-
Tweets1K
-
Followers5K
-
Following1K
-
Likes1K
Happy to finally share a new blog with @exploitph on our work revisiting the Kerberos Diamond Ticket. ✅ /opsec for a more genuine flow ✅ /ldap to populate the PAC 🆕 Forge a diamond service ticket using an ST We finally gave it a proper cut 💎 huntress.com/blog/recutting…
Have you ever wondered if there was a way to deploy a "Remote EDR"? Today I'm excited to share research I've been working on for the past couple months. This dives into DCOM Interfaces that enable remote ETW trace sessions without dropping an agent to disk. Includes a detailed…
My #SOCON2025 talk is now live for those interested in credential guard research. youtu.be/9U_7u849yQQ?fe…
fwiw, you can speed up cracking RC4 kerberoast tickets by requesting the ticket from the AS without a PAC
Mine and @_dirkjan's @defcon talk, Abusing Windows Hello Without a Severed Hand went live yesterday. We discuss both privileged and unprivileged Windows Hello abuse. Hope you all enjoy it. youtu.be/mFJ-NUnFBac?fe…
Spent some time updating the TelemetrySource project. - Updated mappings for the Threat-Intelligence provider - Added a folder for the Threat-Intelligence provider + added a README A lot more updates coming soon! Project link: github.com/jsecurity101/T…
Happy Friday! I have gotten a lot of questions around ETW Patching as of late. I decided to write a blog on understanding ETW Patching, check it out! jsecurity101.medium.com/understanding-…
Wow did not have “be in a book” for my 2024 🤯🤩 Thank you Denis Isakov! Thank you @exploitph for always including me in the journey of Kerberos with you 💜!
Today I am releasing PowerParse. This is a PE Parser I've created that has helped me in the past perform initial triage on malware. I'll provide some examples in the threads below. Link: github.com/jsecurity101/P… 1/x
Today I am releasing a whitepaper and new tool (ADOKit) as part of my @XForce research I will be presenting at @BlackHatEvents #BHEU on Wednesday. Links are below 🔗 Whitepaper: ibm.com/downloads/cas/… Tool: github.com/xforcered/ADOK…
Working on a new tool that will be ready soon. One thing I can say from the research.... if your environment leverages Windows Hello without TPM's, DO NOT allow the default setting of a digit only based pin. Windows stores the pin length and can be brute forced in seconds.
While I'm at it, I've published the PoC tool used in @4ndr3w6S, @jsecurity101 and my post: trustedsec.com/blog/the-clien… It's just a quick PoC but maybe someone will find it interesting: github.com/0xe7/EventSnip…
Finally updated my RitM tool with the DES TGT session roasting code if anyone is interested. Reminder, this isn't intended to be attack-ready code! github.com/0xe7/RoastInTh… The attack is described in detail in my DES post (currently pinned to my profile).
Like the opsec of NightHawk but missing Aggressor-like scripting functionality? Check out DayBird, an extension I built for NightHawk to allow for automation of operator workflows and initial check-in actions via C# plugins. b:securityintelligence.com/x-force/extend… gh:github.com/xforcered/DayB…
Happy to finally share our slide deck/demo videos from our @texascyber talk, “You DISliked DCSync? Wait For NetSync!” Thank you x3000 to @MindsEyeCCF, for help with the fantastic slides, & my co-presenter/friend/mentor/research partner @exploitph 🤗 github.com/4ndr3w6/Presen…
Continuing with Part 1- @4ndr3w6S and I take a look at the remainder of the attributes on the Hacker Recipies chart. Take a look! And get ready for Part 2! This is a series after all 😎
Continuing with Part 1- @4ndr3w6S and I take a look at the remainder of the attributes on the Hacker Recipies chart. Take a look! And get ready for Part 2! This is a series after all 😎
Continuing on our deep exploration of DACL abuse based detections, @4ndr3w6S and I take a look at object abuses with PowerMad. Remember, just because it may be banal, doesn't mean it doesn't have value! Many common attributes are great environmental baselineing tools!
Continuing on our deep exploration of DACL abuse based detections, @4ndr3w6S and I take a look at object abuses with PowerMad. Remember, just because it may be banal, doesn't mean it doesn't have value! Many common attributes are great environmental baselineing tools!
