Josh Lemon @joshlemon
Chief DIFR at @SoteriaSec_io | @SANSInstitute Principal Instructor & Author | Digital Forensics & Incident Response geek joshlemon.com.au Australia Joined September 2009-
Tweets3K
-
Followers2K
-
Following1K
-
Likes3K
Josh Lemon retweeted
It's time to update your detections if you haven't been looking for WebShells on your #SharePoint server. 🕵 Make sure you're detecting w3wp.exe > cmd.exe > PowerShell.exe Although really, cmd.exe being spawned by your SharePoint server really needs a thorough review.
1
1
2
107
0
Download Image
Josh Lemon retweeted
Microsoft has released security updates that fully protect customers using all supported versions of SharePoint affected by CVE-2025-53770 and CVE-2025-53771. These vulnerabilities apply to on-premises SharePoint Servers only. Customers should apply these updates immediately to…
Josh Lemon retweeted
How DCOM lateral movement works. #ThreatHunting #DFIR
Josh Lemon retweeted
Windows Logon Types #ThreatHunting #DFIR
Here's an update on the data breach of court documents from the NSW JusticeLink website. tl;dr - it was an individual that was able to download +9k documents over two months, it doesn't appear they were leaked anywhere publicly. theguardian.com/australia-news…
Florian Roth ⚡️ @cyb3rops
207K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
SwiftOnSecurity @SwiftOnSecurity
405K Followers 9K Following computer security person. former helpdesk.
SANS DFIR @sansforensics
109K Followers 98 Following The world's leading Digital Forensics and Incident Response provider. This feed updates you on latest DFIR news, events, and training.
Katie Nickels @likethecoins
55K Followers 3K Following Director of Intel at @redcanary. SANS Certified Instructor for FOR578: CTI. Senior Fellow at @CyberStatecraft. She/her. Mastodon: @[email protected]
mRr3b00t @UK_Daniel_Card
114K Followers 8K Following Department of Cyber WAR CEO of everyone's email servers!
Shanna Niggans 🦄 @fancy_4n6
4K Followers 2K Following Digital forensics & incident response #DFIR + #CTI | Horse and Dog mum | Co-host @ComfyConAU | CISO @OpSysAU | RB/SCP for @BlackHatEvents & @BSidesMelbourne
Will @BushidoToken
36K Followers 3K Following Senior Threat Intel Advisor @TeamCymru | Co-founder @CuratedIntel | Co-author @SANSForensics FOR589 | Co-founder @BSidesBournemth | @darknetdiaries #126: REvil
Thomas Roccia 🤘 @fr0gger_
32K Followers 2K Following AI Security x Threat Intel · Sr. Threat Researcher @Microsoft · Creator of #Unprotect & #NOVA · Malware Warlock · Python 🧡 · Prev @McAfee_Labs · Views mine 😈
Andrew Thompson @ImposeCost
39K Followers 1K Following Head of Global Signals Operations @Google Threat Intelligence Group via @Mandiant acquisition. Posts are attributable to me—not my employer. Former @USMC.
Chad Tilbury @chadtilbury
22K Followers 600 Following Digital forensics and incident response. Ex-AFOSI, Mandiant, and CrowdStrike. SANS Institute Fellow and co-author of #FOR500 and #FOR508 courses.
Matthew @embee_research
14K Followers 2K Following Security Researcher, Creating and Sharing Educational Content.
Ryan "Chaps" Chapman @rj_chap
8K Followers 3K Following DFIR & malware analyst. @sansforensics FOR528 Author & FOR610 Instructor. @CactusCon crew. Husband & father. Comments = own.
Blue Team News @blueteamsec1
53K Followers 9K Following The cybersecurity home for the latest #BlueTeam, #DFIR, and #ThreatHunting news and tools.
Eric Capuano - Bsky: ... @eric_capuano
11K Followers 3K Following Co-Founder @recon_infosec | SANS DFIR Instructor | IANS Faculty | https://t.co/yUXCSu2Yso | ⬡ ❤ @shortxstack
Christopher Peacock @SecurePeacock
7K Followers 2K Following #PurpleTeam | Ex @RaytheonTech MSSP, @SCYTHE_IO, & @GD_OTS | Taught at BlackHat & DEFCON | #100DaysofSigma | Keep exploring, keep learning, and stay curious
Samir @SBousseaden
25K Followers 1K Following Detection Engineering | Elastic Security Mastodon: @[email protected]
Megantron (@megan@inf... @megan_roddie
6K Followers 4K Following Detection Engineer. Co-Author, SANS FOR509. Author, Practical Detection Engineering. @HackersHealth CFO. Ammy Muay Thai fighter/coach. #ActuallyAutistic.
