th3_gr00t @th3_gr00t
👾 A nerd on a journey to vulnerability research 🐇 🐼 th3-gr00t.tk Ent: Onodrim Joined November 2017-
Tweets2K
-
Followers647
-
Following626
-
Likes7K
A V8 writeup of a recently patched vulnerability we found a few months back, affecting Maglev, and probably one of the last exploits to be "unaffected" by Ubercage on x86 :)
A V8 writeup of a recently patched vulnerability we found a few months back, affecting Maglev, and probably one of the last exploits to be "unaffected" by Ubercage on x86 :)
I think today is the right day to revive my meme from 2021 😂 blog.google/threat-analysi…
You got me hiyo part " ati ako na hadi python kwa nyumba "😅😅😅😹. This is a good one @moringaschool
You got me hiyo part " ati ako na hadi python kwa nyumba "😅😅😅😹. This is a good one @moringaschool
I have done both. Comparing bug finding with zero-day detection is no more than comparing apples with oranges but what TAG has done is absolutely an EPIC job! (sometimes I wonder how they did it?)
I have done both. Comparing bug finding with zero-day detection is no more than comparing apples with oranges but what TAG has done is absolutely an EPIC job! (sometimes I wonder how they did it?)
One of our elite researchers @sherl0ck__ wrote up some great work on Apple Safari: blog.exodusintel.com/2023/07/20/shi… #vulnerability #Exploit #whitehat #CyberSecurity
For too long has it been a mild inconvenience to not have the features of GEF in LLDB. We at Foundry Zero feel you deserve better! So we ported GEF features to LLDB. You're welcome. Read about it here: foundryzero.co.uk/2023/07/13/lle… Find it here: github.com/foundryzero/ll…
“Add it to bookmarks to read it later” and other lies we tell ourselves
Quick update on the Hackfest Hollywood summit! CFP is open! Submit here by July 17th! sans.org/mlp/pen-test-h… Keynotes: Day 1: @chompie1337 Day 2: @inversecos Confirmed talks by @FuzzySec & @33y0re! In person is only $325 & free virtual! This will sell out! Reg soon!
Damn 30/74 Yikes
We are finally going to start doing public training again in 2023. Our first training will be in Austin TX in late March: blog.exodusintel.com/2023/02/17/vul…
In appreciation of the time of the year, and the economic climate, we are running a promotion through the end of January for FREE data: blog.exodusintel.com/2023/01/19/all…
👀👀 I spy with my little eye, free research by @XI_Research blog.exodusintel.com/2023/01/19/all…
People who say "Let's give up coding and go work on a farm" probably are aware that farming is difficult, and are just venting
I managed to get code execution through a Trackmania Nations Forever map. By loading or joining a server with a malicious track, an attacker could potentially take over your system.
Here's a fresh new blogpost about the exploitation of #CVE_2022_32250 on Linux kernel 5.18.1. Hope you like it! (any feedback is welcome): blog.exodusintel.com/2022/12/19/lin…
After fighting off A TON of imposter syndrome I've finally gotten around to publishing some of my work. Just published part one of "Dynamic Analysis of Windows Exploit Mitigations — Import Address Filtering." Enjoy! link.medium.com/C7EtZ0xPdvb
I'm so excited seeing the hard copy of the Kernel Exploit Recipes booklet from Google! I feel so proud that my work is part of it! It will stay in my collection forever. Thank you for making it happen! @sirdarckcat
Chalie @pwnipc
2K Followers 745 Following Offensive Android Security Researcher, ARM assembly addict, Exploit Dev? and a part time CTF player @fr334aks.Oste @oste_ke
7K Followers 6K Following ᴄʏʙᴇʀꜱᴇᴄᴜʀɪᴛʏ | ᴅꜰɪʀ 🛡️. ᴄᴛꜰ ᴘʟᴀʏᴇʀ @fr334aksmini | ꜰᴏᴜɴᴅɪɴɢ ʙᴏᴀʀᴅ ᴍᴇᴍʙᴇʀ @hih_community | #OpenSource ᴛɪɴᴋᴇʀᴇʀ | 𝕏 |Pentester Academy @SecurityTube
