Rob Fuller @mubix
Dad / Husband / Marine / Student / Teacher / IAM, Red Team, CTI Director / @Hak5 / @NoVAHackers / @SiliconHBO / @NationalCCDC / @MARFORCYBER Auxiliary malicious.link The Internet Joined February 2007-
Tweets33K
-
Followers82K
-
Following26K
-
Likes5K
One interesting talk I noticed recently was "LLM4Shell: Discovering and Exploiting RCE Vulnerabilities in Real-World LLM-Integrated Frameworks and Apps" i.blackhat.com/Asia-24/Presen…
whew finally got the CVE-2024-3400 blog post up! I'm actually still editing it but it should be good for those who are asking for info for threat hunting/etc! labs.watchtowr.com/palo-alto-putt…
Well the cat is out of the bag. If you are interested in all things authentication and passkeys, my talk on Okta Verify might be of interest pretalx.com/bsides-cymru-2…
Looks like someone dropped a Linux kernel 0day github.com/YuriiCrimson/E…
Anyone know a good way to help a neurotypical person understand executive disfunction? Just saying “it’s like you want to do something but you can’t” isn’t really landing.
Congratulations to the top 3 finishers in the 2024 WRCCDC Regional! 1st Place - Cal Poly Pomona @calpolypomona 2nd Place - University of California, Irvine @UCIrvine 3rd Place - Stanford University @Stanford #WRCCDC #NCCDC
the xz sshd backdoor rabbithole goes quite a bit deeper. I was just able to trigger some harder to reach functionality of the backdoor. there's still more to explore.. 1/n
One thing I always look for when starting in a network without AD creds is user enumeration with RPC null sessions. impacket SAMR (samrdump) and LSARPC (lookupsid) tools will give you only a small part of the story. Here's my minimal RID cycling script gist.github.com/naksyn/8204c76……
CVE-2024-1086 (Local Privilege Escalation) - While the xz backdoor was all over the place, this incredible exploit seemed to "slip" by! - This is working on most Linux kernels from 5.14 to v6.6 - Repo: github.com/Notselwyn/CVE-… - Creator: @notselwyn
Great news! @shehackspurple and @hdmoore will be Keynote speakers at #lasconatx in Austin October 24-25. Register now at LASCON.org @LASCONATX
Maybe I’m just being a spoilsport here but someone should point out it’s not your job to worry about an attack like xz unless you are in a very precise role and this is fun but you should get back to disabling NTLMv1 on Monday and patching your network devices.
Here’s a short write-up covering some research Ian Odette (@wikibinge) and I conducted so that our team would have a documented method for cracking Citrix NetScaler system user passwords. github.com/CDW-OffSec/Net…
So I was just humming a song that was stuck in my head by Bo Burnham and my youngest son giggled, indicating that he knew the song and that he found it funny that I did. I think I have uncovered a new parent check to see the type of content your kids are watching.
I think @lastflagflying is a Marine therapy session disguised as a movie. I’m not really sure anyone that wasn’t in the Corps, be it Marine or Navy Corpsman, would truly understand or like the movie. Steve Carell, Laurence Fishburne, and Bryan Cranston are amazing.
