-
Tweets283
-
Followers567
-
Following793
-
Likes581
New research from our #ElasticSecurityLabs team: we dive into how infostealers are leveraging a stolen Shellter evasion tool to deploy data-stealing malware. Learn more & get our unpacker: go.es.io/4ldCM72 #malware #rhadamanthys #ghostpulse
Did a write-up on OAuth phishing (offense and defense). It's based on phishing campaign's reported by @Volexity earlier this year. - What are OAuth phishing links; what is the workflows behind them - How to emulate (examples) and use ROADtools for further compromise -…
🔎 We're Hiring: Senior Security Analyst We're looking for a full-time Senior Security Analyst with a passion for dissecting intrusions and translating technical findings into actionable insights. Check out the full job description and apply here 👉 forms.office.com/r/87y8wAp3gA
If you've taken my Investigation Theory course, then you're familiar with my Human-Centered Investigation Playbooks. I'm excited to share that I'm releasing that standard publicly today. You can read about it here: chrissanders.org/2025/06/human-…
Well, it happened. The company I worked at for 6 years will be closing and thus I got laid off. This doesn't affect @octopwn operations in any negative ways, but I'm actively looking for a new day job. If someone has something please DM me. Retweets are appreciated.
some cool #Elastic detections added by @_w0rk3r to identify potential kerberos SPN Spoofing via the CredMarshalTargetInfo primitive (abused in CVE-2025-33073 and also in other Kerberos reflection attacks): synacktiv.com/publications/n… github.com/elastic/detect… github.com/elastic/detect…
Dive deep into malware detection with the latest article by John Uhlmann: "Call Stacks: No More Free Passes for Malware." Discover how call stacks provide vital insights into malware behavior. Read more: go.es.io/4kDWjgr
detection added for a successful execution -> github.com/elastic/detect…
detection added for a successful execution -> github.com/elastic/detect… https://t.co/6S5tXfBH7e
In April, #ElasticSecurityLabs published 62 new rules! Take a look at the overview and learn how we manage these rulesets: go.es.io/3EX0NiN #detectionengineering #SIEM #EDR
Zero Trust and EDR Tier list rated by nation-state funded AI catgirls. ranked by amount of snake oil in product
Introducing 🚀Eventlog Compendium 🚀 A new Streamlit app, that aims to be the go-to resource for understanding and playing with Windows Event Logs. Explore it 👉 eventlog-compendium.streamlit.app Includes the following utilities and docs ⚙️ Build your own Advanced Audit Policy based on…
Coming soon to The Hacker Recipes 👐 s/o to @junr0n for the initial idea and contribution! 📢 The Hacker Recipes is 100% free et open-source. You too, support its development thehacker.recipes/contributing/d…
So you wanna become a contractor? detect.fyi/becoming-a-det…
📩 Exchange Exploitation - Part 1 (Without Credentials) Explore Exchange exploitation in Game of Active Directory and learn about attacks without valid credentials. mayfly277.github.io/posts/Exchange…
with #Elastic process events enriched with call stack info we can detect processes started via Windows+Run and with more than 1 argument (pretty rare especially when coupled with lolbins/cmd/ps)
with #Elastic process events enriched with call stack info we can detect processes started via Windows+Run and with more than 1 argument (pretty rare especially when coupled with lolbins/cmd/ps) https://t.co/x49DIcWTM6
There are several different #keyloggers, but today @AsuNa_jp dives into the hotkey-based ones! Recapping her recent @nullcon talk, this article on #ElasticSecurityLabs explores how keyloggers can be abused and the tool she created to #detect them: go.es.io/4ir4aga
🎬 The Grand Finale: Linux Persistence Mechanisms 🔥🐧 Did you know about (all of) these?👀 Techniques covered: 🔹 GRUB Bootloader 🔹 Initramfs 🔹 D-Bus 🔹 PolicyKit 🔹 NetworkManager Big thanks to everyone who followed and shared my series! 📖Blog: elastic.co/security-labs/…
If you love INTERNALS this youtube channel is GOLD youtube.com/watch?v=H4SDPL…
☁️ If your interested in a deeper dive on AWS S3 ransom via server-side encryption with customer-provided keys (SSE-C), then below is a recent blog I wrote. The blog explores not only how SSE-C works, but how to emulate adversary behavior (for threat detection engineers) with…
Very interesting find by the team @proofpoint detailing payload delivery and initial access techniques via web inject campaigns that masquerade as fake browser updates targeting #macOS systems with a #stealer Proofpoint has dubbed #FrigidStealer. @elastic ML Mach-O model detects…
Samir @SBousseaden
25K Followers 1K Following Detection Engineering | Elastic Security Mastodon: @[email protected]
Justin Elze @HackingLZ
65K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Nasreddine Benchercha... @nas_bench
11K Followers 1K Following Detection @Splunk & @cisco | previously @nextronsystems | @sigma_hq & @magicswordio maintainer | Eternal Learner
Andrew Thompson @ImposeCost
39K Followers 1K Following Head of Research and Discovery (RAD) @Google Threat Intelligence Group via @Mandiant acquisition. Posts are attributable to me—not my employer. Former @USMC.
