Mickey Jin @patch1t
Exploring the world with my sword of debugger : ) jhftss.github.io Joined August 2013-
Tweets286
-
Followers5K
-
Following242
-
Likes3K
Excited to share our research on ChillyHell, a modular macOS backdoor targeting officials in Ukraine. Check out our write-up for more details. jamf.com/blog/chillyhel…
For those missing the talk, Blog: jhftss.github.io/Exploiting-the… Slides: github.com/jhftss/jhftss.…
For those missing the talk, Blog: jhftss.github.io/Exploiting-the… Slides: github.com/jhftss/jhftss.…
A tiny timing flaw in Apple’s core file-copy APIs can put millions of devices at risk 📂🍏 Despite warnings, Apple thought it was “too hard to exploit”—until Mickey Jin developed an exploit that steals secrets in privileged services 👉nullcon.net/berlin-2025/sp… #NullconBerlin2025
Thank you @helpnetsecurity to mention us 👍 awesome research by @tsunek0h #macOS #applesecurity #NullconBerlin2025 helpnetsecurity.com/2025/09/04/mac…
🚨 New blog post: ELEGANTBOUNCER - Catch iOS 0-click exploits without having the samples. Features iOS backup forensics & messaging app scanning for iMessage, WhatsApp, Signal, Telegram & Viber attachments. 🔗 Link -> msuiche.com/posts/elegantb…
🍏 #AppleDevelopers use NSFileManager thinking it’s safe — but @patch1t found a race condition once thought “impossible to exploit.” At #NullconBerlin2025, he’ll show how it works, why CVE-2024-54566 failed, and Apple’s final fix. 👉 nullcon.net/berlin-2025/sp… #iOS #applesecurity
Brief info and POC for this week's Apple 0click iOS 18.6.1 RCE bug CVE-2025-43300 github.com/b1n4r1b01/n-da…
We released our Fuzzilli-based V8 Sandbox fuzzer: github.com/googleprojectz… It explores the heap to find interesting objects and corrupts them in a deterministic way using V8's memory corruption API. Happy fuzzing!
Launch constraints are annoying as a security researcher. What if you didn't have to worry about them? wts.dev/posts/bypassin…
So CVE-2025-43268 was indeed my vuln in cryptexctl, but @0x3C3E found it first, kudos to him. Here's the "exploit", which makes sudo try and load an unsigned dylib from the current directory: /S*/L*/S*/u*/b*/c*.r* exec $PWD/ sudo ls
📢 Just dropped: the full #OBTS v8 talk lineup! objectivebythesea.org/v8/talks.html And for the first time we'll have 3 full days of presentations! 🤩 Congrats to the selected speakers and mahalo to all who submitted. With ~100 submissions, selecting the final talks was a daunting task! 😫
I lightly mentioned CVE-2025-31235, a double-free I found in coreaudiod/CoreAudio, during my OffensiveCon presentation last month. It's been derestricted now, so enjoy my writeup which includes a PoC and dtrace script to help understand the vulnerability! project-zero.issues.chromium.org/issues/4062711…
My "Finding Vulnerabilities in Apple Packages at Scale" talk is up on YT 🎉
My "Finding Vulnerabilities in Apple Packages at Scale" talk is up on YT 🎉
Woah, @WangTielei talk “Sending Me Your IOUserClients: A Bypass to Immovable Ports” at @deepsec_cc was insanely good! I enjoyed it! Super clever new discovery. feels awesome to see other researchers referencing my past work.
Stoked for Jaron Bradley's soon to be released 2nd-book: "Threat Hunting macOS" 😍📚 (And was honored to write its forward). Jaron is an outstanding researcher, speaker, trainer, & friend, and this book will become an essential macOS security resource. linkedin.com/feed/update/ur…
Our new blog post is live: blog.dfsec.com/ios/2025/05/30…
The slides for my OffensiveCon talk "Finding and Exploiting 20-year-old bugs in Web Browsers" docs.google.com/presentation/d…
Thrilled to announce my new Project Zero blog post is LIVE! 🎉 I detail my knowledge-driven fuzzing process to find sandbox escape vulnerabilities in CoreAudio on MacOS. I'll talk about this and the exploitation process next week @offensive_con! googleprojectzero.blogspot.com/2025/05/breaki…

chompie @chompie1337
83K Followers 1K Following hacker, weird machine mechanic, X-Force Offensive Research (XOR)
simo @_simo36
7K Followers 116 Following
0xor0ne @0xor0ne
82K Followers 514 Following | CyberSecurity | Reverse Engineering | C and Rust | Exploit | Linux kernel | PhD | My Tweets, My Opinions :) |
Alex Plaskett @alexjplaskett
12K Followers 572 Following Security Researcher | Pwn2Own 2018, 2021, 2022, 2024 | Posts about 0day, OS, mobile and embedded security.