Dave Kennedy @HackingDave
206K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Podcast. Fam First/Hacker/CSO/USMC/Intel/Fitness. Motto: Make world a better placeFlorian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇Justin Elze @HackingLZ
52K Followers 5K Following Hacker/CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race carsJason Haddix @Jhaddix
146K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. @arcanuminfosec 18 years hacking + sec leadership. ex:BuddoBot-Ubisoft-Bugcrowd-Fortify-HP-Redspin-Citrix.ippsec @ippsec
111K Followers 349 FollowingMick Douglas 🇺🇦.. @bettersafetynet
26K Followers 571 Following Consultant for InfoSec Innovations | @SANSInstitute Principal Instructor | @IANS_Security Faculty | I like information security. How about you?strandjs - strandjs@b.. @strandjs
45K Followers 2K Following I will light the way by the bridges I burn. Retired Senior SANS Instructor IANS Faculty Black Hills Information Security Active CountermeasuresMike Felch (Stay Read.. @ustayready
15K Followers 2K Following Pentester / Red Team | Hacking since Renegade BBS backdoors | Dev since vb3 | Content since '99-'03 ezines | Prior CrowdStrike / BHIS | In Christ's gripJust Another Nerd @NicoleBeckwith
41K Followers 8K Following Manager, Threat Operations @kroger 🍓 Intel, Hunting, Detection Engineering, Insider Risk & Fraud. 💻 Fmr LE & DFIR for OH & Secret Service TF. ✝️ #FSDEvilMog @Evil_Mog
15K Followers 2K Following X-Force, Team Hashcat, Bishop of the Church of Wifi, Uber Badge Collector. Views != Employers. Not a Ph.D, Recycled Memes. Multi User Dungeon Shenanigator.rand0h @dakacki
23K Followers 1K Following Dogfather / @WhoseSlide / DEF CON Goon / Alter Ego of @rand0hmizedrootsecdev @rootsecdev
24K Followers 1K Following Security Consultant @TrustedSec | Military grade meme poster, researcher, cloud penetration tester, voider of warranties. My thoughts are my own.DebugPrivilege @DebugPrivilege
36K Followers 2K Following Security “Researcher” | Former Microsoft MVP | All Tweets are my opinions and thoughts. Interested in Security, Debugging, and Troubleshooting.Grzegorz Tworek @0gtweet
29K Followers 1K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-Tib3rius @0xTib3rius
56K Followers 444 Following Web App (mostly) Hacker | OnlyFeet Member | Cybersecurity Educator | AutoRecon Dev | Ex-Brit | Links: https://t.co/04RRExvxXj (he/him) 🇺🇸Andrew Thompson @ImposeCost
34K Followers 1K Following Head of Research and Discovery @Mandiant/@GoogleCloud. Understanding and countering adversaries. Posts attributable to me—not my employer.Nathaniel @nnwakelam
38K Followers 1K FollowingMoose @LitMoose
39K Followers 5K Following DFIR | Violinist | Former medical/vet tech | I work for everyone and no one. Infosec retellings obfuscated. Salty and tired. Also Litmoose on BlueSkyDSASInject @DSASInject
31 Followers 182 Following Gray Hat | Ex-RaidForums Contributor | OSCP | (ISC)² CC℠ | AWS CCP | HTB - RastaLabs - Offshore - Dante | Malware Analyst | Software Developersink0Rswim @laceandload
113 Followers 1K FollowingLuis Eduardo @elearocha
420 Followers 2K Following Técnologo en Sistemas, Analista de Sistemas de Información, temeroso de la venida de nuestro Señor Jesucristo, y amante de las Redes y la Informática.Cortney @cortneyjames
319 Followers 2K Following Security Engineer, master scuba diver, spelunker, aspiring pilot.น้องเกว.. @oojiharama51260
23 Followers 413 FollowingWilson Mendes @wilsoncsmendes
164 Followers 662 Following Cyber Security Consultant | Penetration Tester | Red Team | Writersky @0x0aSky
177 Followers 2K Following French CTI analyst. My interests, OSINT, CTI, IR, forensics and new technologies. Opinions are my own.💕น้องโ�.. @79uF9D5R6r0Erb
