Matthias Kaiser @matthias_kaiser
Android/Java Vulnerability Researcher. 0xACED. Ex-Apple. Now @matthiaskaiser.bsky.social Neu-Ulm, Deutschland Joined May 2009-
Tweets3K
-
Followers7K
-
Following1K
-
Likes7K
Matthias Kaiser retweeted
Super cool potential ASLR leak via dictionary hashing by @tehjh! googleprojectzero.blogspot.com/2025/09/pointe…
1
51
186
36K
81
smalidea-ng: The moment your method references are indexed and your call-hierarchy returns within a second.
Matthias Kaiser retweeted
I've done small (but fun) .NET Framework research, and I found a new exploitation primitive (vulnerable behavior). In many cases, it may directly lead to RCE. I'll discuss it during Black Hat EU and I'll drop a paper afterwards 🫡 blackhat.com/eu-25/briefing…
Matthias Kaiser retweeted
I joined Sonny and added quite nice pre-auth RCE chain, which contains argument injection -> auth bypass vuln 🫡
I joined Sonny and added quite nice pre-auth RCE chain, which contains argument injection -> auth bypass vuln 🫡
Matthias Kaiser retweeted
Dropped a new blogpost. CVE-2025-52970: how I turned a limited, blind OOB read primitive into a full authentication bypass in one of Fortinet’s products :) pwner.gg/blog/2025-08-1…
Who cares about Nashorn anymore, we have JShell.*
Who cares about Nashorn anymore, we have JShell.*
Matthias Kaiser retweeted
Three unexpected attack scenarios: 1. Marshaling private data with misconfigured tags 2. Parser differentials in a microservices architecture 3. Cross-format confusion attacks (JSON→XML) blog.trailofbits.com/2025/06/17/une…
Matthias Kaiser retweeted
My Sitecore CMS pre-auth RCE chain blog is public now. Enjoy 🫡
My Sitecore CMS pre-auth RCE chain blog is public now. Enjoy 🫡
Matthias Kaiser retweeted
This was a fun one to discover! SQL syntax can be ambiguous, and MySQL anticipated this a long time ago. Other SQL dialects stuck to the spec, leading to SQL injection when the right stars align:
This was a fun one to discover! SQL syntax can be ambiguous, and MySQL anticipated this a long time ago. Other SQL dialects stuck to the spec, leading to SQL injection when the right stars align:
Matthias Kaiser retweeted
"Advanced .NET Exploitation" June edition at @reconmtl is confirmed! We've hit 10 registered students, so the class is happening for sure. If you’ve been thinking about joining, there’s 5 more space to learn some deserialization Magic! summoning.team
Matthias Kaiser retweeted
Amazing talk from our browser wizards @grubburggrub @0xrac !!! 🪄🪄🪄
Matthias Kaiser retweeted
Continuing the series of "chase my idols for a selfie", look who's here! The legends Matthias (@matthias_kaiser) and Sam (@_s_n_t), but we are missing @chudyPB and @steventseeley to have a full chain,we miss you guys!
Arrived in Berlin for @offensive_con . Don’t be shy and say hi! Looking forward to meet old and new friends👍
Matthias Kaiser retweeted
2025 agenda is out! offensivecon.org/agenda/2025.ht…
Matthias Kaiser retweeted
After many hours of development my Smalidea fork supports: - parameters and variables with type information - conditional breakpoints - change parameters and variables via "expression" or "setValue". Quite happy with the results 😀
chompie @chompie1337
83K Followers 1K Following hacker, weird machine mechanic, X-Force Offensive Research (XOR)
Sam Curry @samwcyo
98K Followers 1K Following
Florian Roth ⚡️ @cyb3rops
207K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Nicolas Krassas @Dinosn
147K Followers 735 Following Head of Threat & Vulnerability Mgmt @ Henkel AG & Co. KGaA https://t.co/NC1orlKrW3
Gareth Heyes \u2028 @garethheyes
37K Followers 1K Following JavaScript for hackers: Learn to think like a hacker. https://t.co/e0aNEbEDk5
Florian Hansemann @CyberWarship
84K Followers 46 Following Father, Founder @HanseSecure, Pentesting, Student, ExploitDev, Redteaming, InfoSec & CyberCyber; -- Mastodon: https://t.co/KFSKYUN98M
Ptrace Security GmbH @ptracesecurity
58K Followers 867 Following Empowering IT Security Professionals through Hands-On Online Courses.
shubs @infosec_au
56K Followers 2K Following Co-founder, security researcher. Building an attack surface management platform, @assetnote
frycos @frycos
4K Followers 518 Following Private account! Red teamer @codewhitesec. @[email protected] @frycos.bsky.social
Justin Elze @HackingLZ
65K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
pyn3rd @pyn3rd
14K Followers 608 Following Security Researcher&Red Team&Cloud Security. BlackHat&HITB&CanSecWest Speaker.
