Lê Văn Hùng @iam_hscorpion
Security Researcher 🇻🇳 Earth Joined March 2018-
Tweets105
-
Followers36
-
Following486
-
Likes1K
Technical deep-dive into CVE-2025-53149, a heap-based buffer overflow in the Windows Kernel Streaming WOW Thunk Service driver (ksthunk.sys). crowdfense.com/cve-2025-53149…
I am out from the exploitation world since 8 years ago now, but exploits.forsale/pwn2own-2024/ is a very nice reading. Well done @carrot_c4k3 ! Kudos!
Out Of Control: How KCFG and KCET Redefine Control Flow Integrity in the Windows Kernel by @33y0re i.blackhat.com/BH-USA-25/Pres…
Same stuff different week. I did an analysis on ampa.sys driver and write PoC exploiting the driver. You can find the analysis and PoC here, zeifan.my/Ampa-Driver-An…
[Research] CVE-2025-24985: Windows Fast FAT Driver RCE Vulnerability hackyboiz.github.io/2025/07/17/ogu… The vulnerability was caused by the ability to control five variables within the VHD file that determine the number of clusters.
Good morning! Just published a blog post diving into Windows Kernel Pool internals: basics, memory allocation functions, internal structures, and how Segment Heap, LFH, and VS work. r0keb.github.io/posts/Windows-…
Many are asking why Microsoft's announcement of MCP for Windows OS is significant. Windows OS is now AI-agent accessible. Take a look at this ex. AI-OS. Replace LLM System Call Interface with Microsoft's new Windows OS MCP. The world's most used OS is now AI agent accessible.
Our latest deep dive explores research on Windows Kernel Streaming. Check out Angelboy’s (@scwuaptx) write-up for key insights and analysis. Read more here: devco.re/blog/2025/05/1… #VulnerabilityResearch #Cybersecurity #WindowsKernel #OffensiveCon
A cool project on an undocumented feature in the Windows kernel. I partially researched it some time ago, but unfortunately, it seems that it's locked for Microsoft usage only. My reversing notes: gist.github.com/Kristal-g/eec0…
A cool project on an undocumented feature in the Windows kernel. I partially researched it some time ago, but unfortunately, it seems that it's locked for Microsoft usage only. My reversing notes: gist.github.com/Kristal-g/eec0…
Just dropped a blog post on NtQuerySystemInformation changes that killed an old kASLR bypass. Added some internals research too, pre & post 24H2. Check it out! r0keb.github.io/posts/kASLR-In…
If you update WinDbg today (1.2504.15001.0), you might notice another icon in the View tab of the ribbon, one called "Parallel Stacks". While incredibly useful in its own right, this isn't just a parallel stacks view. It's the introduction of graph visualization for extensions!
🚀 We released a demo video for the CVE-2025-26666 Windows Media RCE Vulnerability, patched by Microsoft in Apr 2025. Watch the video and subscribe to our private vulnerability PoC and detailed report service at Patchpoint.io. youtu.be/tss6bYCIMkQ…
One Bug to Rule Them All: Stably Exploiting a Preauth RCE Vulnerability on Windows Server 2025 by @edwardzpeng @Ver0759 Zishan Lin i.blackhat.com/Asia-25/Asia-2…
Think HVCI and kCET mean the end of kernel code execution? I wrote a blogpost exploring an alternative way to execute a kernel payload! :) blog.slowerzs.net/posts/keyjumpe…
The new blog post on supervisor shadow stack restrictions / supervisor shadow-stack control tandasat.github.io/blog/2025/04/0…
CimFS: Crashing in memory, Finding SYSTEM! @cplearns2h4ck dug into Microsoft CimFS, found a sneaky 0-day, and guess what? The fix by Microsoft was just locking the door 🔐on unprivileged users. 😂 Dive into the adventure with us: starlabs.sg/blog/2025/03-c…
#ESETresearch has discovered a zero day exploit abusing #CVE-2025-24983 vulnerability in Windows Kernel to elevate privileges (#LPE). First seen in the wild in March 2023, the exploit was deployed through #PipeMagic backdoor on the compromised machines. 1/4
Developed an exploit for CVE-2025-21333 (quite unreliable): vulnerability in vkrnlintvsp.sys. Exploit code: github.com/MrAle98/CVE-20… Exploits a paged pool overflow overwriting a _IOP_MC_BUFFER_ENTRY*. Hope you find it useful in case not already shown🙂.
