François Proulx @francoisproulx
Senior Product Security Expert at https://t.co/W9ORax2pW6 ellipticasecurity.com Montréal, Québec Joined February 2007-
Tweets1K
-
Followers499
-
Following404
-
Likes2K
0
0
1
47
0
Download Image
François Proulx retweeted
Nice analysis of the Kong supply chain attack
✈️ en route to Toronto, 📣 speaking at Black Hat SecTor 2024 tomorrow at 9:10am about how we found 0-days in the build pipeline of Open Source packages 🚢 😈📦
Thanks Jonathan. It was fun. I was happy to give the talk.
Thanks Jonathan. It was fun. I was happy to give the talk.
Looking forward to give my talk about 0 days in build pipelines.
Looking forward to give my talk about 0 days in build pipelines.
🎉 Big News! 🎉 I'll give my talk "Under the Radar: How we found 0-days in the Build Pipeline of OSS Packages" at OWASP Global AppSec San Francisco 2024! 🌟 My favorite conference for over a decade. 🚀#OWASP #GlobalAppSecSanFran #SupplyChainSecurity #OpenSource
If true, it would make it a far less potent worm... though could make tons of damage on airport WiFi...
If true, it would make it a far less potent worm... though could make tons of damage on airport WiFi...
François Proulx retweeted
I need to make a correction. Upon closer inspection it seems you need to be authenticated on the same network as the victim. I wonder if @KunlunLab are planning a talk or blogpost on this vulnerability.
If you are at @openssf SOSS Community Day today. Make sure to come to our talk at 2:25pm in Room 437 sosscdna24.sched.com/event/bbdbc9f6… #openssf #soss #linuxfoundation #GitHub #GitHubactions
We are announcing the Public Beta release of ‘poutine’ - an Open Source security scanner built by our team @boostsecurityio to detect misconfigurations and vulnerabilities in Build Pipelines. boostsecurity.io/blog/unveiling…
I'm excited to speak at SOSS Community Day NA 2024 sosscdna24.sched.com/event/bbdbc9f6… @sched
🚀 Just blogged about a responsible disclosure on an AWS OSS project, it's complex to mitigate Insider Threats in OSS. 🛡️ GitHub Actions hardening tips to combat Insider Threats effectively. #supplychain #responsibledisclosure #githubactions boostsecurity.io/blog/opening-p…
François Proulx retweeted
My Chrome bug just got disclosed! It’s a really cool chain of 4 vulns leading to local file read and universal XSS (including extensions). Maybe I’ll make a blog post about it issues.chromium.org/issues/40942152
Thanks for spreading the word 😃
Thanks for spreading the word 😃
You guys love OIDC just as much as we do :-) Exactly one year ago, we built almost exactly the same thing that you guys call OctoSTS.
You guys love OIDC just as much as we do :-) Exactly one year ago, we built almost exactly the same thing that you guys call OctoSTS.
Just published "The tale of a Supply Chain near-miss incident" article about a responsible disclosure my team at BoostSecurity.io made as well as announcing the Living Off The Pipeline (LOTP) project. link.medium.com/dsnMkFBonHb
ramsexy @plmaltais
8K Followers 754 Following French-Canadian hacker 🇨🇦 Full-time bug bounty hunter 🐛💥 Strava Local Legend 🏃♂️💨 Surfing the web and hacking the waves 🌊🏄
Louis Dion-Marcil @ldionmarcil
2K Followers 746 Following vegan btw. appsec @ mandiant/google cloud. opinions my own etc @ldionmarcil.bsky.social
Dan Lorenc @lorenc_dan
11K Followers 2K Following OSS Supply Chain Security. Founder/CEO/Primary Ariba Admin at https://t.co/sGmuUU9JbG Sigstore: https://t.co/dWKlyYu6kv
Sandra @heltonsandra43
170 Followers 3K Following
timlake @timlake252160
0 Followers 2K Following
Rami McCarthy @ramimacisabird
2K Followers 745 Following security, for the internet, at @wiz_io! opinionated about security. (he/him) @[email protected], bsky=https://t.co/fxycKAqA6t
BeeFaauBee @BeeFaauBee09
84 Followers 303 Following InfoSec | Borussia Dortmund (@BVB) | @BVB09Canadians | what else eh?
Shinobyx @crypticrebel337
23 Followers 1K Following Bug bounty hunter who is a bit inactive on social media, so don't expect too much from me here...