Phill Moore @phillmoore
9K Followers 3K Following This Week in 4n6 // ThinkDFIR // SANS // CyberCX (DFIR) https://t.co/vLyL2sxTuy I might not know much, but I do know how to Google Tweets are mine
Lisa Forte @LisaForteUK
55K Followers 4K Following Cyber Security - Partner @redgoatcyber - Climber / Caver. she/her
Kevin 🤖🕵️🍺 @KevinPagano3
3K Followers 573 Following 🕵🏼♂️ @stark4n6 🎴 Shiny cardboard collector 🍺 Resident beer drinker
PrimaPigou @SsCL5Sbx30jk10
0 Followers 100 Following
kate castel o @katecastel890
752 Followers 5K Following
Ashley @Ashley603244477
45 Followers 373 Following I'm available for fun and also naughty nudes and videos and pics
RvrM @_reveriem
139 Followers 1K Following
VenusKeynes @9GI915c0owi58F7
290 Followers 2K Following
Bartholomew_41 @Bartholomew_41
519 Followers 6K Following
Pamela Armstrong @mqzhj36241511
547 Followers 5K Following
Arun @Arunkumar_P_P
5 Followers 54 Following
jackalek @jackalek
134 Followers 4K Following
gd4n6 @gdforeign6
0 Followers 32 Following
ZoeMay @8W88kaI5g1cpKaN
31 Followers 1K Following
ersint @ersint0007
5 Followers 300 Following
sad @sec0x25
88 Followers 3K Following
Rheewui @Rheewui2469
51 Followers 3K Following
Anant M @anantmudgal
25 Followers 220 Following
Nsk @nsk_offl_
349 Followers 4K Following Director🎬& Lyricist of Kattravai Katrapin & Onedaykadhalan CyberSecurity Analyst,Travel freak, Ardent Suriya ❤ Jo,Maddy🤩,VJS😍 Fan,CR7MSD Fan🤟,Maduraikaran😎
Me & My_Soul @Me_myself_iam
127 Followers 204 Following
Rosiedabezt241 @rosiedabezt241
0 Followers 26 Following
gnu5knu4 @gnu5knu4
1 Followers 48 Following
Dario Candia @DarioLp8
352 Followers 5K Following Ciberseguridad/SOC/Blue Team/Investigador/ Threat Intelligence/
smitjjr @illmatic801
40 Followers 549 Following
3HUE @3HUE6
1 Followers 156 Following
threatYeti by alphaMo... @threatyeti
85 Followers 92 Following threatYeti is a domain/IP research platform from https://t.co/33uEZWna3F that helps researchers investigate potentially malicious sites faster and more confidently.
Ahi @hyrfvh6543
0 Followers 487 Following
Bubjoo @Bubjoo4336332
0 Followers 346 Following
Mirror Mirror @Mirror11Mirror1
0 Followers 350 Following
unverifred @differenziagite
187 Followers 4K Following
skrappy0x4a @skrappy0x4a
455 Followers 2K Following Lead on Cyber Defense | GWOT | Dad | НОРД | 🏍🦑 | ◧◧◧ | 🌲
Hussein Sherafat @Hussein_Sherafa
214 Followers 6K Following
The oversight. . The ... @LeahFranch86647
493 Followers 1K Following The creator the richest plan, the creator of an oversight that BROUGHT a plan to light 🚨🕯️ this plan is a master key to all the humans in the land.. free use
Mito Kehayov @mito_kehayov
24 Followers 463 Following 🇪🇺 / 🇧🇬 / 🇦🇹 / 🇨🇦 Full-Stack IT Security Engineer
Vinod More @vinodm41
94 Followers 2K Following Cybersecurity Engineer | Security Operations | Cloud Security | https://t.co/Du9g2IyoUb : 300+
syn0synack @syn0synack
2 Followers 80 Following
jT0Y0 @jT0Y0
65 Followers 2K Following
James Ibrahim @JamesIb54140322
68 Followers 3K Following
たーぼー @ta_bo_1009
200 Followers 895 Following
وليد الحسين @waledalhusain97
15 Followers 502 Following
Theyrey @Theyrey_62NIBI
50 Followers 5K Following
Swairt @SwairtRj8Vv49
58 Followers 4K Following
legobatman @joelorteg
61 Followers 2K Following
mewhawk @chayansa4
88 Followers 2K Following
وليد @waleedh33
22 Followers 312 Following
Lev Salinas @levsalinas
329 Followers 8K Following
vx-underground @vxunderground
377K Followers 294 Following The largest collection of malware source code, samples, and papers on the internet. Password: infected
Florian Roth ⚡️ @cyb3rops
207K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
SwiftOnSecurity @SwiftOnSecurity
405K Followers 9K Following computer security person. former helpdesk.
