Lays @_L4ys
Co-Founder @TrapaSecurity & @pwnabletw/ MSRC Top 100 2019&2020 / Mobile & Windows Security blog.l4ys.tw 台灣 Joined January 2015-
Tweets2K
-
Followers4K
-
Following1K
-
Likes11K
We built local backdoors for @signalapp, @1Password, @SlackHQ, and @googlechrome using a “data” file their integrity checks ignored.
For those missing the talk, Blog: jhftss.github.io/Exploiting-the… Slides: github.com/jhftss/jhftss.…
For those missing the talk, Blog: jhftss.github.io/Exploiting-the… Slides: github.com/jhftss/jhftss.…
iOS offensive researchers really have a double life
I've been waiting for this a long time: the latest version of WinDbg is now shipping with the console mode debuggers (cdb, kd, ntsd) as well🥳 If you start WinDbg a bazillion times a day, starting cdb instead will save you a lot of frustration / time.
🔥 So, at DEF CON there was a talk about deobfuscation: VMDragonSlayer by @Van1sh_BSidesIT. The author released the code and there's clearly huge amounts of AI slop.🤖 Now, WE WENT TO THE TALK and spoke with the speaker after the talk. 🧵
🔥 So, at DEF CON there was a talk about deobfuscation: VMDragonSlayer by @Van1sh_BSidesIT. The author released the code and there's clearly huge amounts of AI slop.🤖 Now, WE WENT TO THE TALK and spoke with the speaker after the talk. 🧵
How did this AI slop get a talk at the main track @ DEFCON????????? github.com/poppopjmp/VMDr…
Made a pwn challenge for this year’s HITCON CTF, which required participants to bypass PAC, BTI, and deal with relative vtables. Here’s the write-up: bruce30262.github.io/hitcon-ctf-202… Check it out if you're interested🙂
Truth is, most of my CTF teammates just went straight to Google and nobody gives a fuck Just do whatever you want
Truth is, most of my CTF teammates just went straight to Google and nobody gives a fuck Just do whatever you want
They’re not a waste of time, but they can become one if you stay stuck at that stage instead of moving on to the next level to achieve your goals. CTFs gamify, minimize and mimic the real-world scenarios (though sometimes it failed to do that). There are many different career…
They’re not a waste of time, but they can become one if you stay stuck at that stage instead of moving on to the next level to achieve your goals. CTFs gamify, minimize and mimic the real-world scenarios (though sometimes it failed to do that). There are many different career…
At long last - Phrack 72 has been released online for your reading pleasure! Check it out: phrack.org
finally got around to writing up my windows exploit from pwn2own vancouver 2024! (plus some notes about using it on xbox) exploits.forsale/pwn2own-2024/
What an amazing week we’ve had presenting our latest research at Black Hat USA and DEFCON 33! We shared our security research on BitLocker and WinRE - highlighting new vulnerabilities, exploits and fixes! The slides are now live at: i.blackhat.com/BH-USA-25/Pres…
really love this kind of bug, simple and elegant issues.chromium.org/issues/4125787…
blackhat.com/us-25/briefing… Our(@KeyZ3r0 @edwardzpeng @XiaoWei___ and me ) presentation is available now, hope you like it ;)
The whitepaper is live! Learn how to win the HTTP desync endgame... and why HTTP/1.1 needs to die: http1mustdie.com
🤦 success.trendmicro.com/en-US/solution… ITW CRITICAL SECURITY BULLETIN: Trend Micro Apex One (On-Premise) Management Console Command Injection RCE
Basically 95% of "hacks" nowadays are either just social engineering or someone left an S3 bucket public. Whitehack hacking / going after bug bounties is a slave-tier exercise and honestly a pretty embarrassing pursuit. CVE filing has become a joke. The actual security field /…
We dissect a DFG compiler bug we discovered in Safari/WebKit. This post covers root cause, impact, and technical analysis: blog.exodusintel.com/2025/08/04/oop… #WebKit #VulnerabilityResearch #ExploitDev #Safari #CyberSecurity #ExodusIntel
cts🌸 @gf_256
61K Followers 820 Following Co-founder and hacker @zellic_io & @pb_ctf | https://t.co/nlNai6iiMP | 24 Intern @egirl_capital slow to reply to DMs
chompie @chompie1337
83K Followers 1K Following hacker, weird machine mechanic, X-Force Offensive Research (XOR)
Alex Plaskett @alexjplaskett
12K Followers 571 Following Security Researcher | Pwn2Own 2018, 2021, 2022, 2024 | Posts about 0day, OS, mobile and embedded security.
