Adrien B @Int2e_
Malware research and threat intel ex #DFIR responder at @Mandiant Joined June 2014-
Tweets499
-
Followers2K
-
Following95
-
Likes617
A recent analysis revealed MystRodX, a sophisticated C++ backdoor, employing dual-mode activation and advanced encryption, has been lurking undetected since 2024, posing a significant threat to network security. #MystRodX #CyberSecurity ift.tt/8vtwxFQ
Meta and Russian Yandex engaged in unprecedented internet tracking practices, likely illegal with EU data protection law. Companies designed tracking systems that exploited Android's localhost socket permissions to create covert communication channels between websites and native…
The Microsoft Threat Intelligence Center (MSTIC) is looking for malware reverse engineers and security researchers to join our team! Come join our brilliant, world-class team of malware REs and intelligence researchers: Principal Security Researcher (United States):…
Based on our findings and those reported by governments and other security vendors, Microsoft Threat Intelligence assesses the Russian nation-state actor we track as Secret Blizzard has used the tools and infrastructure of at least 6 other threat actors during the past 7 years.
Microsoft identified multiple vulnerabilities in the open-source platform OpenVPN, integrated into millions of devices worldwide, which could be exploited to create an attack chain allowing remote code execution (RCE) and local privilege escalation (LPE). msft.it/6014llDIQ
We are looking for a strategic threat intel analyst to join @ESETresearch. Interested in cyber-espionage and geopolitics? Apply! ca.linkedin.com/jobs/view/anal…
CrowdStrike is actively working with customers impacted by a defect found in a single content update for Windows hosts. Mac and Linux hosts are not impacted. This is not a security incident or cyberattack. The issue has been identified, isolated and a fix has been deployed. We…
Welcome to the future of YARA: virustotal.github.io/yara-x/blog/ya…
Trend Micro's Christopher So looks into two techniques used by Earth Freybug (a subset of APT41) in the UNAPIMON malware: dynamic-link library hijacking & application programming interface (API) unhooking to prevent child processes from being monitored. trendmicro.com/en_us/research…
#100DaysofYARA Day 07 - another condition only rule this time looking for the HTTPSnoop and PipeSnoop families found by Talos a little avant garde, but both store config info in the .data section, XOR'd with a 1 byte key following the same structure github.com/100DaysofYARA/…
#100DaysOfYara Day 6: Yara can be used to access specific data at a given position. 👇 This feature is often used to identify Magic Numbers (used to determine the file format) to match your rule against a specific file type, such as a PE (0x4D5A), for example. Today, no…
#100DaysofYARA Day 6 sometimes our pals in TA404/Zinc/Temp.HERMIT/Diamond Sleet reuse export names and add a dubya ("W") to the end of the second name. lets create a loose rule looking for duplicates like that! Examples in the second pic thanks to Ronnie Coleman
[1/4] Joined by @vmptrst (@PwC) and @MsftSecIntel, we release attribution information on the Sandman #APT, first revealed at @labscon_io '23. Link 👇 s1.ai/LuaDream
Microsoft has uncovered a supply chain attack by North Korean threat actor Diamond Sleet (ZINC) involving the modification of an installer file from software maker CyberLink. The payload calls back to attacker infrastructure for instructions. Learn more: msft.it/6013iHoQF
Teaser: we're working on a new #YARA module to enhance in-memory matching, allowing detection engineers to craft more precise rules. Stay tuned
A few weeks ago I was honored to speak at @labscon_io . Great people, great talks, great venue. I honestly could not suggest any improvements except something closer to CET timezone!
Check this Microsoft x PwC research collab, coming to #LABScon23 labscon.io/speakers/adrie… labscon.io/speakers/bendi…
Microsoft has identified targeted attacks against the defense sector in Ukraine and Eastern Europe by the threat actor Secret Blizzard (KRYPTON, UAC-0003) leveraging DeliveryCheck, a novel .NET backdoor used to deliver a variety of second stage payloads. msft.it/6019gfoYU
CERT-UA in collab w/ @MsftSecIntel investigated UAC-0024 (susp. #Turla) using CAPIBAR & KAZUAR to target UA GOV entities. Details: cert.gov.ua/article/5213167 (UA only)
Florian Roth ⚡️ @cyb3rops
206K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Andrew Thompson @ImposeCost
39K Followers 1K Following Head of Research and Discovery (RAD) @Google Threat Intelligence Group via @Mandiant acquisition. Posts are attributable to me—not my employer. Former @USMC.