187K Followers 15K Following We help professionals acquire the skills, knowledge and certificates by teaching defense through offense to advance their careers in cybersecurity.Christine Wambiru @CWambiru
2K Followers 1K Following Information Security Analyst | Incident Responder | Consultant | Content CreatorSabi @iamsabrina_b
1K Followers 1K Following @WomenTechmakers ambassador |Tech sis 👩💻 |Principal Cyber Security engineer |Appsec |❤ DevSecOps |Opinions are my own |She/HerAntony Mutiga @AntonyMutiga
292 Followers 687 Following CRTO ~ CyberPro Solutions Limited ~ Arsenal ~ OKC ~ Battle Rap ~ LA RamsIan Peter @IanPeterL
821 Followers 527 Following CTF Player| VAPT | eJPT | Cloud Security | Gamer https://t.co/Gml1HdmK74 https://t.co/m3vRSP7X9vSheHacks KE #SheHacks.. @shehacks_ke
8K Followers 853 Following A community of women cyber warriors founded & led by women, looking to bridge the skills and gender gap in #InfoSec in Kenya. 👩🏻💻 📧[email protected]Norah Bergene @bergen_nor
87 Followers 5K FollowingMaxie Zetino @MaxieZeti
50 Followers 5K FollowingSuzette Dauphin @SuzetDauph
61 Followers 5K FollowingMaleah Cocran @MCocra
67 Followers 5K FollowingBrenda Rikhotso @br64911
78 Followers 258 Following Chemical engineer turned software enthusiast 🧪💻 | Passionate about coding, problem-solving, and all things tech 🚀 | From minerals to code💡 |🤝 #TechJourneyLeonard Githigi @LeonardGithigi
5 Followers 23 Following Software Engineer 𝕏 Chess enthusiast 𝕏 BookwormMazi Kosisochukwu Oba.. @Abasilim_Odogwu
686 Followers 539 Following Software Engineer Igbo boy Awka-Etiti Anambra @Alx_africa https://t.co/5X8mffbCRC https://t.co/HnYI7m4iGcCowan K. Wekesa @cowanweks
163 Followers 2K Following Software Engineer 💻💰 | Systems Programmer | Graphics Programmer | Back-End Developer | ARM64 & x86_64 Assembly Programmer | AWS Certified CP & SAbenkant @benkant
198 Followers 3K Following Design research for science and engineering workstations @ Caligra. Previously srs bsns @pinpaymentszer0day @ahmed_hassan__0
531 Followers 2K Following Bug Hunter🐞| Penetration Tester 🤖 CCNP | eCPPT| OSCP | eWPTv2 🔝1% On TryHackMe💻Game Hacking Academy @GameHackingAcad
2K Followers 2K Following Publishing game hacking tutorials at https://t.co/lZxoetqs7Q._shadow @_n00b_saib0t
51 Followers 606 FollowingMwangaumuruga @murugamwangau
16 Followers 106 Following Penetration tester ,Software Entrepreneur & Tech Influencer.Evelyn @evelynellison37
189 Followers 3K Followingazmaveth @azmaveth
768 Followers 4K Following Loves all things tech & security | Instructor of secure coding & ethical hacking | Reverse engineering since DOS 3.3 | USMC VetHolly Wu @HollyWu56852
105 Followers 3K Followingkafka 毛辰良 @kipropesque
561 Followers 2K FollowingSF_ISACA @sfisaca
1K Followers 3K Following Serving IT Audit, Security and Governance Professionals in the San Francisco AreaBadass @praisex64
164 Followers 1K Following pilot, farmer, doctor, artist, musician, soldier. I'm none of these things. | Just another random engineer who wants to figure shit outMwesigwa Living @LivingMwes82792
29 Followers 226 FollowingTradix XIII @TradixIV
2 Followers 50 Followingٰ @oSILV3R
579 Followers 711 FollowingSteve mburu @Stevemburu07
90 Followers 529 Following https://t.co/gYEjGfBZQl.,||Cyber Security Enthusiast||Constantly Learning ⏳||Let's Connect,Learn and Defend together||Filip Dragovic @filip_dragovic
6K Followers 1K Following🥔 @MariaUkpere
291 Followers 926 Following 🧜🏾♀️--- Communications @shehacks_ke & @CTF_Room | Developing Frontend Developer | SE Student @alx_africaOptometry, Design & P.. @akinpete_01
949 Followers 3K Following 👨⚕️EyeDoc 👩💻Motion Design | @Hubtometryng ⭐ Dennis Ritchie fanboyunidontfsd_1 @unidntfd_1
42 Followers 346 FollowingAfter Time X @AfterTimeX
18K Followers 4K Following For the gentleman / woman hacker who wants not only to go beyond what are the official limits, but also be informed of the future in all fields coming to us.G0D @CrypticEg0d