Part 3 is out!! @4ndr3w6S and I cover several attributes that are, in our opinion, lesser known. However, some of these had some incredibly interesting attacks/detections. Check it out! And thanks for joining us on this journey! 😁
Part 3 is out!! @4ndr3w6S and I cover several attributes that are, in our opinion, lesser known. However, some of these had some incredibly interesting attacks/detections. Check it out! And thanks for joining us on this journey! 😁
It’s very common for us to see offensive tooling enable SeDebugPrivilege so that they may bypass certain OS checks. However, what does this mean? Which OS checks are skipped? I dove into this and decided to write a blog on it. Check it out! bit.ly/3trYxdg
Family plug incoming 🫣. For those that are fans of Oasis style/alt rock genre of music, have a listen to The Bridge's first EP. Would be great if you add them to a playlist if it's something you'll enjoy. They worked bloody hard for this. spotify.link/SmDY5S7YMDb
Justin Elze @HackingLZ
65K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Charlie Bromberg « ... @_nwodtuhs
15K Followers 653 Following Trying to hack the way we hack things 🏴☠️
Florian Roth ⚡️ @cyb3rops
206K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Oliver Lyak @ly4k_
9K Followers 265 Following Yet another security researcher 🔦 Github: https://t.co/7WFOFz17KI
Grzegorz Tworek @0gtweet
36K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
Adam Chester 🏴�... @_xpn_
36K Followers 501 Following Hacker for Hire at @SpecterOps | Blog at https://t.co/tjfTOllCEu | Insta at https://t.co/PqR6CZPwjl
sn🥶vvcr💥sh @snovvcrash
12K Followers 488 Following Sr. Penetration Tester / Red Team Operator @ptswarm :: Author of the Pentester’s Promiscuous Notebook :: He/him :: Tweets’re my pwn 🐣
Dave Kennedy @HackingDave
223K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Pod. God + Family/Hacker/CSO/USMC/Intel/Fitness. Make the world a better place.
n00py @n00py1
13K Followers 963 Following Retweeter of InfoSec/Offsec/Pentest/Red Team. Occasional blogger/Independent security research.
mgeeky | Mariusz Bana... @mariuszbit
14K Followers 812 Following 🔴 Operator, Initial Access afficionado, Researcher, ex-AV engine developer, ex-Malware analyst 🦋 @mgeeky.bsky.social 🫖 green tea lover
mpgn @mpgn_x64
18K Followers 230 Following Flibustier du net ̿ ̿̿'̿'\̵͇̿̿\=(•̪●)=/̵͇̿̿/'̿̿ ̿ ̿ ̿ Podcast Hack'n Speak @hacknspeak / https://t.co/GyACSFg9mw
an0n @an0n_r0
13K Followers 725 Following CRT(E|O|L) | OSCP | @RingZer0_CTF 1st (for 2yrs) | HackTheBox Top10 | RPISEC MBE | Flare-On completer | GoogleCTF writeup winner | SSD research | Math MSc |🇭🇺
Josh @passthehashbrwn
10K Followers 332 Following Adversarial Simulation at IBM, tweets are mine etc.
Dirk-jan @_dirkjan
28K Followers 206 Following Hacker at @OutsiderSec. Researches AD and Azure (AD) security. Likes to play around with Python and write tools that make work easier.
Filip Dragovic @filip_dragovic
7K Followers 1K Following My research unless stated otherwise. My opinions are my own and do not represent the views of my employer.
klez @KlezVirus
8K Followers 705 Following Independent Cyber Security Researcher - Opinions are my own
Vincent Yiu @vysecurity
29K Followers 308 Following Director, Red Team, Offensive Security. Help organizations safeguard their businesses from the bad guys.
JFK_The_Best @JFK_The_Best
15 Followers 678 Following
SquareZer0 @__squarezero__
131 Followers 1K Following @protos3c team member | CTF player | Pentester
Hannibal Barca @Hanniofbarca
0 Followers 76 Following
lanske0110 @lanske0110
2 Followers 191 Following
isenhu @isenhu
36 Followers 2K Following
Rohit Rajwansi @rajwansi_rohit
18 Followers 390 Following IIT Bombay EE 2018 भारतीय अभियंता, Network Security, Red Team, White Hat, Backend developer, Python, Lang-chain, LLM, Bug Bounty, DHH, Music production 🎁
butterp0sa @butterp0sa
6 Followers 596 Following
T6EIyoBMB6v @T6EIyoBMB6v
0 Followers 56 Following
Umarhau @Umarhau4418
56 Followers 719 Following
Mert @Mert298432
2 Followers 206 Following
Hak Chandara @sec_Littleboy
8 Followers 462 Following Figuring out how to protect networks while fueled by coffee. ☕ | Management Information Technology student & InfoSec enthusiast.
Isaiah James Puzon @ijpuzon
21 Followers 317 Following
Hammad Ali @hammad2656
42 Followers 975 Following
Bumblebee @Lolippop23
182 Followers 2K Following Cybersecurity & AI enthusiast | Offensive Security Learner | Building, breaking & understanding systems | Curious mind
./desktop/krypt skidd... @helpmehackyou
30 Followers 667 Following penetration tester , security+ , network server security professional , systems developer , end-user-computing .