Thomas Roccia 🤘 @fr0gger_
31K Followers 2K Following AI Security x Threat Intel · Sr. Threat Researcher @Microsoft · Creator of #Unprotect & #NOVA · Malware Warlock · Python 🧡 · Prev @McAfee_Labs · Views mine 😈
Katie Nickels @likethecoins
55K Followers 3K Following Director of Intel at @redcanary. SANS Certified Instructor for FOR578: CTI. Senior Fellow at @CyberStatecraft. She/her. Mastodon: @[email protected]
Will @BushidoToken
36K Followers 3K Following Senior Threat Intel Advisor @TeamCymru | Co-founder @CuratedIntel | Co-author @SANSForensics FOR589 | Co-founder @BSidesBournemth | @darknetdiaries #126: REvil
Steve YARA Synapse Mi... @stvemillertime
17K Followers 1K Following threat intelligence @google writing & sharing on adversary tradecraft, malware, threat detection, AI-nexus intel and all things #yara
Justin Elze @HackingLZ
65K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Tyler McLellan @tylabs
3K Followers 588 Following Intrusion aficionado. @Google/@Mandiant Advanced Practices
Nick Carr @ItsReallyNick
38K Followers 3K Following Tech Director / Threat Intelligence at Microsoft. Previously, Director of Incident Response & Intel Research at Mandiant. Former Chief Technical Analyst at CISA
Karsten Hahn @struppigel
24K Followers 756 Following MalwareAnalysisForHedgehogs, Principal Malware Researcher at GDATA, he/him 🦔🌈🏳️⚧️
J. A. Guerrero-Saade @juanandres_gs
16K Followers 273 Following Executive Director for Intelligence and Research @SentinelOne | Distinguished Fellow, @SAISHopkins Alperovitch |LABScon|Cyber Paleontologist|4thParty Collector
Samir @SBousseaden
25K Followers 1K Following Detection Engineering | Elastic Security Mastodon: @[email protected]
💻 Sherrod DeGrippo... @sherrod_im
36K Followers 7K Following Weird security voyeur. Vibe merchant. CISO of your 🩷 Official USPS fan account. 🎉 Host of THE Microsoft Threat Intelligence Podcast. I like crime actors.
Jiří Vinopal @vinopaljiri
10K Followers 462 Following Threat Researcher at Check Point @_CPResearch_ #DFIR #Reversing - All opinions expressed here are mine only. https://t.co/iWvwWF1AnN
Matthew @embee_research
14K Followers 2K Following Security Researcher, Creating and Sharing Educational Content.
Silas Cutler (p1nk) @silascutler
13K Followers 2K Following You may know me from your logs Research @Censys Advisor @IST_org & #DEVSEC Built @Only_Scans, @mal_share, #KeyDrop
Gabby Roncone 🇺�... @gabby_roncone
5K Followers 1K Following hunting russian apt cyber ops @Mandiant @GoogleCloud. views expressed here are mine, not my employer’s. she/her.
Van @Wanna_VanTa
4K Followers 393 Following Research & Discovery Lead @Mandiant @googlecloud Specialties: researching adversary tradecraft, hardstuck masters TFT, and losing sneaker raffles.