Inspired by @Steph3nSims , I decided to dig into🛡️Windows Defender Exploit Guard myself. Here is the Part-1 of "Reversing Exploit Guard" series, where I break down how it hooks critical functions and defends against stack pivoting. mrt4ntr4.github.io/Exploit-Guard-…
My initial take on eBPF for Windows: scorpiosoftware.net/2025/02/22/int…
Arthur_HMSouza @AHmsouza
327 Followers 5K Following
Courtney Block @CourtneyBl5505
1 Followers 174 Following Recruiting webshell engineers to penetrate websites, with a monthly salary of up to $100,000. If interested, please contact https://t.co/sgEa6Rqmhb
PoiuLkjh @PoiuLkj97148459
27 Followers 2K Following
Cat Taco @d4rkn19ht_
33 Followers 218 Following Solo CTF player who enjoy making memes. A noob in reversing
OwlGene @gene_owl
15 Followers 613 Following
Naman Devnani @naman_devnani
417 Followers 7K Following Security Researcher | Purple Team | Bug Hunter | CTF Player | Science & Tech Enthusiast | R&D | All-Source Intelligence | CAP | DCSP | TTIA | BCDE | COL
Martin @iam_martinbui
27 Followers 295 Following Don't follow your dreams, follow my twitter @iam_martinbui
羅生門 @jookermoon
410 Followers 5K Following
Sungyup Nam @REDPACK_kr
318 Followers 710 Following CTO@78ResearchLab Ph.D.@Cybersecurity I'm interested in Windows LPE exploit, APT, Password Cracking, Deep Learning(specially GANs)
# @p0lak0w
120 Followers 783 Following
78ResearchLab @78_lab
386 Followers 124 Following Cyber Security Research Company - https://t.co/tYFh6ZCNLa…
Gapingvoid Culture De... @gapingvoid
74K Followers 15K Following We deliver a real, human, emotional, immersive connection to work, by designing a more meaningful culture.
7Hang. @XiangHang1
56 Followers 1K Following
Eric Hoang @erichoang851
187 Followers 831 Following
Martin Nguyen @_strongcourage
1K Followers 5K Following Offensive Security Researcher | OSCP, PACES | 🇻🇳🇸🇬🇫🇷🇦🇺🇩🇪🏴🇧🇪🇪🇸🇷🇸🇬🇷🇳🇱🇮🇹🇮🇪🇪🇪🇵🇹🇦🇹🇸🇰
WebDefendo @WDefendo
247 Followers 992 Following WebDefendo è un'associazione no-profit rivolta a sensibilizzare il prossimo dei pericoli che si celano in rete e promuovere un corretto utilizzo del Web.
Maxi Soler @MaxiSoler
6K Followers 5K Following CTO @ArtsSEC | Podcasting @securepodcast from Argentina
fO_000 @sourcell_xu
2 Followers 70 Following
Roberto Di Pietro @Roberto_Di_P
317 Followers 707 Following Professor in Computer Science @KAUST. Leading the efforts to establish a world class #cybersecurity research lab. And still enjoying research.
John Arundel @bitfield
95K Followers 89K Following Go/Rust writer and teacher 🦀. Programming is fun, and you should have fun! Join my Code Club for free Rust + Go learning resources ↓
Bùi Quang Hiếu �... @tykawaii98
699 Followers 631 Following MSRC MVR 2021 - Researcher @crowdfense - Tweets are my own
FuzzingLabs @FuzzingLabs
8K Followers 4K Following Research-oriented Cybersecurity startup specializing in #fuzzing, Vulnerability Research & Offensive security on Mobile, Browser, AI/LLM, Network & Blockchain.
Đào Trọng Nghĩa @nghiadt1098
2K Followers 1K Following Windows user. Pwn2own Vancouver 2021/2022. Pwner at @dfsec_com. Tweets are my own. https://t.co/4Y2w4FalIC
Tornike @tornikepa
562 Followers 3K Following #Linux #Malware Researcher #Pent3ster published vulnerabilities #0day #Exploits advisories from various resources by #Cybersecurity #Bug #ReverseEngineering :wq
Kerz @kerz_
305 Followers 2K Following Security Researcher / Member of @null2root / CTF Player / OSCP / pwn pwn pwn wannabe
GPENSucks @GpenSucks
83 Followers 1K Following
NeyuGn_Van_Neih @NeyugnVan
1 Followers 6 Following
mgeeky | Mariusz Bana... @mariuszbit
14K Followers 812 Following 🔴 Operator, Initial Access afficionado, Researcher, ex-AV engine developer, ex-Malware analyst 🦋 @mgeeky.bsky.social 🫖 green tea lover
ACE Responder @ACEResponder
17K Followers 225 Following Practice threat hunting & detection engineering in a real SIEM with real attacks. Join us and become the best.
Qrious Secure @qriousec
1K Followers 3 Following Debugger is main vehicle to satisfy our boundless Qriousity. A non-profit 🇻🇳 hackers' club driven by passion.
flux @0xfluxsec
1K Followers 942 Following Cyber professional (red team), security and systems programming | Rust | https://t.co/QIih2B7vya | https://t.co/VC3xsm0Wvq
Crowdfense @crowdfense
3K Followers 1K Following Crowdfense is the world-leading research hub and acquisition platform for zero-day exploits and vulnerability research. We offer the highest bounties
Igor Kuznetsov @2igosha
2K Followers 339 Following Reverse engineering, soldering, programming, digital forensics & random stuff | Director @ Kaspersky GReAT | Tweets are my own
Matt Hand @matterpreter
10K Followers 293 Following Director, Security Research @preluderesearch💜 | Author of Evading EDR https://t.co/E5fs0sSTOv 📖 | Adversary tradecraft & windows internals 🦠
sapir federovsky @sapirxfed
5K Followers 183 Following Doing things @wiz_io And then doing more things at home | failed research blog: https://t.co/j2HT1Tpscs
exploits.club @exploitsclub
2K Followers 110 Following A VR, RE, and Exploit Dev weekly newsletter | Join the club Contact: [email protected]
OffSec @offsectraining
325K Followers 119 Following Empowering the world to fight cyber threats with indispensable cybersecurity skills and resources. Build the path to a secure future with OffSec.