Halvar Flake @halvarflake
44K Followers 3K Following Choose disfavour where obedience does not bring honour. I do math. And was once asked by R. Morris Sr. : "For whom?" @[email protected]
Nathaniel @nnwakelam
41K Followers 919 Following
kmkz @kmkz_security
19K Followers 2K Following Offensive Security, pom-pom girl... Who cares ?? Bourbon Offensive Security Services | BOSS
Dummy Account @Asta_nine
2 Followers 548 Following
Pratyush P @pratyushp99
0 Followers 346 Following A chubby and bubbly ENFP | Your next door Cyber Guy | Pursues Cyber security for brain and literature for heart | A human golden retriever
Frozt Nova @FroztNova127
471 Followers 1K Following Bug hunter https://t.co/nKsZi9MB64 https://t.co/lyDCJaFahc https://t.co/Zaj4aNwLtf
Justin @BitDissonance
0 Followers 148 Following
L², PhD @L_Lgde
676 Followers 3K Following DFIR, Malware & CTI. Head of a CSIRT. Ex @ANSSI_FR. PhD in intl law. Mostly working on Chinese #APT but also on russian and cybercrime actors #CTI #Malware
Ranjeet Mewada @ranjeetmewada
221 Followers 1K Following Information Security Consultant #OSCP #RedTeam #CRTE
Darren @dabear1981
167 Followers 1K Following
M1n@Cris @minacrissDev_
6K Followers 7K Following iCloud OFF Exploit by SN owner, First iCloud Bypass(Wifi+GSM), iCloud Relock exploit, iOS Programmer ||
Hacktivity @hacktivityconf
4K Followers 495 Following #HACKTIVITY is the longest running event of its kind in CEE region. Started and founded in 2003. Main theme: hacking, cyber&IT sec, AI,crypto, innovation.
aqas @Aqas__
4 Followers 313 Following
Axel Souchet @0vercl0k
13K Followers 547 Following ¯\_(ツ)_/¯, blogging on https://t.co/36oOc8Mgha and posting codes on https://t.co/P83Oen94Rc.
Swan Htet Naing @SwanNaing51575
1 Followers 69 Following
Javier Gaviria Agredo @agredo_gaviria
0 Followers 51 Following
Mathew Solnik @msolnik
3K Followers 2K Following CEO @ OffCell Research / Head of Security Engineering @ WitnessAI
T1nt1n @t1nt1nsn0wy
711 Followers 4K Following Noobie H4CK3R and researcher at @qualys. Prev @pwc. Views are my own :)
Amalia Radoi @AmaliaRado56600
6 Followers 359 Following
monkeontheroof @monke0ntheroof
4 Followers 243 Following
jamie @jayvokey
186 Followers 4K Following
arip petits @AripPetits
6 Followers 1K Following
User @Socat0
0 Followers 28 Following
Indigo 〰 @indigo79x
95 Followers 2K Following Happiness at dawn, Apple/kernel VR at dusk. Take a walk outside your head.
X2n. @X2nx2nx2n_
49 Followers 345 Following
soutag @soutagx86
68 Followers 541 Following aaaaaaaaaaaaaaaaaabbbbbbbbv mostly websec blog : https://t.co/orahW4iR1r
4rji @r3d4rji
0 Followers 4 Following
st01c @st01c__
1 Followers 133 Following
דניאל גובני @0xGobani
0 Followers 129 Following
Merrors @Merrors345
52 Followers 1K Following
Daniel @thedaniuxx
251 Followers 2K Following Cyber Security Researcher/ Bug Bounty Hunter /Ethical Hacker /CEH Master/ CTPS / HackerOne Ambassador Ecuador |
hansmustermann @hmustermann1
8 Followers 2K Following
0xkujen @_kujen5
125 Followers 746 Following Senior Penetration Tester at Intrinsic-Security | C-ADPENXv2 | CRTE | CRTP | CARTP Personal Blog: https://t.co/JhE466wzJz
Allele Security Intel... @alleleintel
737 Followers 671 Following Allele Security Intelligence is an independent company specializing in Information Security research.