InfoSec09 @infosec09
5 Followers 2K Following
loiute buio @LoiuteB4155
5 Followers 413 Following
techris.eth @techris45
179 Followers 2K Following
Jesse Moses @Cre4T3Tiv3
578 Followers 5K Following AI/ML Engineer | Temporal Intelligence | Building Next-Gen AI/ML | Mathematical Foundations → Practical Engineering | https://t.co/3i5qOknsqp
saraogawa59 @saraogawa59
2 Followers 179 Following
Khaos @KhaosShield
196 Followers 1K Following Infosec enthusiast, Locksport wannabe & more. Tweets are just tweets.
yabo @yabo255944
5 Followers 534 Following
Uzair Ali 🔻 @r00tali
359 Followers 1K Following White Hat, Pentester, Deobfuscator, Hunter of Bug-Bounties, Red-Teamer, InfoSec, OS-INTEL, HEX-Metadata Analyst, Responsible Disclosures
jocker @DavidSpid12189
1 Followers 950 Following
CryptoKingKa @manager9268
12 Followers 45 Following #coin8 #CEX #crypto #developer #marcketing #manager #football #future #trader
Amalia Radoi @AmaliaRado56600
5 Followers 359 Following
pen10 @pen10test
194 Followers 2K Following
N S @0x4E53h
1 Followers 129 Following
ergoproxy @_erg0sum
2K Followers 2K Following 16 year old whimsical wizard and part time fintech phantom. Red Team & Bug Bounty. CPTS,CRTP | Views are my own. Not affiliated with my employer.
Mattia Cossu @MattiaCossu7
3 Followers 194 Following
fk.m10 @frankiel01
74 Followers 257 Following
gersh @gershsec
0 Followers 77 Following
avokado @josef_korbel
18 Followers 67 Following Web | Infra | AD Pentesting by day, CTF by night with @ARESxCyber. OSCP, OSWE, OSEP
G2 @g2_hq1
32 Followers 344 Following Our platform offers advanced web tracking and header analysis services enabling users to monitor all resources loaded and audit web behavior
Salvidor Richardt @SalvidorR95052
4 Followers 277 Following
ROSE EVANGELINE @HEAVENOFJESUS
942 Followers 7K Following I LOVE JESUS. HE'S ONLY MINE, JUST MINE, EXCLUSIVELY MINE, ALL MINE, MINE, MINE, MINE!!!!!!
M7•3XPL0IT @MR3XPL0IT
3 Followers 453 Following £=STAY ANONYMOUS £=STAY SAFE •{DON'T BE A TOY BE A MANIPULATER}
Me @iloveforensics
1 Followers 224 Following
Eric Conklin @EricConk32
758 Followers 3K Following Writer & researcher exploring how personal experience shapes belief Survey on belief + emotion: https://t.co/4mS7C3NInU
Daniel Magalhães @DanielMaga36581
0 Followers 32 Following
Bcycle @Bcycle369324
1 Followers 59 Following
Magic Black @KaleySama
2 Followers 45 Following
Justin Elze @HackingLZ
65K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Charlie Bromberg « ... @_nwodtuhs
15K Followers 653 Following Trying to hack the way we hack things 🏴☠️
Florian Hansemann @CyberWarship
84K Followers 47 Following Father, Founder @HanseSecure, Pentesting, Student, ExploitDev, Redteaming, InfoSec & CyberCyber; -- Mastodon: https://t.co/KFSKYUN98M
Florian Roth ⚡️ @cyb3rops
206K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Oliver Lyak @ly4k_
9K Followers 265 Following Yet another security researcher 🔦 Github: https://t.co/7WFOFz17KI
Grzegorz Tworek @0gtweet
36K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
Adam Chester 🏴�... @_xpn_
36K Followers 501 Following Hacker for Hire at @SpecterOps | Blog at https://t.co/tjfTOllCEu | Insta at https://t.co/PqR6CZPwjl
Dave Kennedy @HackingDave
223K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Pod. God + Family/Hacker/CSO/USMC/Intel/Fitness. Make the world a better place.
