Rohit Mothe @rohitwas
Security Re..(dare i say it?) , struggling janitor. tweets,replies,retweets,likes,DMs entirely my own doing, undoing Seattle, WA Joined October 2009-
Tweets666
-
Followers790
-
Following157
-
Likes4K
At @defcon 33, George Hughey (@ecthr0s) and Rohit Mothe (@rohitwas), Senior Security Research Managers at MSRC, took us back to the 90s with their talk on the ghost of Internet Explorer in Windows: MapUrlToZone. They uncovered how this legacy API, used by Outlook, Office,…
Looking to hire 2 experienced Security Researchers in the US for the Exploits Research Team within the Microsoft Security Response Center (MSRC) Senior Security Researcher jobs.careers.microsoft.com/global/en/shar… Security Researcher II jobs.careers.microsoft.com/global/en/shar…
This week's Patch Tuesday included 8 CVEs that @rohitwas and I found! We've been focusing on findings ways to bypass MapUrlToZone and found several very interesting ways to confuse it. This is an API we've seen a lot of interest in lately, so good to have it locked down!
To help protect against NTLM relay attacks, we’ve enabled Extended Protection for Authentication (EPA) by default in Windows Server 2025. This update strengthens key services like Exchange Server, Active Directory Certificate Services (AD CS), and LDAP, making identity compromise…
MSRC V&M is expanding and is looking for a leader who can guide team of hackers in tackling challenging problems in the areas of Open Source, Supply Chain and Hardware security. If you have the skills and passion for vulnerability management. Apply Now @ jobs.careers.microsoft.com/global/en/job/…
MSRC Vulnerability and Mitigation (V&M) team is expanding into exciting challenges of Open-Source vulnerability response and research. This is an opportunity for you to redefine how Microsoft respond and research in this space. Interested? Apply @ jobs.careers.microsoft.com/us/en/job/1611…
We have our Microsoft STRIKE Capture the Flag winners! Drumroll, please!🥁 Congrats to the top 3 teams: 🥇JasonsJsons 🥈Capture the Food 🥉0xCAFEBABE #MSFTSTRIKE
Why is the best defense good offense? like..why is the best defense not the best offense, how does a superlative in one domain equate to merely “good” in another… #RandomThoughtsThursday
Yesterday's Patch Tuesday saw the release of 10 CVEs I found in DNS! These could potentially allow an authenticated attacker to gain remote code execution. A huge thank you to the DNS team who worked through and fixed these. msrc.microsoft.com/update-guide/v…
Time for a new blogpost! Let's do a CHERIoT walkthrough - including a straightforward setup, understanding how we kill bug classes and mitigating attacks on our minimal TCB through practical examples, and more fun! msrc.microsoft.com/blog/2023/02/f…
Speaking of Function Overrides... here is the video of my presentation: recon.cx/media-archive/…. Thanks @reconmtl and @hugofortier !
I was super excited to talk to @44CON today, thanks for having me! If you spot me and want to talk about kernel exploits, come and say hello! If you missed the talk, check out the MSRC blog post I did: msrc-blog.microsoft.com/2022/03/22/exp… 🙂
What is the true impact of a blind arbitrary kernel pointer read primitive? DoS, second order info leak, or is something more possible (EoP / RCE)? I'll be discussing this at 44Con next month, come and join us! 🙂
What is the true impact of a blind arbitrary kernel pointer read primitive? DoS, second order info leak, or is something more possible (EoP / RCE)? I'll be discussing this at 44Con next month, come and join us! 🙂
One of my favorite people to work with. Big recommendation from me if you’re interested in working with amazing kernel engineers.
One of my favorite people to work with. Big recommendation from me if you’re interested in working with amazing kernel engineers.
I'm looking for talented software engineers for multiple positions in the Windows Kernel team to create the best platform for Azure, Xbox, HoloLens and Desktop. linkedin.com/feed/update/ur…
Second part of the iBoot Firebloom blogpost series is up! This time, reversing the functionalities around the type pointer :) Hope you'll find this interesting! saaramar.github.io/iBoot_firebloo…
We're super excited to announce the release of snmalloc 0.6.0 with a load of new security features that no other allocators have. We have a small write up of the features: github.com/microsoft/snma… 🧵(1/5)
Last year, Apple shared a high-level overview of "Memory safe iBoot implementation". I thought it would be nice to reverse and write about it, hope you will find it interesting :) saaramar.github.io/iBoot_firebloo…
Greg Linares (Laughin... @Laughing_Mantis
37K Followers 2K Following 20+ yrs in Infosec. Malware Influencer. I turn Malware into Art and Music. Art @MalwareArt. 4x Pwnie Nominee. 𝕍𝕏. GameDev. Autistic.