Wojciech Reguła @_r3ggi
6K Followers 866 Following iOS/macOS app security researcher & blogger. 🍎 Black Hat / DEF CON / TyphoonCon speaker. Head of mobile appsec @SecuRingPL
LiveOverflow 🔴 @LiveOverflow
156K Followers 1K Following wannabe hacker... he/him 🌱 grow your hacking skills @hextreeio
Ivan Fratric 💙💛 @ifsecure
18K Followers 207 Following Security researcher at Google Project Zero. Author: Jackalope, TinyInst, WinAFL, Domato. PhD. Tweets are my own. Backup @[email protected]
Julien | MrTuxracer �... @MrTuxracer
37K Followers 444 Following Freelancer | #BugBounty | @Hacker0x01 H1-Elite | $1,500,000 Overall Bounties | ❤️ Reversing | Mobile Hacker | https://t.co/pcWduPOt0n
Saagar Jha @_saagarjha
5K Followers 158 Following
kmkz @kmkz_security
19K Followers 2K Following Offensive Security, pom-pom girl... Who cares ?? Bourbon Offensive Security Services | BOSS
Dohyun Lee @l33d0hyun
5K Followers 532 Following mobile / browser / microarchitectural / [email protected]
Csaba Fitzl @theevilbit
8K Followers 1K Following macOS Security -- Trail running 🏃 -- Mountains ⛰ -- Tolkien fan For mountain pictures, go to: https://t.co/Xf7KDW5fKu
Haifei Li @HaifeiLi
8K Followers 151 Following For contact in the security community. NOTE: All the tweets are totally my personal opinions, not about any of my current employer stuff.
axi0mX @axi0mX
61K Followers 2K Following Bootrom exploit philanthropist. Apple silicon hacker. iOS jailbreaker. Join us as we dance madly on the lip of the volcano.
codecolorist@infosec.... @CodeColorist
5K Followers 1K Following
Sandesh @SandeshJ0
13 Followers 2K Following
SOCLabs @DetectionLabs
57 Followers 192 Following We are building a SIEM learning and training platform for detection engineers.
Dan @DanIskandarov
49 Followers 2K Following
Mahmoud Musbah @mahmoudmusbah9
230 Followers 2K Following 4th Computer Science Shrouk Academy🧑💻, Cyber Security Student
Casey Lux @CaseyLux1
0 Followers 31 Following
VoidSec @voidsec86
1 Followers 356 Following
sill @2m7m0
0 Followers 1K Following
Riya Nair @R1y4N41r
12 Followers 49 Following Founder @ Axentra | Researcher | Bug Hunter | Ethical Hacking Instructor | Malware Analyst | Code Review | Published Author