crazyman_army @CrazymanArmy
6K Followers 3K Following CTFer / APT hunter / RedTeam / BlueTeam the member of @r3kapig the leader of @ShadowChasing1 CVE-2022-30190 find job opportunities opinions are own not group
NiNi @terrynini38514
2K Followers 583 Following Security Researcher at @d3vc0r3 / Pwn2Own Master of Pwn (Toronto 2022) / CTFer @balsnctf
kmkz @kmkz_security
19K Followers 2K Following Offensive Security, pom-pom girl... Who cares ?? Bourbon Offensive Security Services | BOSS
kylebot @ky1ebot
6K Followers 319 Following CTF player @Shellphish | PhD Student @ASU | @angrdothorse dev | Author of how2heap | Vulnerability Research Hobbyist | @[email protected]
Faith 🇧🇩🇦�... @farazsth98
4K Followers 318 Following Lead Cosmos Security Engineer @zellic_io, CTFer @SuperGuesser, Prev: Android Vulnerability Research @dfsec_com
b33f | 🇺🇦✊ @FuzzySec
33K Followers 1K Following 意志 / Antiquarian @ IBM X-Force / t501 / Ex-TORE ⚔️🦅 / I rewrite pointers and read memory / AI Psychoanalyst / Teaching @CalypsoLabs
Bien 🇻🇳 @bienpnn
4K Followers 476 Following P (Million Live!) hackerman at @qriousec & @seasecresponse & @ProjectSEKAIctf Tiếng Việt / English / 日本語 范阮玉邊
hasherezade @hasherezade
89K Followers 910 Following Programmer, #malware analyst. Author of #PEbear, #PEsieve, #TinyTracer. Private account. All opinions expressed here are mine only (not of my employer etc)
Andy Nguyen @theflow0
61K Followers 446 Following The opinions stated here are my own, not those of my company.
splitline 👁️🐈... @_splitline_
1K Followers 569 Following @D3VC0R3 / CTF with ${cYsTiCk} / 友民党 / Taigi, zh-TW, en-US, es-PY / 🐈⬛
Tuan Anh Nguyen⚡️... @haxor31337
15K Followers 2K Following 29 y/o Bug Bounty Hunter and Red Teamer at Viettel Cyber Security. Brand Ambassador @Hacker0x01 - Researcher Spotlight @Bugcrowd
Sanjay Vardhan @0xspektre
141 Followers 446 Following a.k.a spektre | CTF Player | Ex-Captain @teambi0s | messing with js engines
hypr @hyprdude
2K Followers 772 Following vuln researcher+exploit dev | pwn2own '24 winner | 0x4141414141 enthusiast | bordeaux enjoyer | friend of all cats | him/he
CeeBam @cee_bam4141
0 Followers 91 Following
nanhang @nanhang_950
0 Followers 39 Following
https://mastodon.soci... @antonvblanco
208 Followers 568 Following
0xHMZTN @hamzazitouni0x
0 Followers 126 Following
Nate Kufrsteader @WACcraftNetwork
3 Followers 4 Following
PhilNelson @PNelson0101
3 Followers 73 Following
Prunu @Prunu603390
12 Followers 353 Following
kraaij @_sbbz
25 Followers 801 Following
cr0@Defensive-Securit... @cr0nym
3K Followers 2K Following Focus on Linux/Kubernetes Attack/Detection/Forensics/Incident Response/Threat Hunting/Active Defense. Learning hard every single day.
m0z @LooseSecurity
7K Followers 192 Following The greatest trick the devil ever pulled, was convincing the world that cyber security existed.