50 Followers 2K FollowingThreatBot_1024 @Threatbot1024
1 Followers 29 Following Just a humanoid robot looking for threats in a world full of humanoids...what's next @TheMAGAJohn
554 Followers 4K Following this is my parody account. don't take anything here seriouslylucky @lucky5502118041
0 Followers 165 FollowingMark Pogorzelski @markpogor
37 Followers 336 FollowingOTO Technology @OtoTechnology
783 Followers 4K Following OTO Technology est une agence IT et Digitale fondée en 2011 présente en France et à l’international.Tasos Laskos @Zap0tek
961 Followers 53 Following Founder, CEO, Director of R&D at @Ecsypno. F/OSS project Founder and lead. @[email protected] @[email protected]ลินลี่ (�.. @shiinokimi591
28 Followers 793 Following หน้าแรกจะอัพเดทข้อมูลติดต่อของสาวงามเป็นระยะ ๆ ดังนั้นโปรดใส่ใจที่หน้าแรกEncoded Daemon @Encoded_Daemon
0 Followers 14 Following_fear @00adefff
211 Followers 1K FollowingBenito Aurelio @BenitoAure10199
16 Followers 599 Followingshirto cubher @cubher15531
18 Followers 175 FollowingSrinadh_BagEnd @sreesrinadh
27 Followers 2K Following Obsessed with Reading Books, Watching World Cinema, Cricket and Football. Loves to be Spiritual and Enjoys Mother Nature.Whitney Clark @WhitneyCla58959
1K Followers 2K Following baby , come to my profile and follow me😋 👉 Follow me and let have fun on private😗 😸เด็ก15หา�.. @0JO1uw8Npo8oII7
82 Followers 2K FollowingWeight Loss | Nutriti.. @FITNESS3M_
4K Followers 3K Following Weight Loss | Nutrition | Workout - Follow for tips to achieve your dream body Quickly - DM For shredding Pounds Faster Now.Jessica Lyons @JessicaHrdcstle
2K Followers 2K Following Cybersecurity Editor @TheRegister / @SitPub twins mama, outdoor lover, book worm, and coffee snob. Find me at Bluesky: @jessicalyons.bsky.socialUnderRooT @underroot666
5 Followers 26 FollowingPixelPioneer232 @PixelPioneer232
6 Followers 45 Following Security Researcher | Focused on Threat Intelligence & OSINT | Digging through data to secure the digital frontier.David_Jou @DavidJou734
76 Followers 494 Following Penetration Testing | Bounty Hunter|Threat Analysis | Happy WasteMannu Mourya @_mouryamannu
35 Followers 271 Following Unraveling the mysteries of cybersecurity, one byte at a time.CHR0N1CL3 @Chr0Cl3
12 Followers 120 Following In love with computer security stuff;SecResearcher-Osint-BugHunterM4rk 7homas @0xM4rk7homas
265 Followers 1K Following https://t.co/otIm20ndNS // https://t.co/pmPVQrJHWR // https://t.co/lWh05qMwAuGold Roger @GoldXBT
1 Followers 538 Followingarete @arete06
26 Followers 626 FollowingAbián Peñate @abianpg
103 Followers 863 Following Another idiot on the internet. Motion designer. Otro tonto en internet.SHARIF AL HASAN @hunter909_
18 Followers 153 Following CyberSecurity Apprentice | Security Engineer | Ethical Hacker 🇧🇩🇵🇸joesmith @ThreatJaeger
0 Followers 51 FollowingJosef Gugglberger @j_gugglberger
10 Followers 280 FollowingHance Doof @HanceDoof
22 Followers 366 FollowingHarry Skandaliaris @harryskan
1 Followers 69 FollowingMark Christian Deduyo @MarkDeduyo_
22 Followers 87 Following Hacking Vibes Only | Learning something new everyday is a blessingChadd @casp1anX
555 Followers 909 Following A jack of all trades is a master of none, but oftentimes better than a master of one. ✌🏽🛰️🚀LiftHackLife @LiftHackLife
13 Followers 93 FollowingJake Sexton @Inkwriter77
22 Followers 109 FollowingSplonchi @splonch1
44 Followers 246 FollowingMichael Lekhmus @MichaelLekhmus
66 Followers 95 Following Defensive Cyber Ops Manager | Forensics | IR | Combat Infantryman | Cloud Security | Offensive Cyber Ops | Husband & Father of 4 | ChristianDave Kennedy @HackingDave