x0rz @x0rz
96K Followers 420 Following Cybersecurity & Threat Intelligence. Knowledge is power, France is bacon 🥓
Malware Patrol @MalwarePatrol
9K Followers 2K Following Malware Patrol's cyber #threatintelligence solutions offer a comprehensive view of the external threat landscape. #infosec #cybersec #APT #malware #phishing
Adam Slowik @omnitheon
200 Followers 2K Following Offensive Security / Threathunter / Detection Engineer / @CDMDepaul and @NationalCCDC Alum
Elon Parody Account @CarmenRielo
409 Followers 3K Following
NorthBlaze @blaze74123
102 Followers 591 Following The joy of good games in high quality content and good discussion. Contact: [email protected]
State of Statecraft C... @what_is_sos
253 Followers 506 Following 🎖️State-Sponsored Threats Conference 🗓️ October 28, 2025 - Brussels, Belgium ⏰ CFP CLOSES SEPTEMBER 1. #what_is_sos
Fake @fake_fake0009
24 Followers 7K Following
James Allan @JamesAl74309018
11 Followers 441 Following
blupping @bluppingrnow
0 Followers 102 Following
Andreasitc @andreas_nds
89 Followers 1K Following Interested in infosec; Fan of tryhackme, hackthebox and pentesterlab. Always learning and trying to get better. Opinions are my own. he/him
Marius Benthin @marius_benthin
252 Followers 380 Following Senior Detection Engineer @NextronResearch @NextronSystems
MrXnight @mr_xnight
0 Followers 95 Following
John Bambenek @bambenek
32K Followers 1K Following Artisanal Malware Curator. Big data wrangler. Founder of threat intelligence company, Bambenek Labs.
Nsk @nsk_offl_
348 Followers 4K Following Director🎬& Lyricist of Kattravai Katrapin & Onedaykadhalan CyberSecurity Analyst,Travel freak, Ardent Suriya ❤ Jo,Maddy🤩,VJS😍 Fan,CR7MSD Fan🤟,Maduraikaran😎
இரா.கந்�... @mrkandasamy
11K Followers 8K Following #கொடுமணல் I #கொங்கு I #குமரிக்கல்பாளையம் I #Archaeology I Against #Perundurai_SIPCOT I Environmentalist I Farmer I Professor I ROBOT I AI I Drone I Dravidam
Zunir @Zunir353
8 Followers 415 Following
Dave Atkinson @dave_senseon
304 Followers 4K Following Founder @SenseonTech | Simplifying cybersecurity with AI | Leadership, risk reduction & efficiency | Big problems need bold solutions.
Nickey chou @NC55555555
13 Followers 131 Following
Jim Cook @elf32
3 Followers 299 Following
7up4 @7up47
0 Followers 143 Following
x86byte @x86byte
102 Followers 824 Following Low-Level Security Enthusiast ^ iOS & Windows Vulnerability Researcher & Exploit Developer 👾🥤
red @red0sx
1 Followers 375 Following
Will @will_baxter
70 Followers 796 Following
basy @basywho
15 Followers 491 Following Computer Aristocrat. Malware Analysis | Threat Intelligence
Space_Nomad🇪🇺�... @USACounselor
611 Followers 5K Following Cybersecurity, law, technology, physics, space, math, science, history, international relations, avid reader.
Darren Webb ☠🕷 @spyd3r
1K Followers 7K Following Computational demonologist. The following tweets are classified SECRET GOLD JULY BOOJUM. 101 824 5150
Heather Wang @n0tqm
1 Followers 106 Following
I//uS!0nS @c03rci0n
177 Followers 7K Following
Sosuke Uchiha @Sosuke_Uchiha_
0 Followers 2K Following Admiration is the emotion furthest away from comprehension.
LuckY @L_uckyY
199 Followers 2K Following Generally interested in computers (DFIR/pentesting/networking) and likes to play wargames/CTF. Deleting tweets regularly. Likes are my way of bookmarking.
S Free @misenus42
10 Followers 840 Following
Hussain Alqurashi @qurashi_hm
177 Followers 6K Following
MalwareUpdates @HashShaw50040
30 Followers 753 Following Hunting Malwares #Malware #Threathunting #DFIR
Takahiro @tkhir0_
13 Followers 367 Following
Florian Roth ⚡️ @cyb3rops
206K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Andrew Thompson @ImposeCost
39K Followers 1K Following Head of Research and Discovery (RAD) @Google Threat Intelligence Group via @Mandiant acquisition. Posts are attributable to me—not my employer. Former @USMC.
Thomas Roccia 🤘 @fr0gger_
31K Followers 2K Following AI Security x Threat Intel · Sr. Threat Researcher @Microsoft · Creator of #Unprotect & #NOVA · Malware Warlock · Python 🧡 · Prev @McAfee_Labs · Views mine 😈
DebugPrivilege @DebugPrivilege
40K Followers 2K Following Windows Nerd | Ex-MSFT | Microsoft MVP in Windows | Interested in Security, Debugging, and Windows Internals.