Walter @Walter79052425
21 Followers 308 Following
. @NotSoFastRoach
5 Followers 2K Following
Dark@Joker:~$ @ExploitNest
92 Followers 2K Following CRTA | CAP | OSCP (Aspirant) - Pentration Tester & Bug Hunter - Red Teamer 🤡
Michael John @MichaelJohn7785
68 Followers 2K Following
ok @tweefx
14 Followers 366 Following
Golay @Golay_1
30 Followers 1K Following
James Curbow @your_b1gbroth3r
118 Followers 723 Following I'd take a header off the Bridge of Nations just to brush arms with ya
99% safe AI, @shutdowntheai
113 Followers 5K Following
downbtn @downbtn_
112 Followers 3K Following en_US/kr_KR | aspiring mad scientist | ⚠️ i rt a lot of anime girls
legolas_82 @0xleg0las
344 Followers 4K Following
Sushobhit Goyal @sushobhitxd
114 Followers 327 Following 19 . Mathematics & Computing NITJ'28 . Cybersecurity . 🏸 . Fuck their opinion, Win
kroot @nootkroot
219 Followers 1K Following US Student | CTF @smiley_ctf @ARESxCTF @malta_ctf | pwn | CCNA, Sec+
kimbo4 @Be4orn
111 Followers 4K Following
Mohammed al-Ramadany @al_ramadan343
1 Followers 276 Following
Bekter @the_commentarii
19 Followers 224 Following
chilin.h (麒麟) @qilin102223
26 Followers 113 Following CyberSecurity / CTF Player / Rhythm Game ICEDTEA Manager / B33F Member 看別人多成功,自己就多失敗。
Anderson Nascimento @andersonc0d3
3K Followers 3K Following Founder & Security Researcher @allelesecurity Mastodon: @[email protected] Bluesky: @andersonc0d3.bsky.social
Bumblebee @Lolippop23
183 Followers 2K Following Cybersecurity & AI enthusiast | Offensive Security Learner | Building, breaking & understanding systems | Curious mind
Here we go @AvimanyuRoy3
650 Followers 3K Following
Moritz Sanft @stdoutput
658 Followers 623 Following student, security software engineer, ctf @fluxfingers @[email protected]
cts🌸 @gf_256
61K Followers 820 Following Co-founder and hacker @zellic_io & @pb_ctf | https://t.co/nlNai6iiMP | 24 Intern @egirl_capital slow to reply to DMs
chompie @chompie1337
83K Followers 1K Following hacker, weird machine mechanic, X-Force Offensive Research (XOR)
Trend Zero Day Initia... @thezdi
83K Followers 16 Following Trend Zero Day Initiative™ (ZDI) is a program designed to reward security researchers for responsibly disclosing vulnerabilities.
Project Zero Bugs @ProjectZeroBugs
35K Followers 0 Following A bot that posts the latest blog posts and disclosures from Google's Project Zero
starlabs @starlabs_sg
9K Followers 20 Following A Singapore company that discovers vulnerabilities to help customers mitigate the risks of cyber attacks. Organisers of @offbyoneconf
Yarden Shafir @yarden_shafir
24K Followers 309 Following A circus artist with a visual studio license
h0mbre @h0mbre_
15K Followers 641 Following # Exploit Reliability Engineer # Developing a full-system snapshot fuzzer: https://t.co/mfVXhwoGYD # Avi: https://t.co/3fsQfVprCf
LiveOverflow 🔴 @LiveOverflow
155K Followers 1K Following wannabe hacker... he/him 🌱 grow your hacking skills @hextreeio
Alex Plaskett @alexjplaskett
12K Followers 571 Following Security Researcher | Pwn2Own 2018, 2021, 2022, 2024 | Posts about 0day, OS, mobile and embedded security.
NiNi @terrynini38514
2K Followers 583 Following Security Researcher at @d3vc0r3 / Pwn2Own Master of Pwn (Toronto 2022) / CTFer @balsnctf
[email protected]... @0xdea
14K Followers 19 Following When cryptography is outlawed, bayl bhgynjf jvyy unir cevinpl.