ippsec @ippsec
119K Followers 353 Following
mpgn @mpgn_x64
18K Followers 230 Following Flibustier du net ̿ ̿̿'̿'\̵͇̿̿\=(•̪●)=/̵͇̿̿/'̿̿ ̿ ̿ ̿ Podcast Hack'n Speak @hacknspeak / https://t.co/GyACSFg9mw
Mike Felch (Stay Read... @ustayready
16K Followers 2K Following Targeted Ops Red Team @ TrustedSec | Hacking since Renegade BBS backdoors | Prior CrowdStrike/BHIS | In Christ's grip | I speak for myself only | K1HAQ
an0n @an0n_r0
13K Followers 725 Following CRT(E|O|L) | OSCP | @RingZer0_CTF 1st (for 2yrs) | HackTheBox Top10 | RPISEC MBE | Flare-On completer | GoogleCTF writeup winner | SSD research | Math MSc |🇭🇺
Dirk-jan @_dirkjan
28K Followers 206 Following Hacker at @OutsiderSec. Researches AD and Azure (AD) security. Likes to play around with Python and write tools that make work easier.
Dr. Nestori Syynimaa @DrAzureAD
20K Followers 2K Following Principal Identity Security Researcher at Microsoft. Ex-Secureworks. (MSc, MEng, PhD, CITP, CCSK). And yes, opinions are my own ;)
DirectoryRanger @DirectoryRanger
35K Followers 96 Following This account assembles and disseminates information related to Active Directory and Windows security.
SEKTOR7 Institute @SEKTOR7net
15K Followers 346 Following Homo Aptus. Vincit qui se vincit - Publilius Syrus. Consulting, Training, Technology, Cyber domain, and more... @x33fcon founder.
Filip Dragovic @filip_dragovic
7K Followers 1K Following My research unless stated otherwise. My opinions are my own and do not represent the views of my employer.
Sinaei @Intel80x86
8K Followers 399 Following Windows Internals enthusiast, Interested in hardware design & low-level programming. An active developer of @HyperDbg debugger. https://t.co/TUALkTusHt
Daax @daaximus
12K Followers 397 Following reverse engineering • secure processor design • system emulation • µarch bugs @the_secret_club
sixtyvividtails @sixtyvividtails
3K Followers 393 Following Currently working as an independent GUID merchant. Fully licensed. I acquire, produce, and sell high-quality GUIDs.
Gary Stevenson @garyseconomics
181K Followers 302 Following Inequality Economist. Former Trader. Other Economists make predictions, but my ones are actually right. Explaining Economics on YouTube - garyseconomics
Dlive @D1iv3
2K Followers 1K Following Security Researcher. 2022 MSRC MVR. Windows Active Directory Security / Cloud Security / Web Security. Tweets are my own.
X-C3LL @TheXC3LL
5K Followers 631 Following Just a biologist that loves to break cyber-stuff. Ka0labs / @AdeptsOf0xcc / ID-10-Ts member. 🦉
Yarden Shafir @yarden_shafir
24K Followers 309 Following A circus artist with a visual studio license
Soroush Dalili @irsdl
20K Followers 909 Following Hacker (ethical), web appsec specialist, trainer, tools builder & apps breaker, @SecProjectLtd founder 🕸️https://t.co/YipuTcYnWc🥷 🍏A dad-joke maker🍐
Stephen Fewer @stephenfewer
9K Followers 245 Following Senior Principal Security Researcher @rapid7. Decompiler @relyze. Core @metasploit dev 2009 - 2013. MSRC Top 100 2015. Pwn2Own 2011, 2021, 2024.
VictorV @vv474172261
3K Followers 165 Following Binary Sec😉VMware Escape at TFC 2018/21/23. Hyper-V Escape. Top3 of MSRC 23Q3/Q4/24Q1/Q3/Q4/Annual/25Q1/Annual. Watchlist for security news.
Megan @mega_spl0it
551 Followers 274 Following Purple Teamer | Probably a SIEM log | Send Memes | Putting the Tater in Administater | Security Spud @TrustedSec
Lee McWhorter - Last ... @tleemcjr
967 Followers 1K Following IT & Cyber Security Expert Generalist, Speaker/Author/Educator, CTO @Covered6llc, Chief Geek McWhorter Technologies, CompTIA Instructor & Board Member, Texan!