Clandestine @akaclandestine
49K Followers 5K Following | Security | Osint | Threat Research | Opsec | Threat Intelligence | Infosec | Threat Hunting | Humint |
Daniel Stepanic @DanielStepanic
1K Followers 652 Following Malwarez at @elasticseclabs | Macrodata Refinement
Bobby Filar @filar
2K Followers 973 Following dad. security machine learning @sublime_sec fmr:@elastic, @endgameinc Wizards/Timberwolves/LFC
J⩜⃝mie Williams @jamieantisocial
10K Followers 7K Following threats && stuff || #UNC1799 forever 🤘|| @DistrictHeather ♥️ + 🍷 **𝚅𝚒𝚎𝚠𝚜 𝚎𝚡𝚙𝚛𝚎𝚜𝚜𝚎𝚍 𝚊𝚛𝚎 𝚖𝚈 օ𝚠𝚗**
Anton @Antonlovesdnb
5K Followers 3K Following Blue Team stuff | Trying to be a decent human being | @munkschool Grad | Hunt & Response @HuntressLabs
James @jamesspi
1K Followers 538 Following Helping folk do security things with @elastic. Views are my own. Creator of https://t.co/FY2IQ2eAhe, https://t.co/aDuzYgUuYw, https://t.co/qz9J8Kb0v3 and https://t.co/eiiVHgqb5G
Terrance DeJesus @_xDeJesus
789 Followers 1K Following ☁️ Cloud & Identity Security | Hunting threats & safeguarding the cloud | #cybersecurity #threathunting #cloudsecurity | {opinions are my own}
Gabriel Landau @GabrielLandau
4K Followers 707 Following Tech Lead @ Elastic Security. Thoughts are my own. Also @[email protected] & @gabriellandau.bsky.social
Devon Kerr @_devonkerr_
8K Followers 722 Following Director of Threat Research and @ElasticSecLabs team lead; custodian of secret histories. Posts are my own.
theonexc @theonexc1
0 Followers 3K Following
canihazlogs @canihazlogs
2 Followers 241 Following
Salman @szht2kt
4 Followers 160 Following
Norbert @NB1r0
57 Followers 3K Following
Qasim Qlf @qasimqlf
319 Followers 2K Following Detection Engineer | Ex-Software Engineer @ NETSOL | | Tech Enthusiast 💻 | Contributer @sigma_hq💡 | Proud Muslim and Pakistani 🇵🇰
Nietzsche Virus Lab @NietzscheLab
154 Followers 473 Following macOS / linux malware research and red teaming stuff
Eric Maiwald @APT_Maiwald
119 Followers 759 Following computer stuff. mostly detecting bad computer stuff.
Hayden @KilobyteTheDust
206 Followers 379 Following SOC SecOps Lead, DFIR consultant, and engineer @BHinfoSecurity. Instructor @Antisy_Training. Obsessed with 🏎️ & 🏊♂️🚴♂️🏃♂️.