Dvir Atias @syst3m8bad
206 Followers 1K Following Currently building a cybersecurity SaaS Building & operating : - https://t.co/QeLXXjcbCg - https://t.co/KlTNVoqg1B - other web scraping tools
KiTchiNotchi @kitchinotchi
54 Followers 3K Following ليس ولكم نزال فلكم ولي خسارة / لستم بي قتال ولا انا فيكم قصارة /انا السان اللهب المقاص عصارة/ نحو المساح هل قفارة / انا الصحراء لي بكم نضارة
Hussein Sherafat @Hussein_Sherafa
218 Followers 6K Following
Christian Franz Lehne... @reallehnert
802 Followers 1K Following Self-hosting | Breaking things in C/C++ since 2014 | Debian daily driver | i3wm | Cybersecurity nerd | Low patience for idiots | Jewish | HHKB | 🇮🇱 🇨🇭
sxxxxxxxxxxv @sxxxxxxxxxxv
6 Followers 566 Following
chompie @chompie1337
83K Followers 1K Following hacker, weird machine mechanic, X-Force Offensive Research (XOR)
Sam Curry @samwcyo
98K Followers 1K Following
Florian Roth ⚡️ @cyb3rops
207K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Trend Zero Day Initia... @thezdi
83K Followers 16 Following Trend Zero Day Initiative™ (ZDI) is a program designed to reward security researchers for responsibly disclosing vulnerabilities.
Nicolas Krassas @Dinosn
147K Followers 735 Following Head of Threat & Vulnerability Mgmt @ Henkel AG & Co. KGaA https://t.co/NC1orlKrW3
Gareth Heyes \u2028 @garethheyes
37K Followers 1K Following JavaScript for hackers: Learn to think like a hacker. https://t.co/e0aNEbEDk5
Florian Hansemann @CyberWarship
84K Followers 46 Following Father, Founder @HanseSecure, Pentesting, Student, ExploitDev, Redteaming, InfoSec & CyberCyber; -- Mastodon: https://t.co/KFSKYUN98M
Ptrace Security GmbH @ptracesecurity
58K Followers 867 Following Empowering IT Security Professionals through Hands-On Online Courses.
shubs @infosec_au
56K Followers 2K Following Co-founder, security researcher. Building an attack surface management platform, @assetnote
[email protected]... @0xdea
14K Followers 20 Following When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl.
frycos @frycos
4K Followers 518 Following Private account! Red teamer @codewhitesec. @[email protected] @frycos.bsky.social
Justin Elze @HackingLZ
65K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
pyn3rd @pyn3rd
14K Followers 608 Following Security Researcher&Red Team&Cloud Security. BlackHat&HITB&CanSecWest Speaker.
James Kettle @albinowax
79K Followers 94 Following Director of Research at @PortSwigger aka @Burp_Suite. Find my research, tools & contact details at https://t.co/vP6UbGmvl3
Halvar Flake @halvarflake
44K Followers 3K Following Choose disfavour where obedience does not bring honour. I do math. And was once asked by R. Morris Sr. : "For whom?" @[email protected]
DARKNAVY @DarkNavyOrg
2K Followers 50 Following Cybersecurity enthusiasts from DARKNAVY. Achieve, Analyze, Attack *Oops.
dinosaurlover38 @_dinolover38
342 Followers 92 Following 0-day monkey | IBM X-Force Offensive Research (XOR)
Dimitri 0s @Ch0pin
4K Followers 44 Following Senior Security Researcher @Microsoft. Developer of https://t.co/z2jkgIV7Iy
deven @_deven___
212 Followers 673 Following in the enhancements, we are witnessing the magic (preagi)! 🪄 ~ opinions on this page, and posts are my own
Dzmitry Lukyanenko @vulnano
2K Followers 121 Following
pwnii @pwnwithlove
3K Followers 416 Following bug bounty lover, breaking stuff on @yeswehack & worldcuping 🇫🇷 at @Hacker0x01 || organizer of @esnhack, trying to keep hacking underground || CVE-2023-44352
Mathew Solnik @msolnik
3K Followers 2K Following CEO @ OffCell Research / Head of Security Engineering @ WitnessAI
T1nt1n @t1nt1nsn0wy
711 Followers 4K Following Noobie H4CK3R and researcher at @qualys. Prev @pwc. Views are my own :)
Interrupt Labs @InterruptLabs
3K Followers 86 Following We’re here to provide world-leading vulnerability research and research capabilities. From browsers, mobile, automotive and everything in between.
