Kévin GERVOT (Mizu) @kevin_mizu
Researcher for @ctbbpodcast lab 🐛 | DOMLogger++ developer 👨🏻💻 | CTF with @FlatNetworkOrg, @rhackgondins 🦦 | @ECSC_TeamFrance 2023 🇫🇷 mizu.re Joined May 2017-
Tweets1K
-
Followers6K
-
Following754
-
Likes4K
Imade a web challenge, I hope you will enjoy it! 😁
Kévin GERVOT (Mizu) retweeted
We've just published a novel technique to bypass the __Host and __Secure cookie flags, to achieve maximum impact for your cookie injection findings: portswigger.net/research/cooki…
Kévin GERVOT (Mizu) retweeted
The last Intigriti challenge by @0xblackbird was a fun combination of SSRF to RCE using a surprisingly exploitable pitfall in NextJS middleware. Check out my writeup below: jorianwoltjer.com/blog/p/ctf/int…
Kévin GERVOT (Mizu) retweeted
I discovered how to use CSS to steal attribute data without selectors and stylesheet imports! This means you can now exploit CSS injection via style attributes! Learn how below: portswigger.net/research/inlin…
Kévin GERVOT (Mizu) retweeted
When CTF meets Bug Bounty At WACON CTF Finals 2023 I created an Opera challenge. Only one solver: @lj1nu . Turns out his unintended solve uncovered a real UXSS in Opera Browser that could leak URLs & takeover any account that uses OAuth flow! medium.com/@renwa/when-ct…
Kévin GERVOT (Mizu) retweeted
@rez0__ is right about hackbots. I've starting to work on tailored AI Agents to expand coverage on specific bugs. But we will need tooling and sharing amongst researchers, so I'll try to document and share as I progress : ) First thing I wanted to do was to provide it access to…
Kévin GERVOT (Mizu) retweeted
Ever seen two responses to one request? That's just pipelining... or is it? I've just published "Beware the false false-positive: how to distinguish HTTP pipelining from request smuggling" 👇
Kévin GERVOT (Mizu) retweeted
🚀 Ebka AI is now available in the @CaidoIO Plugins Store The MCP integration is tested with Claude and Cursor. For open-source projects, you can now just ask your IDE: "Create Replay collections for each module and populate them with requests" caido.io/plugins
Kévin GERVOT (Mizu) retweeted
Just published my first blog post "Cache Deception + CSPT: Turning Non Impactful Findings into Account Takeover" You can read the full write-up here: zere.es/posts/cache-de…
Kévin GERVOT (Mizu) retweeted
A major problem with using AI with Burp Suite / Caido is that they cannot be fully integrated into a pipeline together with other AI MCP servers. I tried to solve this problem for @CaidoIO with my own plugin - github.com/Slonser/Ebka-C…
Kévin GERVOT (Mizu) retweeted
DomLoggerpp by @kevin_mizu is a simple web extension that helps you identify JavaScript DOM sinks that could lead to DOM-based vulnerabilities (such as XSS)! 😎 Check it out! 👇 🔗 github.com/kevin-mizu/dom…
Kévin GERVOT (Mizu) retweeted
The whitepaper is live! Learn how to win the HTTP desync endgame... and why HTTP/1.1 needs to die: http1mustdie.com
Kévin GERVOT (Mizu) retweeted
@kevin_mizu @Rhynorater @_Worty It affects almost everything which integerates git including your fav IDEs as well. Trust Workspace prompt in VSCode is the only line of defense , next time be careful marking everything as trusted :p @justinsteven has a 🔥research blogpost on it as well github.com/justinsteven/a…
Kévin GERVOT (Mizu) retweeted
Another challenge that I prepared for justCTF2025 was about a neat Prototype Pollution variation that bypasses commong mitigation strategies and which isn't commonly known, even in the infosec community! Checkout the writeup! gist.github.com/terjanq/fa6f19…
Rémi GASCOU (Podalir... @podalirius_
8K Followers 650 Following Security Researcher & Speaker | Microsoft Security MVP | Developer of security tools 🎬 https://t.co/QaAENc4NcY
Laluka@OffenSkill @TheLaluka
5K Followers 1K Following Sharing is Caring, Hacker, Eternel Learner, Cat! =^~^=
Charlie Bromberg « ... @_nwodtuhs
15K Followers 653 Following Trying to hack the way we hack things 🏴☠️
