigstore: https://t.co/dWKlyYu6kv
MICHAEL MUGII @michael_mugii
13 Followers 368 Following PROTAGONIST OF MY STORY. Nailing the art of effortless existence.
Lupin @0xLupin
17K Followers 683 Following Roni Carta alias Lupin. Co-Founder of Lupin & Holmes. R&D. Red Teamer. Bug Hunter. Musician 🤘
timlake @timlake252160
0 Followers 2K Following
Rami McCarthy @ramimacisabird
2K Followers 748 Following security, for the internet, at @wiz_io! opinionated about security. (he/him) @[email protected], bsky=https://t.co/fxycKAqA6t
BeeFaauBee @BeeFaauBee09
86 Followers 302 Following InfoSec | Borussia Dortmund (@BVB) | @BVB09Canadians | what else eh?
Shinobyx @crypticrebel337
23 Followers 1K Following Bug bounty hunter who is a bit inactive on social media, so don't expect too much from me here...
Griswald @kaitomikik5735
67 Followers 7K Following
Ratnadeep Dey Roy @Ratnadeepdeyroy
62 Followers 755 Following Product Engineer @Authentic One | Ex-Zeron | Ex-IT Security Intern @TXInstruments | MCA at #Jadavpur_University '23| Member of @gdgkolkata | Aviculturist
MaureenDupont @t2fPjUzOmad5qTY
58 Followers 5K Following
Thare @Thareh6Z
43 Followers 4K Following
sajal verma @sajalpentest
230 Followers 2K Following Trying hard to learn Web/mobile app sec. Opinions are personal. Passionate about personal finance.
オカダリョウタ... @okdt
4K Followers 1K Following 日本のセキュリティリサーチャ | アスタリスク・リサーチ代表📈 | 神戸デジタル・ラボCSA⚓️ | 神戸高専OB | BBT大学講師 | OWASP🐝Japan Leader | Hardening Project Organizer | SBOM CycloneDX | カレー🍛派|加速装置ほしい
Eric C 🇦🇷⭐️... @ec_mtl
1K Followers 5K Following Blue/Red Teamer, Offsec, DFIR, OSINT, Cryptocurrencies&NFTs fanboy, 🇦🇷Foot, Music, Art, Cinema, History and Geopolitics.
nanjin002 @nanjin00272827
21 Followers 4K Following
rathod @rathod518434
6 Followers 729 Following
Hudzilla @Hudzilla6
13 Followers 635 Following
Larouanne Tristan @Tr4LSecurity
104 Followers 205 Following Win/Linux, vim/vsc, IRC, git, Java/NodeJs
Steve Giguere @_SteveGiguere_
786 Followers 942 Following A developer 🥑, public speaker and DevSecOps Enthusiast. All about cloud native security, k8s and #cybersecurity developments and shortfalls... and beer.
Shivam Pandey 🇮�... @Shivam31200
1K Followers 615 Following Infosec | Synack |Write poems in meantime
Cybertection LLC (Jos... @Cyberjoe2050
532 Followers 7K Following Cybertection is your choice for all security software, but our specialty is always going to be antivirus software. We are your digital bodyguard.
Jonathan Bennett @jp_bennett
609 Followers 372 Following https://t.co/IcLw8DM89Z https://t.co/OYGrdVoKkw
Bakul Gupta @bullhacks3
34 Followers 146 Following 🥷 Product Security engineer 🥷 by profession and life long learner by choice !🚀 Credit Cards Explorer/Noob 🔥
Mark Esler @markesler
54 Followers 271 Following
Ashish @kurmiashish
91 Followers 251 Following Co-Founder CTO @step_security, Ex-Plaid, Ex-Uber, Ex-Microsoft
Wannabe Hacker @arundr0id
38 Followers 327 Following Roses are red, Violets are blue, this account doesn't have anything useful.
sparow @error404billy
4 Followers 408 Following
raindox @wwweijiao
0 Followers 87 Following
ice @ice98079542
96 Followers 3K Following
flomb - @fl0mb.bsky.s... @flomb_
105 Followers 2K Following
Adnan Khan @adnanthekhan
3K Followers 208 Following Security Engineer | Part Time Security Researcher | Build Pipeline Menace | All thoughts and opinions are my own | 🍉
Hugow @hugow_vincent
913 Followers 979 Following Red Team and research @synacktiv @rustyphasm.bsky.social
John Saigle @johnsaigle
277 Followers 704 Following working on blockchain security @ asymmetric research exploring: secure code review, hacking tools, vibe-coding
Kaylin Trychon @KaylinTrychon
3K Followers 2K Following Chaos Causer @ Edera | Comms @SecureAerospace | @GirlSecurity_ Mentor | Prev @chainguard_dev @google | Rule Bender l New Englander
Daphnée Hacker-B. @daphneehackerb
2K Followers 1K Following Journaliste et réalisatrice à Radio-Canada.