Griswald @kaitomikik5735
66 Followers 7K Following
Ratnadeep Dey Roy @Ratnadeepdeyroy
63 Followers 752 Following Product Engineer @Authentic One | Ex-Zeron | Ex-IT Security Intern @TXInstruments | MCA at #Jadavpur_University '23| Member of @gdgkolkata | Aviculturist
MaureenDupont @t2fPjUzOmad5qTY
57 Followers 5K Following
Thare @Thareh6Z
41 Followers 4K Following
sajal verma @sajalpentest
224 Followers 2K Following Trying hard to learn Web/mobile app sec. Opinions are personal. Passionate about personal finance.
オカダリョウタ... @okdt
4K Followers 1K Following 日本のセキュリティリサーチャ | アスタリスク・リサーチ代表📈 | 神戸デジタル・ラボCSA⚓️ | 神戸高専OB | BBT大学講師 | OWASP🐝Japan Leader | Hardening Project Organizer | SBOM CycloneDX | カレー🍛派|加速装置ほしい
Eric C 🇦🇷⭐️... @ec_mtl
1K Followers 5K Following Blue/Red Teamer, Offsec, DFIR, OSINT, Cryptocurrencies&NFTs fanboy, 🇦🇷Foot, Music, Art, Cinema, History and Geopolitics.
nanjin002 @nanjin00272827
21 Followers 4K Following
rathod @rathod518434
6 Followers 685 Following
Hudzilla @Hudzilla6
13 Followers 637 Following
Larouanne Tristan @Tr4LSecurity
104 Followers 205 Following Win/Linux, vim/vsc, IRC, git, Java/NodeJs
Steve Giguere @_SteveGiguere_
785 Followers 940 Following A developer 🥑, public speaker and DevSecOps Enthusiast. All about cloud native security, k8s and #cybersecurity developments and shortfalls... and beer.
Shivam Pandey 🇮�... @Shivam31200
1K Followers 615 Following Infosec | Synack |Write poems in meantime
Cybertection LLC (Jos... @Cyberjoe2050
534 Followers 7K Following Cybertection is your choice for all security software, but our specialty is always going to be antivirus software. We are your digital bodyguard.
Jonathan Bennett @jp_bennett
609 Followers 370 Following https://t.co/IcLw8DM89Z https://t.co/OYGrdVoKkw
Bakul Gupta @bullhacks3
33 Followers 145 Following 🥷 Product Security engineer 🥷 by profession and life long learner by choice !🚀 Credit Cards Explorer/Noob 🔥
Mark Esler @markesler
55 Followers 271 Following
Ashish @kurmiashish
92 Followers 251 Following Co-Founder CTO @step_security, Ex-Plaid, Ex-Uber, Ex-Microsoft
Wannabe Hacker @arundr0id
36 Followers 317 Following Roses are red, Violets are blue, this account doesn't have anything useful.
sparow @error404billy
5 Followers 405 Following
raindox @wwweijiao
0 Followers 87 Following
ice @ice98079542
95 Followers 3K Following
flomb - @fl0mb.bsky.s... @flomb_
99 Followers 2K Following
Adnan Khan @adnanthekhan
3K Followers 205 Following Security Engineer at big tech | Part Time Security Researcher | Build Pipeline Menace | All thoughts and opinions are my own.
Hugow @hugow_vincent
914 Followers 975 Following Red Team and research @synacktiv @rustyphasm.bsky.social
John Saigle @johnsaigle
276 Followers 801 Following working on blockchain security @ asymmetric research exploring: secure code review, hacking tools, vibe-coding
Kaylin Trychon @KaylinTrychon
3K Followers 2K Following Chaos Causer @ Edera | Comms @SecureAerospace | @GirlSecurity_ Mentor | Prev @chainguard_dev @google | Rule Bender l New Englander
Daphnée Hacker-B. @daphneehackerb
2K Followers 1K Following Journaliste et réalisatrice à Radio-Canada.