Intigriti @intigriti
193K Followers 658 Following Bug bounty & VDP platform trusted by the world’s largest organisations! 🌍
Worty @_Worty
3K Followers 553 Following Organizer of @HeroCTF || ctf w/ @FlatNetworkOrg || TeamFR 2021, 2022 & 2025 🇫🇷 || 🥷 @Synacktiv
voydstack @voydstack
2K Followers 929 Following 🥷 @Synacktiv | CTF with @RMUBYGG, @Hexagonctf, @ECSC_TeamFrance 20/21/22/23/24
Root-Me @rootme_org
20K Followers 480 Following Root Me allows everyone to test and improve their knowledge in computer security and hacking. Legal. Free. Realistic. Discord: https://t.co/G6y1wDrdOn
Nishacid @Nishacid
2K Followers 256 Following Cybersecurity enthusiast | Bug Hunter 🪲| Staff @RootMe_org | @GrehackConf 🏔️ | CTF @RMUBYGG 🇫🇷
\` @bWlrYQ
469 Followers 271 Following Administrator @rootme_org ― When in the middle of a boredom, computers are my subject of interest
LiveOverflow 🔴 @LiveOverflow
155K Followers 1K Following wannabe hacker... he/him 🌱 grow your hacking skills @hextreeio
YesWeHack ⠵ @yeswehack
39K Followers 3K Following Global Bug Bounty & Vulnerability Management Platform 🎯 https://t.co/57gODBq2WZ 👾 https://t.co/ICc6RyhJTp 💡 https://t.co/KNYxhkKuzt
Lupin @0xLupin
17K Followers 677 Following Roni Carta alias Lupin. Co-Founder of Lupin & Holmes. R&D. Red Teamer. Bug Hunter. Musician 🤘
Ben Sadeghipour @NahamSec
233K Followers 1K Following Cofounder @hackinghub_io | Advisor @CaidoIO. I hack companies and make content about it. #NahamCon organizer. ex @hacker0x01🇮🇷
Euz | Matthieu 🐙 @_Euzebius
3K Followers 2K Following Gamer, hacker. Purple teamer at 💜. Infosec swiss army knife. Don't panic, hack the planet. HTB 🇫🇷 ambassador : euz. I didn't choose InfoSec, it chose me.
Noobosaurus R3x 🦖 @NoobosaurusR3x
2K Followers 648 Following L3 H4ck3r L3 Plu5 n00b Du w3b https://t.co/9Ey8TAzkLT https://t.co/jCTWg1DAPe
Beta Wolfpup @BetaWolfpup
456 Followers 6K Following 🐺 Relist Wolves 🐺 | SFW | Never disingenuous | Blessed | Hacker | 🔞 ~ Pup, only in the traditional, fluffy sense. ~
Raphaël Lacroix @Chepycou
0 Followers 64 Following 🇫🇷 French ✏️ Aspiring penetration tester (Currently looking for a Penetration Tester position in Toulouse). CTF Player 🎹 Plays piano, drums and composes
Zaban @Zabannn
4 Followers 133 Following
Kido❄️ @bc98108f740c406
3 Followers 167 Following
kaimeow @k41me0w_
2 Followers 110 Following Web2 & Web3 Exploitation lover but NO skill… please help😭
securitysuit @securitysuit
0 Followers 5 Following
Dorris Hermie @DorrisHerm87090
0 Followers 34 Following
threathunterxx @threathuntxx
44 Followers 1K Following This account is for threat research purposes 😬 (not affiliated with any account) | For personal use
PSYPHER @CbVishak
0 Followers 27 Following CyberSec Researcher | Top 4% @TryHackMe | C|EH v13 | CCSA | ASA I CST | Ethical Hacker |
root@AkashHamal0x01:~... @AkashHamal0x01
9K Followers 712 Following Solo | https://t.co/I6KH8WN8nm | Community Helper 🤝| WebApp Security 🐞 | Avid Learner 📖 | Male | Father of One | Married 💍 Asia❤️ . wiener/peter
Pouria Jafaripourdara... @PJP_17
0 Followers 12 Following
Oveshen Govender @ovshn_
3 Followers 48 Following full-time sh*T poster/3three-cloud-services xd & A Member of CHESS.
AIStrikeSec ֎ @AIStrikeSec
122 Followers 2K Following AIStrikeSec : Empowering offensive security with cutting-edge AI. Smarter penetration testing & threat simulation.
zYStCfDaBGWMTYZ @zYStCfDaBGWMTYZ
0 Followers 511 Following
S.ih @007_isnuoT
2K Followers 2K Following ┳┻|𝔑𝔢𝔳𝔢𝔯 𝔗𝔯𝔲𝔰𝔱 𝔗𝔬 𝔞 𝔘𝔰𝔢𝔯 ┻┳|𝔑𝔢𝔳𝔢𝔯 𝔗𝔯𝔲𝔰𝔱 𝔗𝔬 𝔞 𝔘𝔰𝔢𝔯 ┳┻| ┻┳| ┳┻| ┻┳| ┳┻| _ ┻┳| •.•) Exiting vim isn’t that ┳┻|⊂ノ hard ┻┳|
Duc Nguyen @derive206
0 Followers 80 Following
Mohammad Hosein Akbar... @akbarixpv
230 Followers 2K Following توسعه دهنده ی وب و اندروید #web #android #Developer
Saad Saeed @saadsaeed1019
34 Followers 2K Following Security researcher in progress | Exploring adversaries & defenses | Aspiring Purple Teamer | Building skills, breaking barriers.