wonderingwalrus @wonderbreadstix
13 Followers 105 Following
crawler_cookie_0 @crawler_cookie0
54 Followers 4K Following
Tristan Kalos @TristanKalos
524 Followers 1K Following Co-founder and CEO @ https://t.co/m0HwZH4ItB - Giving superpowers to product security engineers 🕸 · Hacker 👨💻 · memes dealer 🐱
Luke Hinds @decodebytes
3K Followers 733 Following No longer active here; find me on: https://t.co/bdAWiJOO1e
Dan Lorenc @lorenc_dan
11K Followers 2K Following OSS Supply Chain Security. Founder/CEO/Primary Ariba Admin at https://t.co/sGmuUU9JbG Sigstore: https://t.co/dWKlyYu6kv
Nicolas Grégoire @Agarri_FR
27K Followers 631 Following Web hacker and Burp Suite Pro trainer Refer to https://t.co/D5tRH7U2hg for trainings Follow @MasteringBurp for free tips and tricks
Clint Gibler @clintgibler
22K Followers 563 Following 🗡️ Head of Security Research @semgrep 📚 Creator of https://t.co/xwtIAI0CuJ newsletter
JS0N Haddix @Jhaddix
167K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. Cybersecurity + Hacking + AI + Sec Leadership @arcanuminfosec
Sam Curry @samwcyo
98K Followers 1K Following
developer-guy @developerguyba
5K Followers 2K Following 🚀CNCF Ambassador 23• 🐳 Docker Captain 23•🎖Best Sigstore Evangelist 22 • ㏅CDF Ambassador 23 • 🇹🇷@kcdturkey Organizer •🕴Organizer @cloudnativetr @devopstr
Rami McCarthy @ramimacisabird
2K Followers 748 Following security, for the internet, at @wiz_io! opinionated about security. (he/him) @[email protected], bsky=https://t.co/fxycKAqA6t
Florian Roth ⚡️ @cyb3rops
207K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
J. A. Guerrero-Saade @juanandres_gs
16K Followers 273 Following Executive Director for Intelligence and Research @SentinelOne | Distinguished Fellow, @SAISHopkins Alperovitch |LABScon|Cyber Paleontologist|4thParty Collector
nick.eth @nicksdjohnson
92K Followers 892 Following Lead developer of ENS & Ethereum Foundation alum. Certified rat tickler. he/him. bsky: https://t.co/RdZTUkWNq2 wc: https://t.co/nvP0lHPJqz
Piergiorgio Ladisa @piergiorgioLad
76 Followers 180 Following Security Researcher PhD Student @ SAP Security Research focusing on OSS Supply Chain security
Aviad @_0xffd
260 Followers 483 Following ''To fly as fast as thought, you must begin by knowing you've already arrived'' Spinning records for fun and containers for pain Opinions are my own. UwU
sapir federovsky @sapirxfed
5K Followers 183 Following Doing things @wiz_io And then doing more things at home | failed research blog: https://t.co/j2HT1Tpscs
Lupin @0xLupin
17K Followers 683 Following Roni Carta alias Lupin. Co-Founder of Lupin & Holmes. R&D. Red Teamer. Bug Hunter. Musician 🤘
Katie Knowles @_sigil
2K Followers 303 Following Senior Security Researcher @ Datadog. 🐕 Head in the (Azure) clouds. Sometimes blogging, always curious. Aim to be, rather than to seem.
Adnan Khan @adnanthekhan
3K Followers 208 Following Security Engineer | Part Time Security Researcher | Build Pipeline Menace | All thoughts and opinions are my own | 🍉
Ecosyste.ms @ecosyste_ms
89 Followers 11 Following Tools and open datasets to support, sustain, and secure critical digital infrastructure
john @nyan_satan
17K Followers 140 Following demonic beast from another era (with F20.0) | https://t.co/W7w9FmL4Fd
Google VRP (Google Bu... @GoogleVRP
39K Followers 0 Following We ❤️ 🐜🐞🦗🦟🦋. {echo,{{{Google,Chrome,Android,Abuse,Mobile,OSS,Cloud}Vulnerability,Patch}Reward,VulnerabilityResearchGrants}Program}
Steve Giguere @_SteveGiguere_
786 Followers 942 Following A developer 🥑, public speaker and DevSecOps Enthusiast. All about cloud native security, k8s and #cybersecurity developments and shortfalls... and beer.
