Jim Saveker @jsaveker
Security Person @ Perpetual | Catching badness, calming nerves | Opinions mine, detections shared saveker.org Austin, TX Joined August 2007-
Tweets27
-
Followers75
-
Following218
-
Likes42
TAG-150 speedrunning malware dev: CastleLoader > CastleBot > CastleRAT in months. Multi-tier C2, Python + C implants, abuse of legitimate services. recordedfuture.com/research/from-…
If you’re not abusing both DNS and ICMP in your RAT, are you even modern malware? gbhackers.com/weaponizing-dn…
UNC6395 abused compromised OAuth tokens from the Salesloft Drift integration to exfiltrate data from Salesforce, including AWS keys/Snowflake creds. So what: SaaS integrations expand your attack surface as much as your own code, but with far less visibility or control.…
Bad actors are straight‑up ghosting your EDR by using Windows internals folks rarely monitor. No SYSTEM, no write‑to‑disk, just NtOpenKeyEx + SeBackupPrivilege + RegQueryMultipleValuesW = creds exfiltration in stealth mode. #Cybersecurity #EDRevasion
Saw a post that suggested Copilot could access files without audit logs. If true, that’s a big deal: no traceability, compliance gaps, blind SOCs, insider risk. Fixed or not, the AI attack surface is growing fast. Guardrails aren’t optional.
If your “attack path” is a 3-page IR note, you shipped prose not signal. Render the attack graph in the ticket...edges, nodes, blast radius. Humans parse DAGs faster than paragraphs. #detectionengineering #detectioneng
Cisco FMC RADIUS bug is CVSS 10.0 “free shell with auth.” Patch before someone else manages your management plane. bleepingcomputer.com/news/security/…
Feature flags are change events. In detection land, they’re deploys without commits. Monitor toggles, log owners, and alert on risky changes seen in conjunction with unusual auth, config drift, or suspicious traffic patterns.
Denylists are meh. Stronger: invariants. Define truths like “no human token gets admin:*” or “prod can’t hit the internet.” Alert on violations = low-noise wins. #thunting #soc #detectioneng
Without eBPF, cloud logs miss the “how.” Without cloud logs, eBPF misses the “who.” Use both and your incident narratives write themselves. #thunting #detectioneng
Passkeys stop password theft. Stolen tokens still might work. Detect replay, not just resets.
OAuth consent popups are the new macros. Create signals on risky scopes, not app names.
This isn’t a jailbreak; it’s ambient auth abuse. A poisoned Calendar title hijacks Gemini to leak mail + poke your devices…no extra clicks beyond normal use. Treat every agent tool like prod auth. bleepingcomputer.com/news/security/…
Watch Entra ID for sudden changes to the Exchange hybrid app, unexpected cred uploads to “Office 365 Exchange Online,” EWS/Graph permission spikes, and token-mint anomalies originating from on-prem. #thunting #CVE 2025-53786 bleepingcomputer.com/news/security/…
Cloud D&R tip: Credentials are gold. Monitor token issuance & refresh events…not just logins.
S3 pre-signed URLs are paper cuts that bleed. Pay careful attention to mass share patterns. Many SaaS apps sling S3 pre-signed URLs for report downloads. This is great for speed, terrible for tracking who just shared it with the whole internet.
DNS over HTTPS kill your DNS hunts? Pivot to TLS: hunt high-entropy SNIs, missing SNI, SNI cert mismatches & rare JA3/4s. Beacon cadence still leaks!!! #thunting
SSRF is still the classic cloud rootkit. Alert on metadata service hits + sudden role assumptions. You’d be shocked how often IMDSv1 is still hanging around from legacy builds or re-enabled for ‘temporary’ troubleshooting.
toolbar.netcraft.com/netblock?q=STA… North Korea's web presence.