Richard Johnson @richinseattle
18K Followers 3K Following Computer Security, Reverse Engineering, and Fuzzing; Training & Publications @ https://t.co/mloVP6rPB7; hacking the planet since 1995; Undercurrents BOFH
Alex Ionescu @aionescu
47K Followers 2K Following Chief Technical Innovation Officer @crowdstrike. Windows Internals author and trainer. He/Him. RTs are not endorsements, opinions are my own.
Andrea Allievi @aall86
5K Followers 373 Following Currently Senior Windows Core OS Engineer, Windows Internals Enthusiast and Book author, tennis lover, currently working for MS. Opinions and tweets are my own.
HackSys Team @HackSysTeam
10K Followers 630 Following Vulnerability Research, Kernel Exploitation, Reverse Engineering, Exploit Development, Program Analysis, Malware Research, Web, Machine Learning
d1rkmtr @d1rkmtr
8K Followers 466 Following
Ptrace Security GmbH @ptracesecurity
58K Followers 867 Following Empowering IT Security Professionals through Hands-On Online Courses.
Andrew Ruddick @arudd1ck
564 Followers 211 Following Breaking software. Security Researcher @ Microsoft. Views are my own.
SinSinology @SinSinology
12K Followers 685 Following Pwn2Own 20{22,23,24,24.5,25,25.5}, i look for 0-Days but i find N-Days & i chase oranges 🍊
rthhh @rthhh17
2K Followers 661 Following Hyper-V Security Researcher. Black Hat USA 2021/2022 Speaker. MSRC MVR 2019/2020/2022/2024.
gabriela @eoncrypt
15 Followers 112 Following MSRC security researcher + ctf player for the us cyber team
Tống Thế Bảo @BoTng958944
1 Followers 119 Following
Alan @com9bakwa
2 Followers 135 Following
Cyber Marmot @cybermarmot_
382 Followers 3K Following 🇪🇺 🇮🇹 I smuggle cheese and Data around EU https://t.co/TWQGa73zNz
Brad Schlintz @nmdhkr
321 Followers 376 Following Traveler, security researcher, software engineer. Microsoft MVR 2025 (5th) and 2024 (19th).
m3di @m3dip
5 Followers 747 Following
Tuan Dinh Van 🇻�... @tunadv
159 Followers 724 Following Security engineer | MSRC 2024 Q3/4 | MSRC 2025 MVR
Celedonio Hernández @ctcichs
92 Followers 4K Following
ABE DIAZ @abe238
3K Followers 6K Following Disaster Relief. Tweets are my own and do not indicate opinion, also RTs are not endorsements. 🇵🇷
Tomer Eizenberg @EizenbergT47800
5 Followers 327 Following
Srikanth Addagatla @SRKNTHCSE
73 Followers 2K Following
Gowrishankar @g0wricsMD
11 Followers 92 Following
Ervroovow @Ervroovow75264
16 Followers 628 Following
Jans @JT777777777
3 Followers 717 Following
nuyo4h @nuyo4h
0 Followers 3K Following
devanits98 @devanits9817220
102 Followers 4K Following
Karim Abdelaziz @Karim_A_26
12 Followers 714 Following OP. Palestine is not a case, it is a life that we were raised on.
Ali Akbar @aliakbar09214
11 Followers 158 Following
Michael DePlante @izobashi
4K Followers 740 Following Security Researcher at the Zero Day Initiative. DMs open.
比个心 @vbigthing
88 Followers 4K Following
A @A0596764045126
0 Followers 579 Following
Isaiah @Hacker_Ise
5 Followers 670 Following Web & Mobile Security Reseacher | Exploring Blockchain and Cloud Security | ARM | Chasing My Curiousity