206K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Podcast. Fam First/Hacker/CSO/USMC/Intel/Fitness. Motto: Make world a better placeFlorian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇Justin Elze @HackingLZ
52K Followers 5K Following Hacker/CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race carsFlorian Hansemann @CyberWarship
75K Followers 47 Following Father, Founder @HanseSecure, Pentesting, Student, ExploitDev, Redteaming, InfoSec & CyberCyber; -- Mastodon: https://t.co/KFSKYUN98MJason Haddix @Jhaddix
146K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. @arcanuminfosec 18 years hacking + sec leadership. ex:BuddoBot-Ubisoft-Bugcrowd-Fortify-HP-Redspin-Citrix.ippsec @ippsec
111K Followers 349 FollowingMick Douglas 🇺🇦.. @bettersafetynet
26K Followers 571 Following Consultant for InfoSec Innovations | @SANSInstitute Principal Instructor | @IANS_Security Faculty | I like information security. How about you?strandjs - strandjs@b.. @strandjs
45K Followers 2K Following I will light the way by the bridges I burn. Retired Senior SANS Instructor IANS Faculty Black Hills Information Security Active CountermeasuresMike Felch (Stay Read.. @ustayready
15K Followers 2K Following Pentester / Red Team | Hacking since Renegade BBS backdoors | Dev since vb3 | Content since '99-'03 ezines | Prior CrowdStrike / BHIS | In Christ's gripJust Another Nerd @NicoleBeckwith
41K Followers 8K Following Manager, Threat Operations @kroger 🍓 Intel, Hunting, Detection Engineering, Insider Risk & Fraud. 💻 Fmr LE & DFIR for OH & Secret Service TF. ✝️ #FSDEvilMog @Evil_Mog
15K Followers 2K Following X-Force, Team Hashcat, Bishop of the Church of Wifi, Uber Badge Collector. Views != Employers. Not a Ph.D, Recycled Memes. Multi User Dungeon Shenanigator.rand0h @dakacki
23K Followers 1K Following Dogfather / @WhoseSlide / DEF CON Goon / Alter Ego of @rand0hmizedVincent Yiu @vysecurity
27K Followers 203 Following Follow me for Cybersecurity #Thought #Leadership. Director Red Team. Help organizations safeguard their businesses from the bad guys.rootsecdev @rootsecdev
24K Followers 1K Following Security Consultant @TrustedSec | Military grade meme poster, researcher, cloud penetration tester, voider of warranties. My thoughts are my own.DebugPrivilege @DebugPrivilege
36K Followers 2K Following Security “Researcher” | Former Microsoft MVP | All Tweets are my opinions and thoughts. Interested in Security, Debugging, and Troubleshooting.Grzegorz Tworek @0gtweet
29K Followers 1K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-Helen (of Tor) @h313n_0f_t0r
5K Followers 2K Following threat hunter @ MSSP + staff @vxunderground + perpetual 00’s mall goth & internet gremlin || opinions = mine but I’m not interesting | PTCFred Mastrippolito @fr3b0
14K Followers 7K Following #CYBER Security @Politoinc https://t.co/hIiNLdv68hAlex Wise @AWS_Snarkitect
459 Followers 981 Following Security-focused DevOp. Board Member of @SFS303. Opinions. He/himher0x0ftime #LegendsO.. @her0x0ftime
77 Followers 183 Following Father. Gamer. Cyber. I Hardly Knower.Moe @PoSH_Father
78 Followers 563 Following I work in Cyber. The Nigerian prince in your emails is 100% trustworthy.Adam Link @Linkavych
498 Followers 1K Following Marine Officer. Post-Tanks tanker. Learning new things now...Persistently not a wizard. Worked on a Hill once. @[email protected]Prof. Kilroy @ProfKilroy
516 Followers 491 Following Cloud Security Advocate, gamer, mentor, Independent DFIR instructor, dad, @KickStreaming Affiliate. #SecKC honorary member. Opinions are my own.MrSwilix✒ Edouard O.. @MrSwilix