109 Followers 922 FollowingSoftware Engineer @OgbonnaUkah
1K Followers 1K Following Software Engineer, Geophysicist, Frontend Engineer, C, Python, JavaScript, vue.js/nuxt.js, React.js/Next.js and a UI/UX Designer.Ikiugu @vikiugu
201 Followers 2K FollowingGeeknik's {{☀️}} .. @geeknik
14K Followers 4K Following Principal Vulnerability Researcher at spiderSilk. I turn keystrokes into pixels, like code on canvas. Salsa farmer. Firefox Dev. Views & code = my own.Khalid Benjelloun @kmbenjel
427 Followers 3K Following Programmer, Lifelong Learner, Open to hire! Some tech-related interests: @freecodecamp, @TheOfficialACM, #Ruby, #Rails, #Python, #C, #JavaScript, #Regex..etc.0x0007L# @0x0007L
35 Followers 434 Following A solitary wild spirit, gradually vanishing into the shadows. # Into reverse engineering, malware, cybercrime, web, security, cloud, blockchain.vikram tallapally @vikramtall37015
549 Followers 5K Following Security analyst, Security reasearcher, Bug hunterPÎRÃTĘ 🤷♂�.. @AnotherPirate
309 Followers 2K Following just another liberal technocrat. Verified 👍 @lukegill.bsky.socialJ E @EarljjJ
60 Followers 70 FollowingTonny Demesi @TonnieDemesi
15 Followers 124 Following ICT expert, likes chating and loves Anybody above all God First.Cleanedge Hygiene Sol.. @SCleanedge
40 Followers 104 Following Cleaning and hygiene company Tel:+25491788526 +254722724788 +254781618007 Email; [email protected]𝔹𝕣𝕖𝕖𝕫�.. @breezydev_
2K Followers 2K Following Developer | Research | Technology | Interests in technology, BMWs, SpaceShips, Mars, Finance, Books, Music | Business: @computermart_kevx-underground @vxunderground
291K Followers 209 Following The largest collection of malware source code, samples, and papers on the internet. Password: infectedChalie @pwnipc
2K Followers 745 Following Offensive Android Security Researcher, ARM assembly addict, Exploit Dev? and a part time CTF player @fr334aks.Jack Rhysider 🏴.. @JackRhysider
147K Followers 3K Following Creator of @DarknetDiaries. Tell me a good hacker story. 💻🔦⤵️🐰🕳️ Discord: https://t.co/qxanMuIy7uBen Sadeghipour @NahamSec
197K Followers 1K Following Cofounder @hackinghub_io, Advisor @Trick3st @CaidoIO. I hack companies and make content about it. Bug Bounty Village & #NahamCon organizer. ex @hacker0x01🇮🇷Pentester Academy @SecurityTube
187K Followers 15K Following We help professionals acquire the skills, knowledge and certificates by teaching defense through offense to advance their careers in cybersecurity.Christine Wambiru @CWambiru
2K Followers 1K Following Information Security Analyst | Incident Responder | Consultant | Content CreatorJohn Hammond @_JohnHammond
239K Followers 2K Following Hacker. Cybersecurity Researcher @HuntressLabs || https://t.co/qUeDM3lSClTCM Security @TCMSecurity
185K Followers 328 Following Disrupting the education and hacking industry. Come learn to hack at TCM Security Academy! Veteran owned. Quality results.Antony Mutiga @AntonyMutiga
292 Followers 687 Following CRTO ~ CyberPro Solutions Limited ~ Arsenal ~ OKC ~ Battle Rap ~ LA RamsFlorian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇LiveOverflow 🔴 @LiveOverflow
142K Followers 1K Following wannabe hacker... he/him 🌱 grow your hacking skills @hextreeioSheHacks KE #SheHacks.. @shehacks_ke
8K Followers 853 Following A community of women cyber warriors founded & led by women, looking to bridge the skills and gender gap in #InfoSec in Kenya. 👩🏻💻 📧[email protected]Kenya CyberSecurity &.. @kcsfa
12K Followers 816 Following Kenya CyberSecurity & Forensics Association: KCSFA. https://t.co/tPyvknHh2p Legally registered (Act CAP 108). Digital Transformation AgendaNicolas Krassas @Dinosn