SafeBreach @safebreach
2K Followers 537 Following SafeBreach simulates hacker breach methods to quantify risks and validate how well your security controls can stand up to a breach. Funded by @Sequoia
Alon Leviev @alon_leviev
1K Followers 182 Following Vulnerability Researcher at Microsoft | Researcher, Speaker, BJJ Black Belt, Former BJJ World and Euro Champion
Artem I. Baranov 🐦 @artem_i_baranov
7K Followers 325 Following A choom from cybersecurity capable of netrunning forward and backward in time ⏪⏩; mainly on Reddit
immortalp0ny @immortalp0ny
876 Followers 274 Following Passionate in puzzle solving All tweets are my own https://t.co/WvGoeDGB8B
曾哥 @AabyssZG
11K Followers 1K Following 渊龙Sec安全团队(AabyssTeam)创始人 国际云安全联盟(CSA)渗透测试工作组成员 渗透测试 | 造轮达人 | 追洞达人|RedTeam | IOT安全|业余无线电| SecTools | Misc业余选手 | Exploits
NeyuGn_Van_Neih @NeyugnVan
1 Followers 6 Following
Will Schroeder @harmj0y
48K Followers 957 Following Researcher @SpecterOps. Coding towards chaotic good while living on the decision boundary.
Gabriel Landau @GabrielLandau
4K Followers 707 Following Tech Lead @ Elastic Security. Thoughts are my own. Also @[email protected] & @gabriellandau.bsky.social
daem0nc0re @daem0nc0re
6K Followers 200 Following Ph.D. in Physics, Kernel / Hardware Security, Microsoft MVP
Xion @0x10n
4K Followers 123 Following CMU CSD PhD student / 2024 Top#0 Chrome Researcher / P2O Vancouver '24, TyphoonPWN '24/'25, DEFCON CTF 31-33, ... / PPP, KAIST GoN '18, @zer0pts
luckyu @uuulucky
577 Followers 233 Following
サイバー犯罪さ... @g0jirasan
496 Followers 1K Following Threat Researcher @TalosSecurity . RE, malware, Windows kernel and whatnot ↙️↙️↙️ 日本語ちょっと 話す
Giuseppe `N3mes1s` @gN3mes1s
12K Followers 319 Following windows, macos, linux, android && lowlevel && ring-1 lover; EDR chef; malware hunter; purple team💜
Stephen Sims @Steph3nSims
24K Followers 832 Following Perpetual Student | SANS Fellow | Musician | Braggart Hater | Gray Hat Hacking | VR | 🏂 | deadcode | https://t.co/CadJehomsU
Satoshi Tanda @standa_t
8K Followers 395 Following Software security engineer and trainer https://t.co/tenaquooTc
Will Dormann is on Ma... @wdormann
26K Followers 1K Following I play with vulnerabilities and exploits. I used to be here on Twitter but now I'm here: @[email protected] https://t.co/hXggdAVkSQ
d1rkmtr @d1rkmtr
8K Followers 464 Following
Hyp3rlinx @hyp3rlinx
2K Followers 70 Following Security Researcher, I exploit what I wanna exploit ... I exploit what I like..
Yarden Shafir @yarden_shafir
24K Followers 309 Following A circus artist with a visual studio license
Necromancer @ZeroMemoryEx
2K Followers 473 Following Cyber Security Consultant | Security Researcher
quarkslab @quarkslab
12K Followers 9 Following Securing every bit of your data https://t.co/hqdd8jMkYM https://t.co/GOXPtukIXE
Haifei Li @HaifeiLi
8K Followers 151 Following For contact in the security community. NOTE: All the tweets are totally my personal opinions, not about any of my current employer stuff.
Joshua J. Drake @jduck
28K Followers 2K Following Securing the future through modern technology. Founder and Software Security Specialist at @magnetitesec
yongchuank @yongchuank
589 Followers 274 Following Security researcher @pixiepointsec | @yongchuank.bsky.social
GuidedHacking @GuidedHacking
53K Followers 392 Following Reverse Engineering & Game Hacking Courses @ https://t.co/Dl5ED4o7YS
Hex-Rays SA @HexRaysSA
8K Followers 132 Following We are a hi-tech company focusing on binary software analysis. Our main products are IDA Pro and the Hex-Rays Decompiler. Discourse: https://community.hex-raysTrends for United States
You might like