Shane @NayaniShayan
1K Followers 3K Following Passion for Cyber Security | Penetration Tester | Love for Philosophy | Addicted to learning | muslim
DINOSAUR TOYS @dinosaur_toys
5 Followers 79 Following 🦕 Cute, colorful, and full of roar-some fun! Our cartoon dinosaur toys bring big smiles and even bigger adventures. Perfect for little hands and wild
n0zk @n0zk__
168 Followers 2K Following Purple teamer | Privacy fighter | A lazy CTF player | I build, make and break weird stuff
Man Watch @p3rtartar
1 Followers 109 Following
Ahmed Mkadem @cyberamkah
9 Followers 268 Following
WaaWaa @frodosobon
488 Followers 479 Following Security Research Manager at SentinelOne || https://t.co/TD2cZi4g3X || Opinions are on my own. Soy un mono de fuego, soy imbécil y agresivo
Kristoffer Arfvidson @krarf
196 Followers 1K Following Cloud Security, Cyber- and Information- Security Architect & Solutions Architect, .Net developer and an interest to learn about almost everything :)
ZwProtect @ecdsa_ncrypt
18 Followers 569 Following
Anderson Vieira @andersonv3
247 Followers 1K Following Cyber Security | Linux | CTF player | 318br Team
Grumo @grumo1337
222 Followers 2K Following L'ombre qui fait la lumière dans mon esprit fait la nuit dans le leur. Cybersecurity, Economics & Trading.
Juliano Ramalho da Si... @JulianoRamalh11
4 Followers 569 Following
Alex @alextoystory
0 Followers 589 Following From a hopeless crush on a captivating stranger, a bitter curse emerged, transforming their once innocent love into a twisted obsession. To MsPsychology1
Leandro Fróes @leandrofr0es
427 Followers 977 Following Reverse Engineer & Developer | @MenteBinaria | Opinions are my own.
☠️ Brandon @__mez0__
3K Followers 432 Following 👽 UNC1194 🔥 Targeted Ops @TrustedSec 🤖 Dev @preemptdev "purveyors of the prettiest log files"
ice @ice98079542
94 Followers 3K Following
Quang Vo @mr_r3bot
801 Followers 805 Following OutputDebugString(L"Till no more bug") . Tweets are my own
Hunter @threatHNTR
329 Followers 1K Following “Well the devil can scrap, but the Lord has won” | DE/TH | Roll Tide | Braves
Bheema @Bheema_0x01
20 Followers 732 Following
1 @8_billions
71 Followers 782 Following
_____ @H_ng_an
187 Followers 2K Following
Deanos @deanbar12
1K Followers 994 Following COO & Co-Founder @HackersEye13 Shell is only the beginning.... (Tweets are my own),
Manoj @dmanoj1729
3 Followers 89 Following
Brad Proctor @bradproctor
980 Followers 2K Following Director of Operations at MAD Security | Husband, Father of Five, Captain Obvious Clone
Vijay Bolina @vijaybolina
4K Followers 6K Following Hacker. Engineer. Leader. Dad. Former @GoogleDeepMind, @Mandiant, @BoozAllen, USG. Tweets my own.
Reagan Short @ReaganShort
284 Followers 656 Following Cybersecurity Operations, Data Science, Psychology, Philosophy, and a bunch of other random stuff.
qfrtt @qfrtt1
342 Followers 182 Following independent security researcher proud member of @the_secret_club
serendipitousP aka Pa... @serendipitousP
6K Followers 8K Following all+ | @hopeconf +speak&org-er https://t.co/I9YRAbop68 | she/her | #CPP ~1999 | Quae nocent saepe doc | pax^&
Krishnakumar @krishnas7777
27 Followers 94 Following
Dr. Ch33r10 @Ch33r10
12K Followers 7K Following #CTI • #PurpleTeam • Latina 🇲🇽 • Opinions are my own
zoharbuber @zoharbuber
35 Followers 2K Following
Russ Crozier @RussCrozier
63 Followers 122 Following Security and Code Evangelist. Opinions are my own. Feel free to say hi or engage on interesting topics - Red Team, Inf and AppSec, C++, Rust, Python, JS.
cr0@Defensive-Securit... @cr0nym
3K Followers 2K Following Focus on Linux/Kubernetes Attack/Detection/Forensics/Incident Response/Threat Hunting/Active Defense. Learning hard every single day.