121K Followers 735 Following Head of Threat & Vulnerability Mgmt @ Henkel AG & Co. KGaA https://t.co/NC1orlKrW3PwnFunction @PwnFunction
38K Followers 981 Following I make animated computer science videos • product & ai @pdiscoveryio • blog at https://t.co/RLiSNOVQ0Wippsec @ippsec
111K Followers 349 FollowingHack The Box @hackthebox_eu
190K Followers 226 Following #1 Cyber Performance Center, providing a human-first platform to create and maintain high-performing cybersecurity individuals and organizations.Mark Vincent Yason @MarkYason
622 Followers 244 Following Software Reverse Engineer and Vulnerability Researcher | Independent Security Researcher | https://t.co/T8boZUUXJZulisses @foolisses
313 Followers 623 Following Mathematician gone InfoSec. Interested in the Linux kernel, vulnerability research & reverse engineering.Peter Vreugdenhil @WTFuzz
7K Followers 33 Following Mitigations bypassed: DEP, ASLR,KASLR, SafeSEH, CFG, Protected Mode, SMEP, PAC, ** ** list might be incompleteAdepts of 0xCC @AdeptsOf0xCC
2K Followers 7 Following A brotherhood of owls praying to the debugger God. Press F7 to step into our prayers!X-C3LL @TheXC3LL
5K Followers 622 Following Just a biologist that loves to break cyber-stuff. Ka0labs / @AdeptsOf0xcc / ID-10-Ts member. 🦉Stephen Sims @Steph3nSims
20K Followers 604 Following Perpetual Student | SANS Fellow | Musician | Braggart Hater | Gray Hat Hacking | VR | 🏂 | d3adc0de | oNLyHaCKeRs | https://t.co/CadJehomsUx86matthew @x86matthew
17K Followers 345 Following C / asm / reverse engineering. Developer at @MDSecLabs. Other stuff at @the_secret_clubRichard Johnson @richinseattle
16K Followers 3K Following Computer Security, Reverse Engineering, and Fuzzing; Training & Publications @ https://t.co/mloVP6rPB7; hacking the planet since 1995; Undercurrents BOFHallthingsida @allthingsida
2K Followers 1 Following All things IDA, security, reverse engineering, programming, AI and more. Friend and fan of Hex-Rays but non-official.Source Incite @sourceincite
3K Followers 4 Following We are Incite Team. Providing high quality Vulnerability Research & Training Services.Game Hacking Academy @GameHackingAcad
2K Followers 2K Following Publishing game hacking tutorials at https://t.co/lZxoetqs7Q.offensivecon @offensive_con
21K Followers 1 Following OffensiveCon is a highly technical international security conference focused on offensive security only. Organized by @bluefrostsec @offensivecon.bsky.socialSatellite Forex Burea.. @Satelliteforex
26K Followers 0 Following Monitoring activities of the market on all foreign currencies.Haifei Li @HaifeiLi
7K Followers 151 Following For contact in the security community. NOTE: All the tweets are totally my personal opinions, not about any of my current employer stuff.clem @clavoillotte
1K Followers 755 Followingptr-yudai @ptrYudai
5K Followers 336 Following 🍣🍣🍣 https://t.co/5OmzwCTPea 🍣🥺🍣 @zer0pts の猫 🐯 🍣🍣🍣 https://t.co/5OmzwCTPea Japanese Sushi Hacker (I turn off notification of every SNS/email due to notification anxiety.)diversenok @diversenok_zero
1K Followers 39 Following Aspiring Windows security researcher & system programmer; student.VR|RE Community @zerodaylinks
2K Followers 47 Following Vulnerability Research 💯 • Expertly curated by @alisaesage • Sponsored by @zerodaytrainingLow Byte Productions @lowbyteprod
3K Followers 1 Following In depth, low level videos by @fstokesmanMCKSys Argentina @MCKSysAr
1K Followers 147 Following Exploit Writer, Reverser, Old School Cracker, Atheist, etc. Breaking stuff since '98. Tweets are my own.🥔 @MariaUkpere
291 Followers 926 Following 🧜🏾♀️--- Communications @shehacks_ke & @CTF_Room | Developing Frontend Developer | SE Student @alx_africaAsahi Lina / 朝日�.. @LinaAsahi