AeonLucid @AeonLucid
2K Followers 131 Following Reverses and programs random things. Discord @AeonLucid. https://t.co/F7UqDA3EcI
![This profile of a %BEING% is a stub. You can help by expanding it. [he/him]](https://pbs.twimg.com/profile_images/973901189233463296/lG7dgzE0.jpg)
Frieder @twillnix
239 Followers 709 Following This profile of a %BEING% is a stub. You can help by expanding it. [he/him]
djurado @djurado9
6K Followers 672 Following Security Researcher at @xbow - Former @microsoft Activision Blizzard King - Bug Bounty Hunter https://t.co/l69MUUXLBA
Nicolas Trippar @ntrippar
736 Followers 2K Following Security Researcher at @Xbow | Past: @TwoSigma, @Bloomberg, @zImperium
dril @0xdril
169 Followers 1K Following
Kurt Murrell 💯☣�... @c8rri3R
82 Followers 412 Following 100% cyberz by day, yoda best dad coffee mug owner by night. Proud owner of Red Beard - no relation to pirates.
hypr @hyprdude
2K Followers 776 Following vuln researcher+exploit dev | pwn2own '24 winner | 0x4141414141 enthusiast | bordeaux enjoyer | friend of all cats | him/he
Emilien Girault @emiliengirault
2K Followers 848 Following Software security engineer. Low level, RE, crypto(graphy) and vulnerability research. @[email protected]
rac @0xrac
110 Followers 93 Following
Alex Matrosov @matrosov
19K Followers 2K Following 🔬Founder & CEO @Binarly_io, #codeXplorer, #efiXplorer, @REhints and "Rootkits and Bootkits" book. Previously worked at Nvidia, Cylance, Intel, ESET, Yandex.
stunn4 @0xstunn4
144 Followers 598 Following
Forgette Benoît @Mad5quirrel
167 Followers 123 Following
flomb - @fl0mb.bsky.s... @flomb_
104 Followers 2K Following
Sandro Gauci @sandrogauci
4K Followers 2K Following Offensive VoIP/WebRTC security; mostly harmless Writes at https://t.co/15yJ08eLrd Chief Mischief Officer @enablesecurity
KF @d0tslash
10K Followers 10K Following My commentary is not affiliated with, neither represents the views, position or attitudes of my employer(s) their clients, or any of their affiliated companies.
Zion Leonahenahe Basq... @mahal0z
2K Followers 268 Following Native Hawaiian Hacker | Prev Co-captain of @Shellphish | PhD Student in Comp Sci @ASU l Decompiler Research | Mastodon: @[email protected]
tsvik6 @tsvika_m
583 Followers 1K Following As my grandfather used to say «zero clicks, tons of charm» . research, 0-days, trainings, collaboration, fuzzers and more
Chris Williams @HawaiiFive0day
766 Followers 678 Following President/Principal Security Researcher @TFP0Labs, consultant for @CorelliumHQTrends for United States
16,8 B posts
3.786 posts
387 B posts
128 B posts
18,1 B posts
14,9 B posts
460 B posts
5.960 posts
92,5 B posts
7.671 posts
82,5 B posts
46,1 B posts
10,5 B posts
25,7 B posts
45,4 B posts
25,4 B posts
3.076 posts
You might like
Nicolas Grégoire
@Agarri_FR
27K Followers
Samuel Groß
@5aelo
24K Followers
Alvaro Muñoz
@pwntester
13K Followers
RET2 Systems
@ret2systems
12K Followers
CODE WHITE GmbH
@codewhitesec
7K Followers
Soroush Dalili
@irsdl
20K Followers
REhints
@REhints
14K Followers
Axel Souchet
@0vercl0k
13K Followers
Ivan Fratric 💙💛
@ifsecure
18K Followers
pyn3rd
@pyn3rd
14K Followers
Bruno
@bkth_
7K Followers
frycos
@frycos
4K Followers
Cedric Halbronn
@saidelike
4K Followers
mj0011
@mj0011sec
13K Followers
Jeremy Fetiveau
@__x86
4K Followers