Wendy @5Kq3Ppwo32D5y
24 Followers 1K Following
Melissa @Bleeuse0884096
9 Followers 952 Following Confidence is not “they will like me.” Confidence is “I’ll be fine if they don’t.”
SuzanneBuck @A5bcM68q0XZjcSk
3 Followers 273 Following
TeeZeit @wN1Ex64aI6703
8 Followers 394 Following
TWPro_RandomX @TwproR80891
0 Followers 91 Following
Frauhe @Frauhe89053
91 Followers 3K Following
Haurea @Haurea806
50 Followers 598 Following
Felena Duffena @kduffelenaa
24 Followers 461 Following why do all aliens seem to have an intrest with the USA ?
Dotinoobl @DotinooblMvm8
37 Followers 1K Following
Noosee @NooseezKtMl
66 Followers 6K Following
babysbreath @babysbreat4625
56 Followers 4K Following
Noneal @NonealtQv6
78 Followers 7K Following
Oren Leannon @OLeannon73865
23 Followers 2K Following
Slewsu @Slewsuk5hhJlS
37 Followers 3K Following
Deshesez @DeshesezzGL0Mw
59 Followers 5K Following
PagAusten @OPJj65r81bAr6B7
78 Followers 7K Following
EleanoreElinor @s7q5XKRadKsj5bR
69 Followers 7K Following
MartinaMalthus @7Tv7UaYWxZf77M
73 Followers 7K Following
BonnieBaldwin @qAoj1k8EQ7L8g
72 Followers 7K Following
Theathurt @TheathurtahNc
41 Followers 4K Following
WinniNorth @ZkFMaDyfiK5W6
67 Followers 7K Following
TracyFord @DE4aJ61oR3I5PQm
71 Followers 7K Following
Soase @SoaseRpe
32 Followers 4K Following
Shessawsh @Shessawsh_5R8w
32 Followers 3K Following
Pandora @arashimato83402
64 Followers 5K Following
SaraSurrey @i5K42Vj5W234l
24 Followers 2K Following
MarjorieLandon @d0azdGHCvx3686d
44 Followers 4K Following
ごとうかずえ @gotoukazue83388
71 Followers 7K Following
DianaMaria @o0MvPuvu9xX2Wd
60 Followers 7K Following
PhoenixSalome @aTBws9Ud75BAdac
79 Followers 7K Following
. @HeithPhePhe888
90 Followers 436 Following
Mike @porrig
393 Followers 373 Following United fan (LUHG). 'You can’t solve today’s problems with yesterday’s technology.' - Aneel Bhusri, co-CEO of Workday
Leean Saveker @LSaveker50134
0 Followers 4 Following
jack🇦🇶 @_Jackg3
99 Followers 3K Following #bitcoin and chill. #nostr: npub1sg6plzptd64u62a878hep2kev88swjh3tw00gjsfl8f237lmu63q0uf63m
Fry @Fryx0r
267 Followers 494 Following Level 3 Magic judge, I.T Security Guy protecting The Googs. He/Him.
Conelly Cocktails @drinkconelly
427 Followers 580 Following Cocktails with premium liquor & all natural juices for the home, the pool, beach, hotels, airlines, cruise ships, for anywhere!
John Russell @Vapeshed
736 Followers 781 Following Scottish Electronic Cigarette Company We are at Alloa, Methil, Coalsnaughton, Larbert, and Stirling market every week Web Shop Now Open
ViZi @eCigaretteMods
893 Followers 636 Following Every commercial eCigarette modification listed. Find your favorite and write a review!
Smoke Frii @smokefrii
223 Followers 183 Following Founded in 2009, Frii is an independent distributor of electronic cigarettes.
Dark Web Informer @DarkWebInformer
129K Followers 60 Following Providing Cyber Threat Intelligence from the Dark Web & Clearnet: Breaches, Ransomware, Darknet Markets, Threat Alerts & more. https://t.co/Fi7VW9lg94
Shanholo @ShanHolo
2K Followers 362 Following Another blue team member…..#CSIRT #DFIR #Malware #4n6 #ThreatIntel and following the white rabbit...
ShadowOpCode @ShadowOpCode
573 Followers 113 Following Malware analyst & reverse engineer 🧠 Threat intel on stealers, RATs, live campaigns 🕵️ Technical analysis. No buzzwords. 📍DM open for research collabs
Christian Beedgen @raychaser
963 Followers 797 Following @[email protected] — Co-Founder & CEO Perpetual Systems. Doggles fanatic. Opinions my own. he/him
FOX 7 Austin @fox7austin
163K Followers 270 Following We cover local news Austin and in Central Texas. Got a news tip? Call us at 512-472-0988 or email us: [email protected]
shadcn @shadcn
183K Followers 349 Following I own a computer / I built https://t.co/HJcOr0AmKT & https://t.co/5FRvxujR8x / Currently @vercel.
HD Moore @hdmoore
87K Followers 509 Following Founder & CEO of runZero (@runZeroInc), previously the founder and lead developer of Metasploit, a CSO, a consultant, and the head of various research teams.
Jason Zhou @jasonzhou1993
25K Followers 531 Following I build & teach AI stuff | Learn to build with AI at @aibuilderclub_ | Product @RelevanceAI_ @SuperDesignDev
Will McGugan @willmcgugan
36K Followers 2K Following Terminal hater. Hyperborean Python expert, PSF fellow, author, humanist, husband, sometimes wildlife photographer. He/him @[email protected]
Andrew @ Don’t Walk... @DontWalkRUN
59K Followers 3K Following Senior Political Analyst / Austere Political Scholar / "A Random Guy" - Brian Stelter / Over 725k Subscribers on YouTube / #WangGang
Avery Tomasco @averytomascowx
24K Followers 341 Following 4x Emmy winning Meteorologist at @CBSAustin. AMS Certified #772. Former student of Texas A&M University 👍
This You? @Thiss_Youu
208K Followers 14 Following "We do a little trolling". DM or tag me for submissions.
OSINTtechnical @Osinttechnical
1.1M Followers 865 Following PAI enjoyer, OSINT guy @hntrbrkmedia, my views/freezing cold takes are my own. For full disclosures, visit https://t.co/JOtQx4pI3e.