Santiago Alvarez 💙... @santalvarez_
0 Followers 44 Following Endpoint Security Engineer at @MercadoLibre
facebook portal @xxx120253
3 Followers 2 Following
god @pv_om
399 Followers 317 Following
Kevin @kevinfra928
2 Followers 56 Following
Hαɾσɳ @haronxbelghit
57 Followers 1K Following
DexterNoN @d3xt3rnon
8 Followers 521 Following
Thepenguin360 @thepenguin85709
4 Followers 61 Following
信天翁大跌眼镜 @wenhuiwang10
4 Followers 83 Following
Muhammad Farid @Mu7ammadfared
3 Followers 670 Following
Ronald @Roland91930930
47 Followers 2K Following
Luca Alexander Pelleg... @alexan2987
13 Followers 114 Following Cybersecurity and Geopolitical Analyst 💻📈🌍
Rose Mark @RoseMark710874
0 Followers 9 Following
TheLafffinman @thelafffinman
408 Followers 1K Following Professional Hacker 💻. Fighting Gaymer 🎮. Musician 🎵.
AngusRed is #Hiring @AngusRedBlue
3K Followers 4K Following Chief Hacker Recruiter @RedBlueSec. Founder @redherdtal @Hack_South #AirborneVet #OSINT DEF CON BTV RTV CAHV @bsidesORL Volt @BsidesCapeTown Org @hacknotcrime
ahaha @hughjassbuzzt
0 Followers 11 Following
Tauheed Khan @tauh33dkhan
367 Followers 367 Following Security Expert @Payatu | AI Security | Bug Bounty Hunter | CTF Player | Full Stack Developer |
Ashok Reddy @AshokReddyv1998
26 Followers 491 Following #Never Stop Learning #CyberSecurity #Documenting my learnings # Hardwork and Discipline
Carlos @Csdxw47
143 Followers 1K Following
Daniel.J @DanielJ755
0 Followers 28 Following
Ted Rattei @tedrattei
194 Followers 3K Following Technology professional. Husband. Project Manager. Chinese 中文 speaker. Follower of Jesus
muchen @muchen28041
0 Followers 376 Following
Nic @nicolaipre
22 Followers 813 Following
soh @soh_satoh
4K Followers 601 Following security engineer @ st\.inc | ex. セキュリティベンダー, tweak developer/seller (iOS) | 何もRepしない個人としての意見感想見解です 🏴☠️📜🐾
wsp75006 @wsp750063105
5 Followers 627 Following
Backd00r🐳 $XTER♦... @TTByaw
205 Followers 3K Following Just a n00b,Just 4 fun Retweeter of InfoSec/Offsec/Pentest/Red Team/DFIR web3 newbee
김태호 @gimtaeh95829849
2 Followers 93 Following
clash @clash47341568
7 Followers 111 Following
Miguel E. Gil Biraud @mgilbir
889 Followers 3K Following Software developer, telecommunication engineer, space geek, geo enthousiast and public speaker
Paul J M @RelentlessOODA
56 Followers 620 Following Executive Decision Support | Creative Force Multiplier | Organizational Nexus | Unconventional Problem Solver | Lifelong Learner
chompie @chompie1337
83K Followers 1K Following hacker, weird machine mechanic, X-Force Offensive Research (XOR)
simo @_simo36
7K Followers 116 Following
Alex Plaskett @alexjplaskett
12K Followers 572 Following Security Researcher | Pwn2Own 2018, 2021, 2022, 2024 | Posts about 0day, OS, mobile and embedded security.
Wojciech Reguła @_r3ggi
6K Followers 866 Following iOS/macOS app security researcher & blogger. 🍎 Black Hat / DEF CON / TyphoonCon speaker. Head of mobile appsec @SecuRingPL
Ivan Fratric 💙💛 @ifsecure
18K Followers 207 Following Security researcher at Google Project Zero. Author: Jackalope, TinyInst, WinAFL, Domato. PhD. Tweets are my own. Backup @[email protected]
starlabs @starlabs_sg
9K Followers 18 Following A Singapore company that discovers vulnerabilities to help customers mitigate the risks of cyber attacks. Organisers of @offbyoneconf
Saagar Jha @_saagarjha
5K Followers 158 Following
Mobile Security @mobilesecurity_
32K Followers 1K Following Mobile Security ✌🏻 #MobileSecurity #AndroidSecurity #iOSsecurity
kmkz @kmkz_security
19K Followers 2K Following Offensive Security, pom-pom girl... Who cares ?? Bourbon Offensive Security Services | BOSS
Dohyun Lee @l33d0hyun
5K Followers 532 Following mobile / browser / microarchitectural / [email protected]
Csaba Fitzl @theevilbit
8K Followers 1K Following macOS Security -- Trail running 🏃 -- Mountains ⛰ -- Tolkien fan For mountain pictures, go to: https://t.co/Xf7KDW5fKu
Samuel Groß @5aelo
24K Followers 501 Following Working on Project Zero, Big Sleep, and V8 Security. Personal account. Also @[email protected] and https://t.co/aVitnPjBie
Objective-See Foundat... @objective_see
19K Followers 1 Following 🍎 🛡️ 🛠️ Open-Source Tools 📚 "The Art of Mac Malware" books 🫂 "Objective by the Sea" conference Support us on https://t.co/tuGceSeyiC 🙏
Haifei Li @HaifeiLi
8K Followers 151 Following For contact in the security community. NOTE: All the tweets are totally my personal opinions, not about any of my current employer stuff.
Yarden Shafir @yarden_shafir
24K Followers 311 Following A circus artist with a visual studio license
Vector 35 @vector35
10K Followers 2K Following Makers of the Binary Ninja - Reverse Engineering Platform. https://t.co/opkys50srq Also posting at https://t.co/2HEfgOtSSR
Himanshu Bharti @xpl0itmE
452 Followers 2 Following 💻 Security researcher driven by curiosity and code. Sharing insights, learning every day. [email protected]
Renwa @RenwaX23
8K Followers 60 Following
VMware Fusion @VMwareFusion
23K Followers 454 Following Develop, Test and Run Apps for nearly any OS right from your Mac
Infosec In the City (... @Infosec_City
1K Followers 77 Following IIC is an international cybersecurity capability & capacity development network. IIC organises training, events & conferences tailored to the city it is hosted.