s @dfgghnfds
1 Followers 44 Following
Florian Roth ⚡️ @cyb3rops
206K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
vx-underground @vxunderground
368K Followers 290 Following The largest collection of malware source code, samples, and papers on the internet. Password: infected
Samir @SBousseaden
25K Followers 1K Following Detection Engineering | Elastic Security Mastodon: @[email protected]
Justin Elze @HackingLZ
65K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Grzegorz Tworek @0gtweet
36K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
Nasreddine Benchercha... @nas_bench
11K Followers 1K Following Detection @Splunk & @cisco | previously @nextronsystems | @sigma_hq & @magicswordio maintainer | Eternal Learner
Elastic @elastic
64K Followers 178 Following Elastic is The Search AI Company. We bring together the precision of search and the intelligence of AI to accelerate results that matter.
DebugPrivilege @DebugPrivilege
40K Followers 2K Following Windows Nerd | Ex-MSFT | Microsoft MVP in Windows | Interested in Security, Debugging, and Windows Internals.
Dave Kennedy @HackingDave
223K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Pod. God + Family/Hacker/CSO/USMC/Intel/Fitness. Make the world a better place.
Ali Hadi | B!n@ry @binaryz0ne
33K Followers 565 Following DFIR and Adversary Simulation | DFIR @ ProtonMail
Andrew Thompson @ImposeCost
39K Followers 1K Following Head of Research and Discovery (RAD) @Google Threat Intelligence Group via @Mandiant acquisition. Posts are attributable to me—not my employer. Former @USMC.
hasherezade @hasherezade
89K Followers 910 Following Programmer, #malware analyst. Author of #PEbear, #PEsieve, #TinyTracer. Private account. All opinions expressed here are mine only (not of my employer etc)
Clandestine @akaclandestine
49K Followers 5K Following | Security | Osint | Threat Research | Opsec | Threat Intelligence | Infosec | Threat Hunting | Humint |
Adam Chester 🏴�... @_xpn_
36K Followers 501 Following Hacker for Hire at @SpecterOps | Blog at https://t.co/tjfTOllCEu | Insta at https://t.co/PqR6CZPwjl
Olaf Hartong @olafhartong
17K Followers 965 Following @FalconForceTeam | researcher with a camera | Microsoft MVP | Snow man role model
Mehmet Ergene @Cyb3rMonk
13K Followers 437 Following https://t.co/uAlYlXIpyV Learn #KQL for #ThreatHunting, #DetectionEngineering, and #DFIR @BluRavenSec | Microsoft Security MVP | #DataScience
SANS DFIR @sansforensics
109K Followers 98 Following The world's leading Digital Forensics and Incident Response provider. This feed updates you on latest DFIR news, events, and training.
The Haag™ @M_haggis
9K Followers 2K Following Threat Researcher | Co-Host of Atomics on a Friday | LOLDrivers & Atomic Red Team Maintainer | I'm Everywhere and Nowhere - BSG.
Dylan Tran @d_tranman
2K Followers 171 Following salsa sultan, verde villain, condiment connoisseur Adversary Simulation @xforce Red Team @wrccdc Former: @NationalCCDC+@wrccdc & @globalcptc @calpolyswift
GuidedHacking @GuidedHacking
53K Followers 391 Following Reverse Engineering & Game Hacking Courses @ https://t.co/Dl5ED4o7YS
Ayush Anand @Securityinbits
1K Followers 268 Following I tweet about my learning in Malware analysis, Threat Intel, Detection engineer and DFIR journey. Opinions are mine only!
xAI @xai
1.8M Followers 38 Following
flux @0xfluxsec
1K Followers 941 Following Cyber professional (red team), security and systems programming | Rust | https://t.co/QIih2B7vya | https://t.co/VC3xsm0Wvq
Khoa Dinh @_l0gg
2K Followers 119 Following
Anthropic @AnthropicAI
636K Followers 35 Following We're an AI safety and research company that builds reliable, interpretable, and steerable AI systems. Talk to our AI assistant @claudeai on https://t.co/FhDI3KQh0n.