Mauricio @mauricio424
90 Followers 1K Following
PoliticsFan @TomH1720
193 Followers 712 Following Husband. I ignore all DMs. R supporter all the way and an unabashed USA Patriot.
tejas krishna @tejaskrshna
56 Followers 2K Following
Niraj Mahajan @niraj1mahajan
2K Followers 678 Following Microsoft 2024, 2025 MVR | #BugBounty Hunter | Application Security | Discovered 11x CVEs
Yannick Boog @YannickBoog
65 Followers 5K Following
@known_hosts @known_hosts
0 Followers 2K Following
James Ibrahim @JamesIb54140322
67 Followers 3K Following
Adrien @chohco0A
1 Followers 61 Following
Guilherme Rodrigues (... @guiispark
187 Followers 396 Following 🇧🇷🧑🏾💻 InfoSec Analyst |🐞 ETH Hacker | Bug Hunter | 🏆 Microsoft MVR 2023 & 2025 | 👑 Microsoft Leaderboard: Q1/23 • Q4/24 • Q1/25 • Q2/25
Ojaswi Kumar Mishra�... @0xojaxwi
76 Followers 2K Following Old-school Malware & Offensive Security REsearcher | ⚡Kernel Pwner⚡
Philipp Giersfeld @grsfld
0 Followers 93 Following
x86byte @x86byte
108 Followers 855 Following iOS & Windows Vulnerability Researcher & Exploit Developer — Reverse engineer, Obfuscation & De-Obfuscation Practitioner & Compilers Backend 👾🥤
Leo @leolin113
55 Followers 2K Following
mdowd @mdowd
32K Followers 746 Following Internet Hacker. Founder of @vigilant_labs. Previously, co-founder of Azimuth Security (now L3Harris Trenchant)
Ivan Fratric 💙💛 @ifsecure
18K Followers 207 Following Security researcher at Google Project Zero. Author: Jackalope, TinyInst, WinAFL, Domato. PhD. Tweets are my own. Backup @[email protected]
Satoshi Tanda @standa_t
8K Followers 395 Following Software security engineer and trainer https://t.co/tenaquooTc
Richard Johnson @richinseattle
18K Followers 3K Following Computer Security, Reverse Engineering, and Fuzzing; Training & Publications @ https://t.co/mloVP6rPB7; hacking the planet since 1995; Undercurrents BOFH
James Forshaw @tiraniddo
49K Followers 339 Following Security researcher in Google Project Zero. Author of Attacking Network Protocols. Tweets are my own etc. Mastodon: @[email protected]
Alex Ionescu @aionescu
47K Followers 2K Following Chief Technical Innovation Officer @crowdstrike. Windows Internals author and trainer. He/Him. RTs are not endorsements, opinions are my own.
Axel Souchet @0vercl0k
13K Followers 547 Following ¯\_(ツ)_/¯, blogging on https://t.co/36oOc8Mgha and posting codes on https://t.co/P83Oen94Rc.
Andrea Allievi @aall86
5K Followers 373 Following Currently Senior Windows Core OS Engineer, Windows Internals Enthusiast and Book author, tennis lover, currently working for MS. Opinions and tweets are my own.
Andrew Ruddick @arudd1ck
564 Followers 211 Following Breaking software. Security Researcher @ Microsoft. Views are my own.
SinSinology @SinSinology
12K Followers 685 Following Pwn2Own 20{22,23,24,24.5,25,25.5}, i look for 0-Days but i find N-Days & i chase oranges 🍊
Mark Ermolov @_markel___
12K Followers 130 Following I research security of Intel platforms. I don't work for Intel
ABE DIAZ @abe238
3K Followers 6K Following Disaster Relief. Tweets are my own and do not indicate opinion, also RTs are not endorsements. 🇵🇷
Michael DePlante @izobashi
4K Followers 740 Following Security Researcher at the Zero Day Initiative. DMs open.
Jonathan Gorard @getjonwithit
40K Followers 17 Following Applied mathematician, computational physicist @Princeton Previously @Cambridge_Uni Making the universe computable.
kylebot @ky1ebot
6K Followers 319 Following CTF player @Shellphish | PhD Student @ASU | @angrdothorse dev | Author of how2heap | Vulnerability Research Hobbyist | @[email protected]
Microsoft Threat Inte... @MsftSecIntel
187K Followers 1K Following We are Microsoft's global network of security experts. Follow for security research and threat intelligence.