Steve YARA Synapse Mi... @stvemillertime
17K Followers 1K Following threat intelligence @google writing & sharing on adversary tradecraft, malware, threat detection, AI-nexus intel and all things #yara
Tyler McLellan @tylabs
3K Followers 588 Following Intrusion aficionado. @Google/@Mandiant Advanced Practices
Nick Carr @ItsReallyNick
38K Followers 3K Following Tech Director / Threat Intelligence at Microsoft. Previously, Director of Incident Response & Intel Research at Mandiant. Former Chief Technical Analyst at CISA
Karsten Hahn @struppigel
24K Followers 756 Following MalwareAnalysisForHedgehogs, Principal Malware Researcher at GDATA, he/him 🦔🌈🏳️⚧️
hasherezade @hasherezade
89K Followers 910 Following Programmer, #malware analyst. Author of #PEbear, #PEsieve, #TinyTracer. Private account. All opinions expressed here are mine only (not of my employer etc)
J. A. Guerrero-Saade @juanandres_gs
16K Followers 273 Following Executive Director for Intelligence and Research @SentinelOne | Distinguished Fellow, @SAISHopkins Alperovitch |LABScon|Cyber Paleontologist|4thParty Collector
Samir @SBousseaden
25K Followers 1K Following Detection Engineering | Elastic Security Mastodon: @[email protected]
Silas Cutler (p1nk) @silascutler
13K Followers 2K Following You may know me from your logs Research @Censys Advisor @IST_org & #DEVSEC Built @Only_Scans, @mal_share, #KeyDrop
Gabby Roncone 🇺�... @gabby_roncone
5K Followers 1K Following hunting russian apt cyber ops @Mandiant @GoogleCloud. views expressed here are mine, not my employer’s. she/her.
x0rz @x0rz
96K Followers 420 Following Cybersecurity & Threat Intelligence. Knowledge is power, France is bacon 🥓
French @notareverser
899 Followers 99 Following Malware reversing | Software development | Nonsensemonger https://t.co/TJt0Vb4e3I Cocktails at @NULLphoenix ⚜💻🍸.y.at
John Scott-Railton @jsrailton
162K Followers 2K Following Chasing digital badness. Sr. Researcher @citizenlab @UofT @munkschool. Fmr.Ed. @SecPlanner. Tweets mine. Other platforms @jsrailton too.
Nasreddine Benchercha... @nas_bench
11K Followers 1K Following Detection @Splunk & @cisco | previously @nextronsystems | @sigma_hq & @magicswordio maintainer | Eternal Learner
Jared Wilson @JWilsonSecurity
2K Followers 1K Following Mandiant Research and Discovery, Father, Husband, Trail Runner, Co-Founder CyberFriendsCircle
Pierre B. @Horgh_rce
1K Followers 947 Following French guy interested in reverse engineering / malware analysis / threat intel.
Botconf @Botconf
4K Followers 1K Following The Botnet and Malware Ecosystems Fighting Conference 12th ed - Workshops & Conference May 2025 in Angers, FR Follow us: https://t.co/wvWVbckCgy
JD Work @HostileSpectrum
9K Followers 1K Following Former intel, now academic @NDU_CIC, @TheKrulakCenter, @SIWPSColumbia @ColumbiaSIPA, @CyberStatecraft, @ElliottSchoolGW, @PAISWarwick. Apolitical, views=own
Binni Shah @binitamshah
141K Followers 165 Following Linux Evangelist, Malwares, Security enthusiast , Investor, Contrarian , Philanthropist , Reformist , Sigma female 🦋 https://t.co/WOvf41tMKV
Charles Price @linuxisp
337 Followers 446 Following Threat Analyst @ Microsoft Threat Intelligence Center #MSTIC | previously UK Gov and Zycomm/W3Z | IPv6 nerd | Ham M0DMF | Views my own.