Larouanne Tristan @Tr4LSecurity
104 Followers 205 Following Win/Linux, vim/vsc, IRC, git, Java/NodeJs
Frederic Jacobs @FredericJacobs
18K Followers 2K Following Inactive here outside of posting additional reasons for leaving X. For fun science topics, other social media options listed on https://t.co/72AVrLhfUr
Dominic White 👾 @singe
12K Followers 588 Following Hacker @sensepost - minimally active here. Fine me at https://t.co/quAKFLpcgM || @singe.bsky.social
Andrew Betts @triblondon
4K Followers 387 Following Former @fastly, @ft. Elected to @w3ctag. I will sort your pens in length order while you’re not looking. 🏳️🌈🇪🇺🍸
Pete Wagner @meofthecloud
35 Followers 88 Following Infra security nerd at Shopify. Previously GitHub (Dependabot+Actions), ApolloGraphQL, Fitbit. Hack the planet.
Ashish @kurmiashish
91 Followers 251 Following Co-Founder CTO @step_security, Ex-Plaid, Ex-Uber, Ex-Microsoft
Nicole Perlroth @nicoleperlroth
87K Followers 6K Following told the story of cyber; now working to change the story of cyber
丂卄ㄖᗪ卂几 - ... @therealshodan
5K Followers 441 Following Microsoft Threat Intelligence Centre, deaf, BSL https://t.co/ZaRUlLAHgk
Nathan @nj_dav
858 Followers 79 Following I type instructions into computers, which are intermittently understood.
Matan Berson @MtnBer
4K Followers 270 Following Hacker and bug bounty hunter mostly focusing on client-side security. h1-702 Vigilante, h1-65 Eliminator, AWC23 Best New Hacker
Hugow @hugow_vincent
913 Followers 979 Following Red Team and research @synacktiv @rustyphasm.bsky.social
The Haag™ @M_haggis
9K Followers 2K Following Threat Researcher | Co-Host of Atomics on a Friday | LOLDrivers & Atomic Red Team Maintainer | I'm Everywhere and Nowhere - BSG.
Justin Ibarra @br0k3ns0und
2K Followers 921 Following detection engineering @ S1 | security research | former @elastic/@elasticseclabs @endgameinc etc. | bench press: 455lbs & 📈 | I like my own tweets
Jason @ImJasonH
1K Followers 299 Following World's Okayest Dad, pizza enthusiast, single-hyphenate, onomatopoet, container nerd @chainguard_dev
Kaylin Trychon @KaylinTrychon
3K Followers 2K Following Chaos Causer @ Edera | Comms @SecureAerospace | @GirlSecurity_ Mentor | Prev @chainguard_dev @google | Rule Bender l New Englander
Rumata888 @rumata888
325 Followers 502 Following Security Team Lead at @aztecnetwork. @CTFZone organizer. Love cryptography, fuzzing, breaking systems.
Francis @InvestiAnalyst
35K Followers 1K Following Founder, Software Analyst Cyber Research | Tweets on Cybersecurity & AI/ML | Catholic. Distance Runner. | Ex Cyber Research | Ex AI PM.
Vlad Ionescu (he/him) @iamvlaaaaaaad
3K Followers 615 Following sugarbaby cosplaying as a tech consultant • mean eastern european with unrealistically high expectations and unreasonable quality standards 🏳️🌈he/him🏳️🌈
Scott Piper @0xdabbad00
19K Followers 317 Following https://t.co/EXe2MI2DLm Cloud security historian. Developed https://t.co/ZXFwkuxUp4, CloudMapper, and Parliament. Organizer for @fwdcloudsec. Researcher at @wiz_io ✦
InfoSec CFPs @infosec_cfp
3K Followers 3 Following Sharing CFP and event data about #infosec conferences, so you don't have to miss any. Maintained by @mboelen
Darcy Clarke @darcy
6K Followers 2K Following @vltpkg Founder & Chief End-User Officer Prev: @GitHub @npmjs Staff EM & @Themify Co-Founder Proudly 🇨🇦 & investing here...
Francois Legare @francoisLegare
121 Followers 133 Following Creative engineer, solution architect, Intrapreneur with McGiver attitude :)
Paul Moore - Security... @Paul_Reviews
7K Followers 1K Following Laugh when you can, apologise when you should and let go of things you can't control.
Steren @steren
9K Followers 2K Following Engineer turned Product Manager @Google ⬣ https://t.co/FQDIl9gUWR founder+lead ⬣ Cloud Carbon Footprint founderTrends for United States
62 B posts
84,1 B posts
5.445 posts
33,1 B posts
30 B posts
18 B posts
1.120 posts
190 B posts
35,1 B posts
16,7 B posts
20,3 B posts
62,7 B posts
1.924 posts
13,7 B posts
93,6 B posts
42,7 B posts
1.136 posts
20,4 B posts
You might like
Philippe Bernery
@pbernery
229 Followers
Michael McGuffin
@MJMcGuffin
730 Followers