𝙁 𝙀 𝙇 𝙄 �... @felixm_pw
1K Followers 485 Following Senior Researcher @Sophos | https://t.co/rAj5k8LMif
Thiago @thiagomd_1
12K Followers 417 Following Advogado especializado em Direito Corporativo e Analista CNPI - @varosbr
CICADA8Research @CICADA8Research
858 Followers 111 Following Welcome to the official Twitter for CICADA8! Your premier destination for cutting-edge research and development in the cybersecurity field
Dor @Dor00tkit
375 Followers 661 Following
Hayden @KilobyteTheDust
206 Followers 379 Following SOC SecOps Lead, DFIR consultant, and engineer @BHinfoSecurity. Instructor @Antisy_Training. Obsessed with 🏎️ & 🏊♂️🚴♂️🏃♂️.
sydney @letswastetime
538 Followers 361 Following `thrunter` | opinions != employers | she/her | search "thrunting soundtrack" | eval link="https://t.co/7EA1367cqG"
Chris Sanders 🔎 �... @chrissanders88
34K Followers 489 Following Ed.D. | Founder @networkdefense @RuralTechFund | Former @Mandiant, DoD | Author: Intrusion Detection Honeypots, Practical Packet Analysis, Applied NSM
mr.d0x @mrd0x
44K Followers 296 Following Security researcher | Co-founder https://t.co/QxBlzp9A8w | https://t.co/zqMXQRZjQN | https://t.co/Fq7WSqTBva | https://t.co/eKezFcO6nd
Swachchhanda Poudel @_swachchhanda_
88 Followers 371 Following Threat Researcher | Detection Engineer @nextronsystems | #sigma #yara https://t.co/LjJ2sh3CIE
Leandro Fróes @leandrofr0es
427 Followers 977 Following Reverse Engineer & Developer | @MenteBinaria | Opinions are my own.
☠️ Brandon @__mez0__
3K Followers 432 Following 👽 UNC1194 🔥 Targeted Ops @TrustedSec 🤖 Dev @preemptdev "purveyors of the prettiest log files"
Hacker Hermanos @Hacker_Hermanos
281 Followers 1K Following Offensive Security, Adversary Emulation, Red Team Tradecraft, Infrastructure, and Methodology. Jesus is my Lord and Savior.
kocka @k0ck4
307 Followers 190 Following c̶y̶p̶h̶e̶r̶p̶u̶n̶k̶, Crypto-anarchist, NetBSD fanboi, grsecurity and Alpinelinux evangelist. Tweets are my own. GCFA || OSCP || GXPN
John U @jdu2600
678 Followers 345 Following He/him. Security Research Engineer @preluderesearch. ex-@elasticseclabs ex-@CyberGovAu
Friff @Friffnz
244 Followers 176 Following Kiwi 🇳🇿 Ex Dota2/Pokemon Unite Pro Cyber Security Professional Top 10 @ BlueTeamLabsOnline, CyberDefenders and Xintra
Wietze @Wietze
7K Followers 392 Following Threat Detection & Response. Views are my own, unless retweeted. Maintainer of https://t.co/000t7J0NBR & https://t.co/thv6PP5C48 Co-maintainer of https://t.co/rXIxOggXs2
Brandon Webster @webstsec
5 Followers 8 Following Reasonably paranoid. Email Threat Analyst at @sublime_sec
Brian Baskin @bbaskin
7K Followers 881 Following Threat researcher, malware analysis, RE, incident response, with some old school forensics and CTFing. Apologetic ginger. These are my personal opinions
THOR Collective @THOR_Collective
88 Followers 7 Following
Archie @Archie_1997
432 Followers 90 Following A teen with an aspiration for computers, likes to code in C / C++ every once in a while.
Anderson Nascimento @andersonc0d3
3K Followers 3K Following Founder & Security Researcher @allelesecurity Mastodon: @[email protected] Bluesky: @andersonc0d3.bsky.social
Miixxedup @Miixxedup
400 Followers 547 Following CTI at @Mandiant | Analyst at @TheDFIRReport | Security Intelligence, Automation and Innovation | Sourdough baker noob but a connoisseur anyway.
Nathan Blondel @slowerzs
808 Followers 122 Following
Xavier Mertens @xme@i... @xme
15K Followers 1K Following Freelance | Blogger | SANS ISC Handler | FOR610/FOR710 Instructor | BruCON co-organizer | BlueTeam | DFIR | MTB | PGP: 0xEB583912514B3E1F | Tweets are mine!
Trends for United States
You might like