SANS DFIR @sansforensics
109K Followers 98 Following The world's leading Digital Forensics and Incident Response provider. This feed updates you on latest DFIR news, events, and training.
Katie Nickels @likethecoins
55K Followers 3K Following Director of Intel at @redcanary. SANS Certified Instructor for FOR578: CTI. Senior Fellow at @CyberStatecraft. She/her. Mastodon: @[email protected]
John Hammond @_JohnHammond
300K Followers 3K Following Cybersecurity Researcher @HuntressLabs || Just Hacking Training @JustHackingHQ w/ @ethicalhacker || https://t.co/UtsNJiyQtS || https://t.co/narO3sz7y6
Justin Elze @HackingLZ
65K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Hacking Articles @hackinarticles
278K Followers 452 Following House of Pentesters Join us: https://t.co/Y6XOlSOA92
mRr3b00t @UK_Daniel_Card
114K Followers 8K Following Department of Cyber WAR CEO of everyone's email servers!
Jake Williams @MalwareJake
143K Followers 2K Following Breaker of software | VP R&D @hunterstrategy | CTI/DFIR | @ians_security faculty | Bookings: jake at malwarejake dot com | GSE #150 | He/him
DebugPrivilege @DebugPrivilege
40K Followers 2K Following Windows Nerd | Ex-MSFT | Microsoft MVP in Windows and Devices | Interested in Security, Debugging, and Windows Internals.
4n6lady @4n6lady
62K Followers 669 Following #DFIR & #BlueTeam | IR & Threat Detection | #OSINT enthusiast | waiting for HL3 | AWS CIRT - my views are my own
The DFIR Report @TheDFIRReport
62K Followers 0 Following Real Intrusions by Real Attackers, the Truth Behind the Intrusion. Services: https://t.co/XW613EKt2w
Mick Douglas 🇺🇦... @bettersafetynet
31K Followers 570 Following Consultant for InfoSec Innovations | @SANSInstitute Principal Instructor | @IANS_Security Faculty | I like information security. How about you?
Troy Hunt @troyhunt
241K Followers 1K Following Creator of @haveibeenpwned. Microsoft Regional Director. Pluralsight author. Online security, technology and “The Cloud”. Australian.
Shanna Niggans 🦄 @fancy_4n6
4K Followers 2K Following Digital forensics & incident response #DFIR + #CTI | Horse and Dog mum | Co-host @ComfyConAU | CISO @OpSysAU | RB/SCP for @BlackHatEvents & @BSidesMelbourne
Chris Sanders 🔎 �... @chrissanders88
34K Followers 489 Following Ed.D. | Founder @networkdefense @RuralTechFund | Former @Mandiant, DoD | Author: Intrusion Detection Honeypots, Practical Packet Analysis, Applied NSM
Stephan Berger @malmoeb
28K Followers 1K Following Head of Investigations @InfoGuardAG https://t.co/A5lnFAu7eX
Patrick @dub5p
230 Followers 211 Following Cyber Security Researcher @Google TAG. Tweets are my own. Also: Triathlete, BJJ, speedcubing, 🥦
ZachXBT @zachxbt
912K Followers 2K Following Scam survivor turned 2D investigator | Advisor @paradigm
ӉѦСҠіИԌ ҬЄѦ... @HackingTeam777
22K Followers 354 Following #hacking #tecnología #cybersecurity #CyberSecurityNews #infosec #pentesting #cybersecurityawareness #informationsecurity #cyber #github #redteam #blueteam
Clandestine @akaclandestine
50K Followers 5K Following | Security | Osint | Threat Research | Opsec | Threat Intelligence | Infosec | Threat Hunting | Humint |
Aura @SecurityAura
6K Followers 654 Following GCIH, GCFE, GDAT | DFIR, TH, DE | @CuratedIntel DFIR https://t.co/BMWUwziTLh https://t.co/MmX2YNVqdk https://t.co/R20zseQfLk
nick @3dRailForensics
2K Followers 606 Following By Stimson's postulate, I'm no gentleman. ⩜ 🐇 https://t.co/J8RfUt2yuq
Fox_threatintel @banthisguy9349
15K Followers 265 Following Just a person who is against cyber crime and dictators like Putin
National Crime Agency... @NCA_UK
167K Followers 2K Following National Crime Agency. Protecting the public from serious and organised crime. Don't report crime on X. Please call 101. In emergencies always call 999
Who said what? @g0njxa
5K Followers 99 Following ChatGPT says I'm a cyber researcher :) | donate 💸 to g0njxa.eth 💖 | Bad student, enthusiast, defo not an expert DMs are open, feel free to reach! 😼☂️🟣
stacksmashing @ghidraninja
48K Followers 452 Following Security researcher with a focus on hardware & firmware. I occasionally publish stuff on YouTube. Co-founder of @hextreeio. Contact: [email protected]
Zach Edwards @thezedwards
7K Followers 8K Following privacy & data supply chain research / Senior Threat Analyst @SilentPush / politico / #build🔥🕸 ρᔕ𝐞ỮĎ𝔬Ňʸ๓Øᵘ丂 / [email protected]
Spiros Fraganastasis @m3g9tr0n
14K Followers 1K Following Team @hashcat! Eternal n00b and knowledge seeker! Age is just a number and motivation is the fuel! Whatever you do in your life, do not forget to be humble.