OSINTdefender @sentdefender
1.5M Followers 1K Following Open Source Intelligence Monitor focused on Europe and Conflicts across the World. RT ≠ Endorsement. Want to Support my Work? https://t.co/PcUbewvWPr
The All-In Podcast @theallinpod
522K Followers 7 Following @chamath, @jason, @davidsacks, and @friedberg cover all things economic, tech, political, social, and poker.
Austin Emergency Mana... @AustinHSEM
25K Followers 266 Following Preparedness info and emergency notifications. Operated by Austin HSEM PIO. Dial 911 for help. Do not use for open records requests, use https://t.co/V9sdEdTGOG.
Justine Moore @venturetwins
125K Followers 972 Following Partner @a16z AI 🤖 and twin to @omooretweets | Investor in @elevenlabsio, @krea_ai, @bfl_ml, @hedra_labs, @WaveFormsAI, @ViggleAI, & more
Olivia Moore @omooretweets
67K Followers 842 Following Partner @a16z and twin to @venturetwins | Investor in @happyrobot_ai, @krea_ai, @tomaauto, @partiful, Salient, @scribenoteinc & more
Cyan Banister @cyantist
74K Followers 4K Following Venture Artist @longjourneyvc, joy amplifier. subscription fees go to Inflection Grants: https://t.co/uSqtEEfUf3.
Marc Andreessen 🇺�... @pmarca
1.9M Followers 27K Following Yes, I can see some risk that your threat to jail Internet company executives for not censorsing aggressively enough could backfire.
Open Source Intel @Osint613
701K Followers 898 Following Monitoring Real-Time News & Open Source Intelligence • Middle East • US • Global Events • Anything on my mind
MAGA Voice @MAGAVoice
1.2M Followers 513 Following Want to take back OUR country? JOIN ME 🇺🇸 Donald Trump won🥇Proud Patriot. Pro Elon Musk
Dark Reading @DarkReading
342K Followers 48 Following One of the most widely read and trusted cybersecurity news sites, providing IT security professionals informed insights into the latest news and trends.
Schneier Blog @schneierblog
143K Followers 0 Following Bruce Schneier is an internationally renowned security technologist and author. Described by The Economist as a "security guru"
Ben Shapiro @benshapiro
7.8M Followers 481 Following Daily Wire co-founder, host of @benshapiroshow, #1 NYT bestselling author, America’s #1 ex-rapper. Order my new book, Lions and Scavengers below
NASA @NASA
87.8M Followers 154 Following Official NASA account. Exploring the universe, advancing science, and inspiring the next generation of explorers. Verification: https://t.co/8nok3NP4PW
MrBeast @MrBeast
33.2M Followers 2K Following DONATE TO TEAMWATER $1 IS 1 YEAR OF CLEAN WATER FOR SOMEONE IN NEED!
billy leonard @billyleonard
5K Followers 656 Following pogue life. @Google TAG, Global Head of Analysis of State Sponsored Hacking And Threats.
Mandiant (part of Goo... @Mandiant
127K Followers 4K Following We’re determined to make organizations secure against cyber threats and confident in their readiness.
Chris Bakke @ChrisJBakke
230K Followers 155 Following Meandering. Founder with exits to @X @Indeed @Zillow
Libs of TikTok @libsoftiktok
4.4M Followers 1K Following News you can’t see anywhere else. 📧 [email protected]. DM submissions. Bookings: [email protected]. ⬇️Subscribe to our newsletter
Robert F. Kennedy Jr @RobertKennedyJr
5.7M Followers 936 Following Posts on this account are my personal views.
Vivek Ramaswamy @VivekGRamaswamy
3.6M Followers 299 Following Father. Husband. Entrepreneur. Candidate for Governor of Ohio.
TechCrunch @TechCrunch
10.3M Followers 463 Following Technology news and analysis with a focus on founders and startup teams. Got a tip? https://t.co/J0WxnZxSRY
Tim Ferriss @tferriss
2.0M Followers 3K Following Author of 5 #1 NYT/WSJ bestsellers, Creator of COYOTE card game with 300M+ viral video views (https://t.co/kef2X6pF3K), Tim Ferriss Show podcast with 1B+ downloads
Fan Elon Musk @ElonMuskPD
2.5M Followers 51 Following Who controls the memes, controls the Universe • Dogecoin • Elon Musk Parody Account
Mario Nawfal @MarioNawfal
2.4M Followers 49K Following Largest Show on X | Investor 700+ Startups | Founder @ibcgroupio , https://t.co/sw7OQ5KgAW
Jeff Bezos @JeffBezos
6.9M Followers 474 Following Amazon. Blue Origin. Washington Post. Bezos Earth Fund. Bezos Academy.
Tim Cook @tim_cook
14.9M Followers 70 Following Apple CEO Auburn 🏀 🏈 Duke 🏀 National Parks 🏞️ “Life's most persistent and urgent question is, 'What are you doing for others?'” - MLK. he/him
Bill Gates @BillGates
66.4M Followers 572 Following Sharing things I'm learning through my foundation work and other interests.Trends for United States
You might like