192 Followers 1K Following 🤖👾#AI & #IT #CyberSecurity #Coding #Udemy #Teacher 👨🏫||| #Microelectronics DIY && #Hardware repair 🪛YTB video Maker 🎥 ||| Urban Beats Maker🎙️🎶 |||Jon Good @JonGoodCyber
535 Followers 316 Following #InformationSecurity / #CyberSecurity Leader & Educator | 🎥 YouTuber https://t.co/qupRUCMiqk | 💬 Chat https://t.co/LlZks9UtUPAsh @axsohr
79 Followers 330 Following Security, OSCP, behavioural psychology, and forensics. I do all-things Threat Intelligence at @FSecure (Opinions are my own)Erich Schmidt @erichschmidt
343 Followers 2K Following Cybersecurity Professional at Blackpoint Cyberskrappy0x4a @skrappy0x4a
239 Followers 1K Following Head of SecOps | War Vet | Not Popular/Cool | Learning Russian 1 incident at a time | 🏍🦑 | BJJ ◧◧◧Brad Proctor @bradproctor
993 Followers 2K Following Director of Operations at MAD Security | Husband, Father of Five, Captain Obvious Clone | DEF CON 31 ICS Village - “Secure for Sea”I am Jakoby @I_Am_Jakoby
12K Followers 519 Following I'm the reason you don't plug in USBs you find on the ground.Smukx.E @5mukx
1K Followers 180 Following Developer &nd Pentester By Day, Hacker &nd Maldev By Night . 19 y/0. Tweets are my ownDevin Beaver @RadiantAurora
173 Followers 1K Following Cyber Security - I break things then break them further until it eventually fixes itselft-tani @_t_tani
102 Followers 258 Following Research Engineer/Malware Analyst/Forensic Investigator/ Speaker at CODE BLUE, BSidesLV, BlackHat USA Arsenal, PHDays and, Virus Bulletin, BotconfRintaro @_rintaro_f
838 Followers 141 Following CMU Alumnus. Security Engineer / Sunday Researcher / CTF / ヌコ :-) Tweets are my pwn.Realm @Realm_C2
59 Followers 25 Following Cross platform red team tool with a focus on automation and reliability.MBH @mbhbox
2K Followers 1K Following I love computers, cats and candy, in no specific order. Mastodon: @[email protected] DM for Signal app number.Malate @Malat0r
391 Followers 2K Following @Malate(at)infosec(dot)exchange hacker, outreach, network engineer, devlpr, ethics, philosopher, #physsec,musician, #DCG504 | infosec student #hackNotCrimempawl @mpawl
20 Followers 16 Following Nerd, packet plumber, coffee connoisseur, aircraft aficionadoPirate Software @PirateSoftware
147K Followers 254 Following Game Developer 💛 @Twitch @YouTube @Discord Partner 💜 Making #Heartbound with @RiverMakes & @StijnvanWakeren 💛 Business: [email protected]Alex @xaitax
1K Followers 360 FollowingDaniel Atiemo @eldatimpex
9 Followers 3 FollowingOatmeal the Hacker @hackeroats
48 Followers 77 Following Pseudo-anonymous alt of someone who misses their homies after the great InfoSec Exodus from Twitter.Soumyani1 @reveng007
1K Followers 1K Following Wannabe MalDev/RedTeam | Content absorber | CRTP | Upcoming @vulncon Trainer | @BlackHatEvents Asia Arsenal Presenter | @BSidesSG Speaker | 22 y/o | he/himeversinc33 🩸🗡�.. @eversinc33
3K Followers 569 Following purple hearted pentester learning malware development & kernel stuffYeeb @Yeeb_
149 Followers 371 Following Penetration tester, red teamer and capture the flag player with incident response experience.ocdsec @0xocdsec
3K Followers 4K FollowingAdam Juelich @acjuelich
2K Followers 4K Following IT Consultant. Focusing on Microsoft #ConfigMgr #SCCM #MSIntune. They call me the trail blazer - Rael - electric razor. Opinions are my own. #BeKindRic @RicDerby
972 Followers 442 Following Senior security researcher @orangecyberdef & honorary researcher @LancasterUni - OT, CNI, novel attack techniques, & quantitative risk | cat hoarderassume_breach @assume_breach
4K Followers 137 Following Why yall have so many calculators in your screenshots? | QAnon Red Team | Labeled Misinformation PropagandistCritical Thinking - B.. @ctbbpodcast