30K Followers 132 Following Hello everyone, Asahi Lina here! I'm a Linux developer VTuber! EN/日本語|🎨 #AsahiLinArt|Model @NananoNanase|Design @shiranui_illustCyan小盐 💫 FAANG.. @CyanNyan6
5K Followers 1K Following developer @ FAANG & catgirl VTuber ✰ I use arch btw ✰ She/Her ✰ DM for any tech/college/VTuber service ✰ YT 35k+ subs: https://t.co/9knZsUVjdL ✰ @cyanvtb #CyanArtFilip Dragovic @filip_dragovic
6K Followers 1K FollowingPiotr Bazydło @chudyPB
3K Followers 257 Following Vulnerability Researcher at the Zero Day Initiative | Pwn2Own Miami 2022 | Microsoft MVRBrian Gorenc @MaliciousInput
3K Followers 428 Following Leader of the Zero Day Initiative. Pwn2Own organizer and adjudicator. Trafficker of export-controlled intrusion software. Bug Hunter.Jeremy Fetiveau @__x86
4K Followers 2K Following Hacking chrome. Building new teams with @TrenchantARC. Occasional contributor to @doar_e.yrp @yrp604
995 Followers 827 FollowingGeeknik's {{☀️}} .. @geeknik
14K Followers 4K Following Principal Vulnerability Researcher at spiderSilk. I turn keystrokes into pixels, like code on canvas. Salsa farmer. Firefox Dev. Views & code = my own.Alex Plaskett @alexjplaskett
9K Followers 588 Following Security Researcher | Pwn2Own 2018, 2021, 2022, 2024 | Tweets about 0day, OS, mobile and embedded security.Maurice Heumann @momo5502
12K Followers 193 Following 🐍 DRM Developer & Reverse Engineer. My girlfriend rates me 4/5 stars.Pew @TheGrandPew
3K Followers 509 Following Websec dude, plays ctf with @Water_Paddler. Blackhat and Defcon 22 speaker. Building VR Goggles @dfsec_com𝔹𝕣𝕖𝕖𝕫�.. @breezydev_
2K Followers 2K Following Developer | Research | Technology | Interests in technology, BMWs, SpaceShips, Mars, Finance, Books, Music | Business: @computermart_keRicky Customs @Ricky_customs
5K Followers 1K Following Technophile @infosecfixer| PC Architect For Gamers and Content Creators| Skin Plug | iOS and Android Beta Historian |Austin Hudson @ilove2pwn_
6K Followers 35 Following Offline and looking for work. Living life happy and to its fullest . To reach me, I'm available @ [email protected].Grzegorz Tworek @0gtweet
29K Followers 1K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-Javier P Rufo @javierprtd
325 Followers 212 Following Ingeniero Informático por la UPNA. Security researcher. Android. CTF player at @amn3s1a_team & @id10t_ctf as pwner.JayzTwoCents @JayzTwoCents
1.1M Followers 102 Following Just a mediocre Tech YouTuber doing mediocre things! [email protected]doar-e @doar_e
3K Followers 4 Following Diary of a reverse-engineer blog - You like binaries and reverse-engineering ? Write a post!Baki Hanma @Hanma0Baki
5 Followers 7 Following @th3_gr00t's alter ego to unlock his inhibitions and give him the freedom to embrace who he wants to be. Born in 03, July, 2023.Michael Maltsev @m417z
1K Followers 127 Following About me: https://t.co/rMRTHfHkLh Software: https://t.co/LC4pX87GAC Source code: https://t.co/3OQbob0YQWToday Microsoft open-sourced MS-DOS 4.0. You can check it out here: github.com/microsoft/MS-D…
Oracle VirtualBox Prior 7.0.16 LPE Exploit github.com/mansk1es/CVE-2… Finding this bug was very cool :)
Do not waste your time trying to teach those who are not ready to learn assembly Instead focus your energy on those who are willing to learn Only then will you find peace
We are hiring! If you are looking to challenge yourself with cool research targets, and learn from some of the best in the world, apply with us! #vulnerabilityresearch #exploitation #hiring #ForHackerByHackers exodusintel.com/careers.html
The manuals: agner.org/optimize/
Making Sense of x86 Microarchitecture @mattgodbolt outlines useful resources for gaining a deeper understanding of x86 microarchitecture, such as Agner Fog's optimization manuals, and explains how his own investigations led to attribution in the Spectre and Meltdown attacks.