Pedro José Pereira V... @pvieito
812 Followers 612 Following Data & Electronics Engineer. Swift Developer. 🇪🇺
Lyutoon @Lyutoon_
926 Followers 289 Following PhD student | CTF @Nu1L_Team & @StrawHat_CTF | AI + Security | Fuzzing | Collecting xx HoF | BlackHat Speaker | LLM4Shell
Mark Rowe @bdash
624 Followers 110 Following Pinball, pinball, pinball. And some computer security nonsense too. https://t.co/4NkQsMtiG6
Oligo Security @OligoSecurity
249 Followers 23 Following
deepsec.cc @deepsec_cc
261 Followers 0 Following
p1tsi @p1tsist1p
57 Followers 280 Following (deny default)(deny connections-inbound (remote profile “spam”))(allow likes-*)(allow comments-*)(deny comments-inbound (content-type “spam”))(opinions mine)
Hichem Maloufi @hichem_ifpdz
4K Followers 5 Following Founder/CEO of iRemoval PRO Ltd. | Cybersecurity Researcher 🧑💻 | Developer / Programmer 🥷🏻
James D @0x4A616D657344
7K Followers 718 Following interested in all things *OS • Aspie • opinions expressed are my own.
quarkslab @quarkslab
12K Followers 9 Following Securing every bit of your data https://t.co/hqdd8jMkYM https://t.co/GOXPtukIXE
Dillon Franke @dillon_franke
1K Followers 398 Following Fuzzing, MacOS, vuln research @Google. Jesus Follower
Yiğit Can Yılmaz @yilmazcanyigit
3K Followers 607 Following Computer Engineer | Cyber Security Analyst
tsvik6 @tsvika_m
583 Followers 1K Following As my grandfather used to say «zero clicks, tons of charm» . research, 0-days, trainings, collaboration, fuzzers and more
Mateusz Krzywicki @krzywix
2K Followers 808 Following 🐛 bugs and 🤯 exploits (Opinions are my own and not my employer)
Eisw0lf @eisw0lf
120 Followers 401 Following 🇫🇷 | Vulnerability Researcher @ Lupus Nova | BlueSky : https://t.co/B8syMl6sFh
b33f | 🇺🇦✊ @FuzzySec
33K Followers 1K Following 意志 / Antiquarian @ IBM X-Force / Team 501 / Ex-TORE ⚔️🦅 / I rewrite pointers and read memory / AI Psychoanalyst / Teaching @CalypsoLabs
Joseph Ravichandran @0xjprx
4K Followers 546 Following PhD Student studying Microarchitectural Security @MIT
Mykola Grymalyuk @khronokernel
5K Followers 124 Following Stuff at Fruit Co. Formerly OpenCore Legacy Patcher.
Hexacon @hexacon_fr
5K Followers 1 Following Offensive security conference in the heart of Paris. 10-11th October 2025 Join our Discord server! https://t.co/Btl15G8LsI
alden @birchb0y
3K Followers 2K Following sr threat researcher @ huntress • re/malware enjoyer • macOS security
Mikko Kenttälä @Turmio_
1K Followers 397 Following Hacking, Cyber and politics. Founder and CEO of @SensorFu. Board member: @KyberVPK / @JK_ry . InfoSec Specialist @effi_ry
Manfred Paul @_manfp
5K Followers 316 Following Security but not as in "national security". Playing CTFs with @redrocket_ctf (and @Sauercl0ud). Pwn2Own Vancouver 2020..=2024\{2023}. @[email protected]
Marc Newlin @marcnewlin
3K Followers 739 Following Hacker. Engineer. Burner. I'm a DARPA challenge junkie, and recently acquired a fourth pair of pants. #BlackLivesMatter.
风沐云烟 @binary_fmyy
559 Followers 41 Following
ApplSec @ApplSec
1K Followers 3 Following Stay up-to-date with security fixes to Apple's ecosystem! 📲 💻 - Not affiliated with Apple Inc. 🍎 - @[email protected] 🐘 - @applsec.bsky.social 🦋
Nathan @dedbeddedbed
7K Followers 411 Following minecraft and jailbreaking/messing with iOS Discord: pvpnathan My Jailbreak Repo/Site: https://t.co/18TzxHa8ag
AJ @justandrijana
600 Followers 402 Following Janai researcher. AJ around the world. RCEPECT. CEO of SAFA Team.
Adam @sneakernet72
57 Followers 266 Following