wonderingwalrus @wonderbreadstix
13 Followers 105 Following
crawler_cookie_0 @crawler_cookie0
48 Followers 4K Following
Tristan Kalos @TristanKalos
521 Followers 1K Following Co-founder and CEO @ https://t.co/m0HwZH4ItB - Giving superpowers to product security engineers 🕸 · Hacker 👨💻 · memes dealer 🐱
Luke Hinds @decodebytes
3K Followers 733 Following No longer active here; find me on: https://t.co/bdAWiJOO1e
Dan Lorenc @lorenc_dan
11K Followers 2K Following OSS Supply Chain Security. Founder/CEO/Primary Ariba Admin at https://t.co/sGmuUU9JbG Sigstore: https://t.co/dWKlyYu6kv
Nicolas Grégoire @Agarri_FR
27K Followers 630 Following Web hacker and Burp Suite Pro trainer Refer to https://t.co/D5tRH7U2hg for trainings Follow @MasteringBurp for free tips and tricks
Clint Gibler @clintgibler
22K Followers 563 Following 🗡️ Head of Security Research @semgrep 📚 Creator of https://t.co/xwtIAI0CuJ newsletter
JS0N Haddix @Jhaddix
167K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. Cybersecurity + Hacking + AI + Sec Leadership @arcanuminfosec
Sam Curry @samwcyo
97K Followers 1K Following Hacker, bug bounty hunter. Run a blog to better explain web application security.
developer-guy @developerguyba
5K Followers 2K Following 🚀CNCF Ambassador 23• 🐳 Docker Captain 23•🎖Best Sigstore Evangelist 22 • ㏅CDF Ambassador 23 • 🇹🇷@kcdturkey Organizer •🕴Organizer @cloudnativetr @devopstr
Rami McCarthy @ramimacisabird
2K Followers 745 Following security, for the internet, at @wiz_io! opinionated about security. (he/him) @[email protected], bsky=https://t.co/fxycKAqA6t
Florian Roth ⚡️ @cyb3rops
206K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
J. A. Guerrero-Saade @juanandres_gs
16K Followers 274 Following Executive Director for Intelligence and Research @SentinelOne | Distinguished Fellow, @SAISHopkins Alperovitch |LABScon|Cyber Paleontologist|4thParty Collector
nick.eth @nicksdjohnson
92K Followers 892 Following Lead developer of ENS & Ethereum Foundation alum. Certified rat tickler. he/him. bsky: https://t.co/RdZTUkWNq2 wc: https://t.co/nvP0lHPJqz
Piergiorgio Ladisa @piergiorgioLad
74 Followers 180 Following Security Researcher PhD Student @ SAP Security Research focusing on OSS Supply Chain security
Aviad @_0xffd
261 Followers 482 Following ''To fly as fast as thought, you must begin by knowing you've already arrived'' Spinning records for fun and containers for pain Opinions are my own. UwU
sapir federovsky @sapirxfed
5K Followers 183 Following Doing things @wiz_io And then doing more things at home | failed research blog: https://t.co/j2HT1Tpscs
Lupin @0xLupin
17K Followers 680 Following Roni Carta alias Lupin. Co-Founder of Lupin & Holmes. R&D. Red Teamer. Bug Hunter. Musician 🤘
Katie Knowles @_sigil
2K Followers 303 Following Senior Security Researcher @ Datadog. 🐕 Head in the (Azure) clouds. Sometimes blogging, always curious. Aim to be, rather than to seem.
Adnan Khan @adnanthekhan
3K Followers 205 Following Security Engineer at big tech | Part Time Security Researcher | Build Pipeline Menace | All thoughts and opinions are my own.
Ecosyste.ms @ecosyste_ms
85 Followers 11 Following Tools and open datasets to support, sustain, and secure critical digital infrastructure
john @nyan_satan
17K Followers 141 Following demonic beast from another era (with F20.0) | https://t.co/W7w9FmL4Fd
Google VRP (Google Bu... @GoogleVRP
39K Followers 0 Following We ❤️ 🐜🐞🦗🦟🦋. {echo,{{{Google,Chrome,Android,Abuse,Mobile,OSS,Cloud}Vulnerability,Patch}Reward,VulnerabilityResearchGrants}Program}
Steve Giguere @_SteveGiguere_
785 Followers 940 Following A developer 🥑, public speaker and DevSecOps Enthusiast. All about cloud native security, k8s and #cybersecurity developments and shortfalls... and beer.
Larouanne Tristan @Tr4LSecurity
104 Followers 205 Following Win/Linux, vim/vsc, IRC, git, Java/NodeJs
Frederic Jacobs @FredericJacobs
18K Followers 2K Following Inactive here outside of posting additional reasons for leaving X. For fun science topics, other social media options listed on https://t.co/72AVrLhfUr
Dominic White 👾 @singe
12K Followers 587 Following Hacker @sensepost - minimally active here. Fine me at https://t.co/quAKFLpcgM || @singe.bsky.social
Andrew Betts @triblondon
4K Followers 388 Following Former @fastly, @ft. Elected to @w3ctag. I will sort your pens in length order while you’re not looking. 🏳️🌈🇪🇺🍸
Pete Wagner @meofthecloud
36 Followers 89 Following Infra security nerd at Shopify. Previously GitHub (Dependabot+Actions), ApolloGraphQL, Fitbit. Hack the planet.