12K Followers 50 Following A 'by Hackers for Hackers' podcast focused on technical content ranging from bug bounty tips, to write-up explanations, to the latest exploitation techniques.🌍Alem Nigus 👑 @CCIEAlem
239 Followers 630 Following Digital Forensics - Systems and Network Architect 4xCCIE Cyber | Collaboration |DataCenter|CloudMyDFIR @MyDFIR
427 Followers 30 Following Getting started in Cybersecurity is difficult. Blue team | DFIR | Security Operations - Views are my ownFoVeS @FoVeS_FPS
19K Followers 751 Following @USAirForce Veteran | Cyber Security Researcher (VR) | IT Advisor for Content Creators | Founder of FoVeS Per Second - acquired by @StinceBuiltApurv @ASG_Sc0rpi0n
2K Followers 2K Following Threat Researcher, Threat Intel, #HUMINT, #OSINT, @curatedintel member, Speaker, Alum @GeorgiaTech, Gamer/Streamer #Rainbow6SiegeNetsec Explained @GTKlondike
1K Followers 475 Following I'm a senior security consultant who makes videos to level up my team on AI, pentesting, and bug bounty. Check out my channel on YouTube.djnn 🇺🇦 @djnn1337
371 Followers 137 Following interested in malware and car hacking ; sometimes blogs at https://t.co/qW140UYCr1Marq @dev_null321
1K Followers 1K Following It's kind of a funny story. Currently studying Comp Sci & Philosophy | Formerly, Microsoft. https://t.co/6YpXZdQ3ycLuke Jahnke @lukejahnke
2K Followers 5K FollowingOne interesting talk I noticed recently was "LLM4Shell: Discovering and Exploiting RCE Vulnerabilities in Real-World LLM-Integrated Frameworks and Apps" i.blackhat.com/Asia-24/Presen…
Do you know how many domains I've been able to coerce netntlmv1-ssp hashes from DCs this year? Almost all of them. Think about that. Y'all are living dangerously.
@mubix You prepare story_lines_? I'd focus on anime references, some IT jokes suitably bad hidden, a bunch of characters and a set of problems I don't know how to fix (but how to make worse). No plan will survive the first contact with that kind of players anyway ...
@bettersafetynet @mubix Btw @mubix I feel like Patton’s quote about the first casualty in every battle applies to TTRPGs too. There’s only so much you can plan for. I think the key in all cases is to not let the rules or the divergence from plan ruin the fun. Roll with it and do what’s funny.
@mubix You don’t do “contingency storylines” you do like 5 big storypoints and see how those get affected along the way.
@mubix for context, our group is full of neurodivergents and hackers. our DM says he basically has "his story" and how he intends to tell it. then goes into each session fully expecting us to do something or go somewhere he genuinely hasn't thought of. so just be ready to adapt I guess?
@mubix Y'gonna have to heard them like sheep... 😬
@mubix A lot. Put in more traps to use their lockpicking skills. Love DnD. Always a good time.
@mubix Have three contingencies and when all else fails improv because all else will fail 🤣
@mubix I will leave this to my favorite DM @_devonkerr_
@mubix The Sly Flourish approach is the most adaptable for wily players: Strong Hook, Strong locations, write down a few words about any scenes you can think of, and keep a list of secrets/clues that progress the story separate from specific scenes/npcs.
@mubix I gave up trying to plan. I usually have a few story ideas ready to go and just improv through whatever nonsense the players go with.
@mubix none - aggressively shoe horn them into the story line that you want with no chance for them to develop their own meaningful interactions. You are their god, they must respect your divine plan
@mubix Just don't -- build modularly be prepared to GM on the fly. They will pick none of them, or puzzle through them instantly.