And that's why I made a Minecraft hacking video series :) youtube.com/playlist?list=…
Proving once again that Minecraft exploits are fundamentally more interesting than the ones targeting software people actually care about (and definitely being better for civil society): github.com/spawnmason/ran…
You cannot advance to harder exploits unless you learn the lessons that the previous vulnerabilities are trying to teach you.
Join @j00ru as he shares his research/adventure through the Windows Registry: googleprojectzero.blogspot.com/2024/04/the-wi… 50 CVEs is just the beginning. Future posts will explore the attack surface, history, practical exploitation using hive memory corruption, cell indexes and other good times🎉
So @j00ru published two posts on Windows Registry; given that there were a lot of fixes in Windows Registry in recent months I expect these to be fun ;) googleprojectzero.blogspot.com/2024/04/the-wi… googleprojectzero.blogspot.com/2024/04/the-wi…
He has been coming to my school calling my phone and also giving people my number to call me out that someone wants to buy perfume in the night.Luckily for me I wasn't in school. It was later that he told me he came to look for me in school and he wasn't able to see me that night
Crashing Windows CHM Parser in Seconds Using WinAFL! Article Highlight #1 - check it out in Paged Out #3 page 53 pagedout.institute/download/Paged…
I just published my first blog post on Interrupt Handling and Stack Switching in x86-64 Architecture, inspired by some difficulties I faced in a lab from @XenoKovah’s Arch2001 x86-64 OS Internals course at @OpenSecTraining. theokwebb.github.io/posts/interrup…
Some crappy POC code I wrote to demonstrate how it is possible to use NtWaitForDebugEvent + WaitForMultipleObjects together to wait for debug events from multiple debugees at once (and other waitable too). Hopefully helpful to someone. gist.github.com/mistymntncop/f…
The third series in our N-Day full chain exploit is out now! blog.theori.io/chaining-n-day… We exploited CVE-2023-29360, a beautiful logical vulnerability in the Windows driver, to elevate the privilege from user to SYSTEM. It was also leveraged by @Synacktiv at Pwn2Own 2023…
These are GREAT reads! All credits to the author of these posts! #DFIR #Malware #Debugging #Memory "Windows Address Translation Deep Dive – Part 1" bsodtutorials.wordpress.com/2021/06/14/win… "Windows Address Translation Deep Dive – Part 2" bsodtutorials.wordpress.com/2024/04/05/win…
[Game Hacking] Reverse Engineering and Bypassing Denuvo DRM in Hogwarts Legacy (5+ months of effort with 2000+ patches, wow !), insane work by @momo5502 🤯🫡 momo5502.com/posts/2024-03-…
As computing has evolved we can get abstracted away from some of the fundamentals. Two things that really intrigued me when learning about computers was how operating systems worked and programming language were constucted There are some pretty fun materials in these areas:
If you do Windows research you can't miss this conference. Many top quality Windows research presented‼️
A big welcome to @YanZiShuang , a Windows Security Researcher who is joining us as a speaker. His paper is entitled "Win32k Vulnerability Dead? Taking win32k Exploitation To The Next Level". Read more. offbyone.sg/speakers/ #win32kvulnerabilities #bypasswindows #windowexploit
Theori's N-Day Full Chain Exploits Series: Part 2 How did we escape the chrome sandbox? Want to dive deep into the first Windows kernel in-the-wild vulnerability(CVE-2023–21674) discovered in 2023? Check it out now. #Theori #티오리 #windows #sandbox blog.theori.io/chaining-n-day…