Chromium Disclosed Se... @BugsChromium
8K Followers 0 Following Tweets publicly disclosed bugs in Chromium. Not an official Google product. Run by @SecurityMB. Mastodon: @[email protected]
Samuel Groß @5aelo
24K Followers 501 Following Working on Project Zero, Big Sleep, and V8 Security. Personal account. Also @[email protected] and https://t.co/aVitnPjBie
Zhuowei Zhang @zhuowei
33K Followers 187 Following link in bio ⬛⬛⬛⬛⬛🟩🟩🟩🟩🟩🟩 ⬛⬛⬛⬛🟩🟩🟩🟩🟩🟩🟩🟩 ⬛⬛🟧⬛🟩🟫🟫🟫🟫🟫🟫🟩 ⬛⬛🟧⬛🟫🟫🟫🟫🟫🟫🟫🟫 ⬛⬛🟧🟧🟫🟧🟩🟧🟧🟩🟧🟫🟧 ⬛⬛🟧🟧🟫🟧🟫🟧🟧🟫🟧🟫🟧 ⬛⬛⬛🟧🟧🟧🟧🟧🟧🟧🟧🟧🟧 ⬛⬛⬛🟩🟩🟧🟧🟫🟫🟧🟧🟩🟩 ⬛🟫🟫🟫🟫🟫🟧🟧🟧🟧🟩🟩🟫 🟫🟫🟧🟫🟫🟫🟫🟩🟩🟩🟩🟩🟧 🟫🟧🟧🟧🟫🟫🟧🟫🟫🟩🟩🟧🟧
hypr @hyprdude
2K Followers 772 Following vuln researcher+exploit dev | pwn2own '24 winner | 0x4141414141 enthusiast | bordeaux enjoyer | friend of all cats | him/he
Alexandre Borges @ale_sp_brazil
28K Followers 147 Following Vulnerability Researcher and Exploit Developer.
HackenProof @HackenProof
36K Followers 2K Following Expert web3 bug bounty and crowdsourced audit platform with 220 programs and over 20 million in bounty DS: https://t.co/41lshly4dI YT: https://t.co/cLUr6ODztP
rev.ng @_revng
5K Followers 4 Following Building the next generation decompiler. Binary analysis is a dish best served static.
DawnSecurityLab @dawnseclab
1K Followers 6 Following Dawn Security Lab focusing on system & iOT security https://t.co/H2vUNhaVd0
LO0 @loopPoly
125 Followers 265 Following Research in cryptography |the developer of SageMath Enhanced for VS Code |Pwn4Sage & Hello-CTF contributor
Harsh Jaiswal @rootxharsh
22K Followers 1K Following Building @hacktronai | researching at @httpvoid0x2f | auditing at @cure53berlin | prev @zomato @vimeo @pdiscoveryio
Renwa @RenwaX23
8K Followers 59 Following
お文具 @imoko_iimo
297K Followers 231 Following お文具といっしょのお文具です。文房具ではありません。ひとりでイラストと動画を制作しています。グッズ公式 ▶︎ @obungupr /お仕事のご依頼(個人のご依頼は受け付けておりません)✉️▶︎ [email protected] /転載・加工・商用利用はお控えください
Jord @0xLegacyy
2K Followers 362 Following Lover of frogs, specialising in defence evasion, CTF addict
Josh Stroschein | The... @jstrosch
12K Followers 1K Following Reverse engineer at FLARE/@Google | @pluralsight author | 😱 1M+ views on YT | 🎙️ Host of Behind the Binary podcast 👇
Wil Gibbs @cl4sm
523 Followers 241 Following @ASU Sefcom PhD Student | @Shellphish Captain Emeritus | AIxCC Shellphish Team Lead | pwn and rev is where it’s at | 日本語🤏
Kiprey @Kipreyyy
959 Followers 57 Following Web3 Sec researcher & Hacking for fun. DM in discord @kipreyyy. Blackhat USA 23&24 Asia 25 Speaker / 2023-2024 Top Chrome VRP Researcher / Zer0con 24 Speaker.
Jonathan Bar Or (JBO)... @yo_yo_yo_jbo
4K Followers 1K Following Hacker, security research architect for @Microsoft Defender. Member of @thegooniesctf. Linux, Windows, Android, MacOS, iOS, ChromeOS, bare metal. 日本語オーケーです👌
エリシオ @hellisio_Digi
112 Followers 129 Following 旧デジモンカード集めとヘブバン、ポケポケハマってます! 持ってないカードお持ちでしたら是非買いたいです笑 ※1部プロモーションカード等が購入見通しがないです。 jr・kq・バトスピのブルーカード等探してます!
Team Atlanta @TeamAtlanta24
672 Followers 26 Following 🔥AIxCC Winner Team | Georgia Tech, Samsung Research, KAIST, POSTECH | 🚀Building next-gen AI-driven bug finding & fixing systems | CRS Atlantis 🌊
The Dustin Childs @dustin_childs
2K Followers 352 Following Parked account. I usually post stuff over where the sky is blue.