Ashish @kurmiashish
92 Followers 251 Following Co-Founder CTO @step_security, Ex-Plaid, Ex-Uber, Ex-Microsoft
Nicole Perlroth @nicoleperlroth
87K Followers 6K Following securing what matters | 🎙 pod TO CATCH A THIEF | ✍️ book THIS IS HOW THEY TELL ME THE WORLD ENDS | ex cyber @nyt | backing digital heroes @silverbuckshot 🚀
丂卄ㄖᗪ卂几 - ... @therealshodan
5K Followers 440 Following Microsoft Threat Intelligence Centre, deaf, BSL https://t.co/ZaRUlLAHgk
Nathan @nj_dav
854 Followers 79 Following I type instructions into computers, which are intermittently understood.
Matan Berson @MtnBer
4K Followers 267 Following Hacker and bug bounty hunter mostly focusing on client-side security. h1-702 Vigilante, h1-65 Eliminator, AWC23 Best New Hacker
Hugow @hugow_vincent
914 Followers 975 Following Red Team and research @synacktiv @rustyphasm.bsky.social
The Haag™ @M_haggis
9K Followers 2K Following Threat Researcher | Co-Host of Atomics on a Friday | LOLDrivers & Atomic Red Team Maintainer | I'm Everywhere and Nowhere - BSG.
Justin Ibarra @br0k3ns0und
2K Followers 917 Following detection engineering | security research | former @elastic/@elasticseclabs @endgameinc etc. | bench press: 455lbs & 📈 | I like my own tweets
Jason @ImJasonH
1K Followers 299 Following World's Okayest Dad, pizza enthusiast, single-hyphenate, onomatopoet, container nerd @chainguard_dev
Kaylin Trychon @KaylinTrychon
3K Followers 2K Following Chaos Causer @ Edera | Comms @SecureAerospace | @GirlSecurity_ Mentor | Prev @chainguard_dev @google | Rule Bender l New Englander
Rumata888 @rumata888
321 Followers 503 Following Security Team Lead at @aztecnetwork. @CTFZone organizer. Love cryptography, fuzzing, breaking systems.
Francis @InvestiAnalyst
35K Followers 1K Following Founder, Software Analyst Cyber Research | Tweets on Cybersecurity & AI/ML | Catholic. Distance Runner. | Ex Cyber Research | Ex AI PM.
Vlad Ionescu (he/him) @iamvlaaaaaaad
3K Followers 613 Following sugarbaby cosplaying as a tech consultant • mean eastern european with unrealistically high expectations and unreasonable quality standards 🏳️🌈he/him🏳️🌈
Scott Piper @0xdabbad00
19K Followers 317 Following https://t.co/EXe2MI2DLm Cloud security historian. Developed https://t.co/ZXFwkuxUp4, CloudMapper, and Parliament. Organizer for @fwdcloudsec. Researcher at @wiz_io ✦
InfoSec CFPs @infosec_cfp
3K Followers 3 Following Sharing CFP and event data about #infosec conferences, so you don't have to miss any. Maintained by @mboelen
Darcy Clarke @darcy
6K Followers 2K Following @vltpkg Founder & Chief End-User Officer Prev: @GitHub @npmjs Staff EM & @Themify Co-Founder - 🇨🇦
Francois Legare @francoisLegare
121 Followers 133 Following Creative engineer, solution architect, Intrapreneur with McGiver attitude :)
Paul Moore - Security... @Paul_Reviews
7K Followers 1K Following Laugh when you can, apologise when you should and let go of things you can't control.
Steren @steren
9K Followers 2K Following Engineer turned Product Manager @Google ⬣ https://t.co/FQDIl9gUWR founder+lead ⬣ Cloud Carbon Footprint founderTrends for United States
146 B posts
83,5 B posts
43,8 B posts
16,7 B posts
21 B posts
13,1 B posts
2.311 posts
5.706 posts
86,5 B posts
4.743 posts
10,7 B posts
2.738 posts
1.612 posts
2.896 posts
6.050 posts
2.023 posts
12,8 B posts
2.511 posts
2.495 posts
61,1 B posts
You might like
MontréHack
@montrehack
2K Followers
Philippe Bernery
@pbernery
230 Followers
Michael McGuffin
@MJMcGuffin
731 Followers