Hex-Rays SA @HexRaysSA
8K Followers 132 Following We are a hi-tech company focusing on binary software analysis. Our main products are IDA Pro and the Hex-Rays Decompiler. Discourse: https://community.hex-rays
LaurieWired @lauriewired
97K Followers 294 Following researcher @google; serial complexity unpacker; https://t.co/Vl1seeNgYK ex @ msft & aerospace
Eric Lagadec✨🌍 @EricLagadec
183K Followers 868 Following Astrophysicien à l'Observatoire de la Côte d'Azur. Auteur de 'Le télescope spatial James Webb' et 'L'odyssée cosmique, une histoire intime des étoiles'
COUPSURE @COUPSURE
181K Followers 2K Following Open source and geospatial data | @GeoConfirmed member | Worked with @Cen4infoRes & @lemondefr | Opinions Are My Own |
Mark Parsons @markpars0ns
2K Followers 829 Following Threat Analyst @ Microsoft - mostly tweet about astrophotography and occasional some work. Tweets are my own
bk (Ben Koehl) @bkMSFT
3K Followers 772 Following Partner Director of Threat Intelligence at @Microsoft Threat Intelligence Center (MSTIC).
Ned Moran @moranned
2K Followers 403 Following Professor. Consultant. Analyst. Technologist. Security Geek. Privacy Advocate. Runner. Couch Potato.
thomasg @thomas_0x47
159 Followers 303 Following Threat Analyst @ Microsoft Threat Intelligence Center #MSTIC. Tweets and opinions my own
Ahmed Shosha @Ahmedfshosha
2K Followers 1K Following Founder. Ex-@Microsoft Threat Intelligence Center (MSTIC). Ex-@Mandiant. PhD in CS @ucddublin / @UCDCCI
John Lambert @JohnLaTwC
43K Followers 800 Following Corporate Vice President, Security Fellow, Microsoft Security Research, johnla(AT)https://t.co/3dGtq71Nby
Jean-Philippe SALLES @JPS_CTI
862 Followers 136 Following VP Product at @Filigran_HQ #OpenCTI. Ex @CertSG. Ex head of CTI team at @ANSSI_FR. Intel analysis is my drug. #OSINT enthousiast. [email protected]
Dominic Chell 👻 @domchell
18K Followers 540 Following Just your friendly neighbourhood red teamer @MDSecLabs | Creator of /r/redteamsec | https://t.co/3k3EBAZqGd | https://t.co/KwO2OwDOkl
Sixdub @sixdub
11K Followers 1K Following Microsoft Threat Intelligence | Student @ GMU Antonin Scalia Law School | USAFA '10 & USAF Veteran | Focus: Intelligence, Technology, Cyber Law, Leadership
Anton Cherepanov @cherepanov74
4K Followers 911 Following Malware researcher at ESET Slovakia. Opinions are my own.
Alyssa (she/her) @ramen0x3f
3K Followers 574 Following @ramen0x3f.bsky.social Senior Threat Researcher and Pun Aficionado @Microsoft Former research+red team+hand drawn memes @Mandiant
billy leonard @billyleonard
5K Followers 656 Following pogue life. @Google TAG, Global Head of Analysis of State Sponsored Hacking And Threats.
Requiem @Requiem_fr
3K Followers 638 Following Sr #DFIR guy at @Mandiant/@Google. Hardware lover. @CertSG alumn. Views are my own. 🦋 https://t.co/5Cja9ju0jd
1aN0rmus @TekDefense
4K Followers 1K Following CTO at @permisosecurity Alum: @Mandiant, https://t.co/kqlvYwe86k, USMC
bubbles @bwithnell
744 Followers 561 Following
Evan Reese @reesespcres
534 Followers 251 Following
Joe Hannon @JoeHannon52
519 Followers 1K Following Security researcher @ MSTIC, Microsoft https://t.co/8IO8nzNnAQ
Ben Read @BenSRead
4K Followers 574 Following Director of Cyber-Espionage Analysis: @Mandiant | Adjunct Prof: @GeorgetownCSS | Views my own.
Ramin Nafisi @MalwareRE
5K Followers 2K Following Director of MSTIC Malware Intelligence, Research, and Analysis (MSTIC-MIRAGE) team.
⚛️ Marcin Siedlar... @siedlmar
2K Followers 1K Following Technical attribution of cyber threats | Frontline Intrusion Intelligence 🦅 @Mandiant
BarryV @BarryV
988 Followers 656 Following Show me, don't tell me -- Opinions are my own and do not represent those of my employerTrends for United States
You might like