Nir Ohfeld @nirohfeld
4K Followers 841 Following Head of Vulnerability Research @wiz_io | @Microsoft MVR (2021-2025) | Pwn2Own 2025 | @Forbes 30 Under 30
Ken Sykes @KensyAtMS
193 Followers 27 Following Microsoft, Windows 3.0 developer, Time Travel developer, Husband, Father, Grandfather, Christian
よんよん【公式... @digimomyonyon
5K Followers 914 Following デジモン好きな人はフォローお願いします。デジカプレイヤー(アジア大会16位)お絵描き垢 @yonyondigimon デジカ垢 @yonyondigica タグ #よんアート #1日1デジタルモンスター #目指せ最強進化 #よんデジカアート 猿会🐵
Gergely Kalman @gergely_kalman
2K Followers 377 Following bug bounty hunter I guess @[email protected] | https://t.co/zdeLP8lSEy
Ver @Ver0759
384 Followers 130 Following Windows Security / 2024 MSRC MVR #11 / CTFer @天枢Dubhe / Tweets are my own.
Khoa Dinh @_l0gg
2K Followers 119 Following
𝙁 𝙀 𝙇 𝙄 �... @felixm_pw
1K Followers 485 Following Senior Researcher @Sophos | https://t.co/rAj5k8LMif
Jason @mytechceoo
23K Followers 3K Following Building Barstool Sports for Tech | Investing & Creating Viral Content for the Fastest Growing Tech Startups
Haidar @haider_kabibo
374 Followers 72 Following Wine tester at Kaspersky :) Personal account. Does not reflect my employer
Hoàng Hải Long �... @seadragnol
327 Followers 212 Following Security researcher at @qriousec. Focus on Linux kernel. Tiếng Việt / English / 日本語
Shreyas Penkar @streypaws
116 Followers 196 Following Android Vulnerability Researcher (Kernel/Chrome)
Insiderwave @insiderwave_
33K Followers 1 Following The only app that shows you REAL data on politicians’ portfolios. Follow and turn on notifications.
sapir federovsky @sapirxfed
5K Followers 183 Following Doing things @wiz_io And then doing more things at home | failed research blog: https://t.co/j2HT1Tpscs
Winnona 💾 @__winn
4K Followers 2K Following @DistrictCon Founder. Harvard-Georgetown MPP/JD, @CyberStatecraft / @BelferCenter researcher, ex-Google RE / threat research. https://t.co/MJHKl7Myic 👩🏻💻
Parker Chang @parkerchang11
1K Followers 562 Following 🇯🇵 喜歡 JPop,一生推鈴木愛理、也推 milet、綠黃色社會 / ✍️ 喜歡文字與分享,目前佛系更新電子報 / 📚 熱愛故事,小說最推布蘭德山德森跟伊坂幸太朗,動&漫最推膽大黨 / 👨💻 前軟體工程師,🇦🇺 澳洲打工度假中 / 🙏 留言都會看,但可能不會很快回覆 / 💭 常常 emo
Pew @TheGrandPew
3K Followers 625 Following Defying Logic. BlackHat US 2022 & Defcon 30 Speaker. Pwn2own Winner 2024, 2025.
Christian Blichmann �... @AdmVonSchneider
2K Followers 598 Following Everything is always broken. Googler by day. #BinDiff maintainer. My tweets, my opinion. During my lifetime, CO2 increased by 67.84ppm (so far).
Yechan Bae @yechan_bae
815 Followers 91 Following Building https://t.co/psAQSrmHHM at @theori_io. All opinions are my own.
ナガノ @ngntrtr
1.4M Followers 6 Following LINE公式アカウント【https://t.co/Y98lJVsG8D】グッズ公式【@ngngoods_kouhou】お仕事のご依頼はこちらhttps://t.co/WUOoEgWun1
deepsec.cc @deepsec_cc
254 Followers 0 Following
RE//verse @REverseConf
3K Followers 26 Following A conference for all things in the reverse engineering universe... https://t.co/X54VHq2eD4
Seokha Lee @wh1ant
925 Followers 394 Following
InfoGuard Labs @InfoGuard_Labs
91 Followers 1 Following Insights from the frontlines of offensive security and incident response @ https://t.co/uMKNWv9KUy
zh1x1an1221 @zh1x1an1221
923 Followers 298 Following Bug bounty hunter | 2024 Top 20 Chrome VRP Researcher|Web3 smart contract auditor | prev Ant Security Tianqiong Light-Year LabTrends for United States
You might like