Intelligence X News @Info_IntelX
2K Followers 0 Following Intelligence X is a search engine and data archive. This account tweets announcements & status updates of the service. 📢
Timo Steffens @Timo_Steffens
4K Followers 57 Following Works at a German agency on cyber-espionage. Author of 'Attribution of Advanced Persistent Threats' (Springer, 2020). Tweets are personal opinions.
SoteriaSec @SoteriaSec_io
7 Followers 19 Following
Matt Edmondson @matt0177
5K Followers 338 Following Hacker, Forensicator & OSINT practitioner. SANS Author and Senior Instructor, Blackhat speaker & OSCP holder. Featured in Wired and Founder at @ArgeliusLabs
Oversight Project @ItsYourGov
125K Followers 0 Following We fight for you and everyday Americans for an accountable government that serves your interests. We do it because It's Your Government.
theAtropos4n6 @theAtropos4n6
530 Followers 334 Following #DFIR Researcher/Examiner/Blogger | https://t.co/cUOKOIb0lE | Opinions expressed are my own | One thing I know for sure, that I do not know anything (Socrates)
Cyber Daily @cyberdailyau
304 Followers 2 Following The new name for Cyber Security Connect. Market intelligence, information and insights for Australia’s cyber sector.
Julian-Ferdinand @JulianVoeg
830 Followers 413 Following Threat Research @RecordedFuture. Formerly @SecReLabs. He/Him. 🏳️🌈 [email protected]
Dark Web Informer @DarkWebInformer
132K Followers 57 Following Providing intel from the Dark Web & Clearnet: Breaches, Ransomware, Darknet Markets, Threats, Crypto & more. Follow X Bot: @DarkWebIntelBot. https://t.co/Fi7VW9lg94
RooCon @RooCon_AU
360 Followers 0 Following RooCon, a free conference on cyber threat intelligence & attribution, is happening in Sydney on 5-6 November 2025.
Matt Hand @matterpreter
10K Followers 295 Following Director, Security Research @preluderesearch💜 | Author of Evading EDR https://t.co/E5fs0sSTOv 📖 | Adversary tradecraft & windows internals 🦠
Silas Cutler (p1nk) @silascutler
13K Followers 2K Following You may know me from your logs Research @Censys Advisor #DEVSEC Built @Only_Scans, @mal_share, #KeyDrop
Mathew @mittypk
1K Followers 758 Following Frontline Intel Ops 🦅 Advanced Practices @Mandiant | AU Military DCO | My views are my own
Tyler Hudak @SecShoggoth
7K Followers 957 Following Reverse Engineering, IR, InfoSec. Also huge RPG guy. Elder of the Internet. Tweets and opinions are my own and not the views of my employer.
nyxgeek @nyxgeek
7K Followers 3K Following rebel scum, nerfherder, dogged and relentless. H/P/V/A/C Directory - https://t.co/qn0D9H7IIi
National Cyber Securi... @AUCyberSecCoord
10K Followers 27 Following Coordinating 🇦🇺 cyber security policy, incident response capability & incident preparedness.