Sam Pope @20brokenSP
41 Followers 93 Following Things I break: Software ,Passes, My own body. MSRC UK Software Researcher & Swindon Storm CB #20
Cam @SecretlyHidden1
2K Followers 230 Following Former full time bug bounty hunter - now doing security stuff at places :)
nwf, Ph.D. @qedragon
337 Followers 990 Following "nʉf". He/They. A nerd's nerd. Anti-fascist, anti-theist. 🏳️🌈🏳️⚧️ΘΔ. Work @ MS Azure; opinions mine. AKA @[email protected]
Joseph Bialek @joseph... @JosephBialek
4K Followers 342 Following No longer using Twitter, find me on Mastodon: @[email protected] Security engineer @ Microsoft. I speak on my own behalf, not my employers.
Saurabh Devulapally @saurabh_Dpally
22 Followers 32 Following
Matthew Parkinson @ParkyMatthew
548 Followers 557 Following Working at Microsoft Research on various programming language things.
Mark @offlinemark
6K Followers 1K Following trying hard. streaming kernel dev - https://t.co/aO5X4jXGQD blogging about life, art & systems programming. non-expert work: @ableton, prev @trailofbits
George Hughey @ecthr0s
580 Followers 194 Following MSRC Engineering - previously CS @ University of Maryland working on Geneva (https://t.co/dMYqBnn2oA)
Arnav Garg @hamsterz0
41 Followers 309 Following
Vishal Chauhan @axsdnied
522 Followers 241 Following Microsoft MSRC V&M team lead. Hacker. Gamer. Swimmer. Guitar player. Can't stay focused.
Saar Amar @AmarSaar
19K Followers 361 Following Reversing, exploits, {Windows, Hyper-V, *OS} internals, mitigations. Apple SEAR. Opinions are my own. @[email protected]
Matt Miller @epakskape
12K Followers 649 Following Killing bug classes and breaking exploits as part of @msftsecresponse. Adding more entropy to the Internet. https://t.co/J8GCGurGP3
Binary Ninja Devs @BinjaDevs
1K Followers 6 Following Group account for random posts by the Binary Ninja developers
Vector 35 @vector35
10K Followers 2K Following Makers of the Binary Ninja - Reverse Engineering Platform. https://t.co/opkys50srq Also posting at https://t.co/2HEfgOtSSR
Sophia d’Antoine @Calaquendi44
3K Followers 124 Following Founder @Margin_Research, Hacker in Residence @ NYU, @RPISEC
Yueqi Chen @Lewis_Chen_
749 Followers 500 Following Assistant Professor in CS @CUBoulder, #weirdmachine programmer and anti-programmer
Bryan Alexander @dronesec
2K Followers 334 Following researcher. exploit dev. hacking @ stripe stop using twitter. find me @ [email protected]
Giulio Zompetti @1nsane_dev
12K Followers 248 Following
Fermat's Library @fermatslibrary
777K Followers 4 Following A platform for illuminating academic papers. We annotate and share a paper every week. Save, annotate and share papers with anyone: https://t.co/0o2Pls3jmo
renorobert @renorobertr
2K Followers 924 Following
idatips @idatips
4K Followers 3 Following Tips and tricks for everyone's favorite disassembler. Account not run by Hex-Rays.
Brian Pak @brian_pak
2K Followers 191 Following CEO @ Theori | CMU CS '11 | Plaid Parliament of Pwning
@[email protected]... @bxsays
814 Followers 354 Following @studied the computer security arts as a PhD student at Dartmouth College. Thesis @ https://t.co/5Cmq4HJi2H Now trying to take over the world @narfindustries
Arthur Wongtschowski @artwongt
654 Followers 365 Following Vulnerability research manager at Google Cloud. Previously at Microsoft, working on breaking Windows and Azure. Opinions are non-existent or my own.
Richard Zhu @RZ_fluorescence
6K Followers 38 Following
Tom 7 @tom7
8K Followers 364 Following lexicographic NES AIs, alphabetical star wars, video games, fonts, album-a-day, expert mode running, chiptune, programming languages, etc.
Mathias Payer @gannimo
8K Followers 388 Following Securitatis inquisitor and professor at @EPFL_en leading the #HexHive 🐝 group, focusing on system/software security. @[email protected] (he/him)
Yuki Chen @guhe120
10K Followers 281 Following 古河, Indepent security researcher, Bug bounty, ACG Otaku, Pwn2Own 15/16/17, PwnFest16,TianfuCup 18/19/20, 5 times MSRC MVR yearly Top 1. Got two pwnie awards.
v1m (infosec.exchange... @v1m
153 Followers 371 Following This twitter feed is for vulnerability related information. https://t.co/l9DFJBgnsI
Trends for United States
You might like