Higinio “w0rmer” ... @0x686967
7K Followers 4K Following Father ×3 | Full-Spectrum Operator (Offense/Defense) | Web & Network Intrusions + Fortifications | @w0rmer.bsky.social | HW Killer | Stack Ghost
🇦🇺Kylie Ochoa �... @MissAnonFatale
5K Followers 3K Following I have “the most famous breasts in FBI Cybercrime / Anonymous / Hacking history” 🤣 Mum of 2 boys | Single, not married | Darknet Diaries Ep. 63
Scott Nusbaum @_snus
449 Followers 148 Following
Jeff Foley @jeff_foley
6K Followers 903 Following vice chair of the @owasp project committee | @owaspamass project leader | mastodon: https://t.co/5tzmNUcL6R
Jamie Shaw @1nPr0c
5K Followers 564 Following Principal Security Consultant / Red Team Lead @mdseclabs
Altered Security @AlteredSecurity
7K Followers 2K Following Global leader in hands-on learning for enterprise and cloud security education. Join 40000+ infosec professionals from 130+ countries
Olaf Hartong @olafhartong
17K Followers 965 Following @FalconForceTeam | researcher with a camera | Microsoft MVP | Snow man role model
hasherezade @hasherezade
89K Followers 910 Following Programmer, #malware analyst. Author of #PEbear, #PEsieve, #TinyTracer. Private account. All opinions expressed here are mine only (not of my employer etc)
Matt Hand @matterpreter
10K Followers 293 Following Director, Security Research @preluderesearch💜 | Author of Evading EDR https://t.co/E5fs0sSTOv 📖 | Adversary tradecraft & windows internals 🦠
Stephen Sims @Steph3nSims
24K Followers 832 Following Perpetual Student | SANS Fellow | Musician | Braggart Hater | Gray Hat Hacking | VR | 🏂 | deadcode | https://t.co/CadJehomsU
Stephen Woodford | Ra... @RationalityRule
22K Followers 145 Following We are not even a pawn in the cosmic game at play... and that's okay!
Gregory Hartley @1greghartley
12K Followers 590 Following Author, former army interrogator, and resistance to interrogation instructor applying the skills of an interrogator to daily life for TV, Radio, and Print.
⭕️ Chase Hughes @NCIUniversity
17K Followers 2K Following 🌐 NCI University | Empowering Success through Mastery, Insight, and Connection - Founded by Chase Hughes and Applied Behavior Research
Machine Learning Mast... @TeachTheMachine
72K Followers 35 Following Making Developers Awesome At Machine Learning
Marc Rogers @marcwrogers
17K Followers 1K Following Ramblings of Mad Englishman: Hacker @ BBC Real Hustle & Mr Robot. Head of Sec @ DEFCON. Founder @ CTI-League, Ransomware Taskforce, (He/Him).
cje @caseyjohnellis
29K Followers 4K Following troublemaker & troubleshooter | founder @bugcrowd @disclose_io, board advisor, investor | pioneer of #bugbounty as-a-service | opinions CC0 1.0 | #hacktheplanet
Dafydd Stuttard @DafyddStuttard
7K Followers 78 Following Founder and Chief Swig at @PortSwigger. Creator of @Burp_Suite and @WebSecAcademy. Author of The Web Application Hacker's Handbook.
Abacus.AI @abacusai
93K Followers 0 Following The world's first AI super assistant and general-purpose agent - DeepAgent. We have two products: ChatLLM for professionals and Abacus Enterprise
Lex Fridman @lexfridman
4.4M Followers 588 Following Host of Lex Fridman Podcast. Interested in robots and humans.
Will Dormann is on Ma... @wdormann
26K Followers 1K Following I play with vulnerabilities and exploits. I used to be here on Twitter but now I'm here: @[email protected] https://t.co/hXggdAVkSQ
Labman @Amarjit_Labu
2K Followers 2K Following Lover of breaking things | Cybersec researcher with a wide taste in music genres!! https://t.co/AOHvviQE9r ||| chr°ᶰ1k |||
Merill Fernando @merill
18K Followers 4K Following Product Manager @microsoft | Tweets my own Built → https://t.co/ujxKqxXjf2 • https://t.co/QbUp63ffXf • Graph XRay • https://t.co/tSWrIw8Ajh 📰 Newsletter→ https://t.co/tPzAEl0Zuq 🎙️ Podcast→ https://t.co/TBlNKTzn8t
Giorgio @cloned_tweets
179 Followers 534 Following On the internet nobody knows you're a sloth. Evil numerical optimization enthusiast.
Yuki Chen @guhe120
10K Followers 281 Following 古河, Indepent security researcher, Bug bounty, ACG Otaku, Pwn2Own 15/16/17, PwnFest16,TianfuCup 18/19/20, 5 times MSRC MVR yearly Top 1. Got two pwnie awards.
James Fridman @fjamie013
2.2M Followers 1 Following Do not submit any personal photos that you do not want to be made public. Terms and conditions apply. https://t.co/WWtgLUfRED
Dmitry Vostokov 🇮�... @DumpAnalysis
8K Followers 6K Following Diagnostician. Author of Diagnomicon. Gang of One. Software Surgeon. Machine Learning and AI for Software Diagnostics and Observability. Generative Debugging.
Trends for United States
You might like