Scam Hackers @ScamHackers
119 Followers 204 Following
Tech Transparency Pro... @TTP_updates
7K Followers 1K Following The Tech Transparency Project (TTP) is a research initiative of @Accountable_Org that seeks to hold large technology companies accountable.
GrrCON @GrrCON
9K Followers 127 Following The Largest Midwest Cyber Security & Hacker Conference. -- Sept 26 & 27, 2024
Anton @Antonlovesdnb
5K Followers 3K Following Blue Team stuff | Trying to be a decent human being | @munkschool Grad | Hunt & Response @HuntressLabs
安坂星海 Azaka ||... @AzakaSekai_
12K Followers 7K Following ‧₊˚ ⋅ Indie Comfy VTuber ⊹˚. Employed Threat Intel Researcher ♡‧₊˚ SV Cover Artist ✧・゚https://t.co/h3frxp4AWO *:・˚ @jamama_666 / @MomoiroKohi / @justNovaj / #artsyaz
Threat Insight @threatinsight
11K Followers 217 Following @Proofpoint's insights on targeted attacks & the security landscape. Follow us on Bluesky: https://t.co/8OVfhotdeP
Downdetector Australi... @downdetectorau
2K Followers 0 Following
Joakim Schicht @JoakimSchicht
160 Followers 22 Following
Brian Carrier @carrier4n6
9K Followers 107 Following CEO at Sleuth Kit Labs. Builds incident response (Cyber Triage) and Digital Forensics software (Autopsy and @sleuthkit)
chompie @chompie1337
83K Followers 1K Following hacker, weird machine mechanic, X-Force Offensive Research (XOR)
James Leyte-Vidal @JamesLeyteVidal
735 Followers 2K Following SANS Principal Instructor. IT Security practitioner. GSE 209. Gamer and runner in my abundant spare time. Likely being sarcastic. FMaaS. He/Him
DFIR Diva @DfirDiva
22K Followers 5K Following DFIR Analyst trying to learn all the things | DFIR Blog for Beginners | Founder @GetYourStart | https://t.co/7cHco4FjUS
Evilginx @evilginx
794 Followers 1 Following I am the evil bot capturing your MFA tokens. Offensive security reverse-proxy phishing framework capable of bypassing MFA protections, created by @mrgretzky
Thomas Millar @thmsmlr
10K Followers 2K Following Follow me for Elixir stuff ⬩ @AnthropicAI prev @stitchfix_algo @uwaterloo instructor_ex ⬩ https://t.co/lQneGN7LAy ⬩ https://t.co/qziuESZ7hd
OSINTtechnical @Osinttechnical
1.1M Followers 868 Following PAI enjoyer, OSINT guy @hntrbrkmedia, my views/freezing cold takes are my own. For full disclosures, visit https://t.co/JOtQx4pI3e.
billy leonard @billyleonard
5K Followers 655 Following pogue life. @Google TAG, Global Head of Analysis of State Sponsored Hacking And Threats.
Cyber Detective💙�... @cyb_detective
55K Followers 3K Following Every day I write about #osint (Open Source Intelligence) tools and techniques. Also little bit about forensics and cybersecurity in general. Work in @netlas_io
Hudson Rock @RockHudsonRock
4K Followers 3 Following Hudson Rock is an Infostealer data intelligence company that helps protect against ransomware attacks, corporate espionage and network over-takes.Trends for United States
49 B posts
81,9 B posts
28,4 B posts
23 B posts
17,4 B posts
188 B posts
17,8 B posts
11,7 B posts
1.845 posts
59,7 B posts
33,9 B posts
1.572 posts
45,1 B posts
8.221 posts
2.631 posts
9.415 posts
5.416 posts
You might like
Eric Zimmerman
@EricRZimmerman
19K Followers
Ryan "Chaps" Chapman
@rj_chap
8K Followers
13Cubed
@13CubedDFIR
7K Followers
DFRWS
@DFRWS
5K Followers
Olaf Hartong
@olafhartong
17K Followers
Jai Minton
@CyberRaiju
8K Followers
Phill Moore
@phillmoore
9K Followers
Mari Degrazia
@maridegrazia
8K Followers
Eric Capuano - Bsky: ...
@eric_capuano
11K Followers
Kathryn Hedley
@4enzikat0r
3K Followers
Mathias Fuchs
@mathias_fuchs
3K Followers
Andrew Rathbun
@bunsofwrath12
3K Followers
Willi Ballenthin
@williballenthin
7K Followers
Mark Baggett
@MarkBaggett
10K Followers
The Haag™
@M_haggis
9K Followers