HeroCTF @HeroCTF
955 Followers 10 Following #HeroCTF is an online cybersecurity competition for beginners and advanced players. ✨ 🆕 28-30 Nov. 2025 📅
eric kamoga @EricKamoga
120 Followers 77 Following Architect _ minimalism | eco-friendliness | sustainability
jahnvi🌸👩💻 @jahnvi_oberoi
37 Followers 87 Following Engineering student with goal to be better than average
Haany @haanynooh
9 Followers 646 Following
. @peinetesteur
922 Followers 341 Following
Ruben Sousa @RubenSousa007
17 Followers 180 Following CBROPS, CCNA, CCNP Security, CEH, EJPT, TCM Security courses, Pentester Path from HTB and OSCP taken. Starting BB journey
spoder @spoderx555
4 Followers 82 Following
Zeeshan Afridi @zeeshanafridai
407 Followers 457 Following Security Researcher | H4cker by passion | Penetration Tester | Bug Bounty Hunter | ambivert | Founder of Team Fir3w4ll_F3ll0ws #Certified_Hacker🇵🇰
Zrohor @Zrohor567
44 Followers 2K Following
kr!5n@ @krisna_2021
3 Followers 63 Following
Offensive Brute @OffensiveBrute9
31 Followers 1K Following
sathish R @sathish23506882
244 Followers 6K Following
Ian Bouchard @Corb3nik
5K Followers 519 Following Co-Founder @CaidoIO | Security Enthusiast | CTF Fanatic | Bug Bounty Hunter
Meni Tasa @MeniTasa
18 Followers 84 Following CyberOps Leader | 🛡️ CISO | ☁️ CloudSec | 🌐 NetSec (CCNP) | 🔍 Web Pentester | ✍️ Writer
Mrs.Robot 🤖 @opalegyn
1 Followers 51 Following
Nicolás @Nicols61423791
0 Followers 135 Following Player of Brawl Stars. 21.500 trophies. Player looking👀 club. Small youtuber of Brawl Stars: nicoclas 10.
Rémi GASCOU (Podalir... @podalirius_
8K Followers 650 Following Security Researcher & Speaker | Microsoft Security MVP | Developer of security tools 🎬 https://t.co/QaAENc4NcY
Laluka@OffenSkill @TheLaluka
5K Followers 1K Following Sharing is Caring, Hacker, Eternel Learner, Cat! =^~^=
Charlie Bromberg « ... @_nwodtuhs
15K Followers 653 Following Trying to hack the way we hack things 🏴☠️
vx-underground @vxunderground
368K Followers 290 Following The largest collection of malware source code, samples, and papers on the internet. Password: infected
Intigriti @intigriti
193K Followers 658 Following Bug bounty & VDP platform trusted by the world’s largest organisations! 🌍
Worty @_Worty
3K Followers 553 Following Organizer of @HeroCTF || ctf w/ @FlatNetworkOrg || TeamFR 2021, 2022 & 2025 🇫🇷 || 🥷 @Synacktiv
Synacktiv @Synacktiv
20K Followers 271 Following Offensive security company. Dojo of many ninjas. Red teaming, reverse engineering, vuln research, dev of security tools and incident response.
voydstack @voydstack
2K Followers 929 Following 🥷 @Synacktiv | CTF with @RMUBYGG, @Hexagonctf, @ECSC_TeamFrance 20/21/22/23/24
Root-Me @rootme_org
20K Followers 480 Following Root Me allows everyone to test and improve their knowledge in computer security and hacking. Legal. Free. Realistic. Discord: https://t.co/G6y1wDrdOn
mpgn @mpgn_x64
18K Followers 230 Following Flibustier du net ̿ ̿̿'̿'\̵͇̿̿\=(•̪●)=/̵͇̿̿/'̿̿ ̿ ̿ ̿ Podcast Hack'n Speak @hacknspeak / https://t.co/GyACSFg9mw
Nishacid @Nishacid
2K Followers 256 Following Cybersecurity enthusiast | Bug Hunter 🪲| Staff @RootMe_org | @GrehackConf 🏔️ | CTF @RMUBYGG 🇫🇷
Hack The Box @hackthebox_eu
229K Followers 229 Following #1 Cyber Performance Center, providing a human-first platform to create and maintain high-performing cybersecurity individuals and organizations.
\` @bWlrYQ
469 Followers 271 Following Administrator @rootme_org ― When in the middle of a boredom, computers are my subject of interest
cts🌸 @gf_256
61K Followers 820 Following Co-founder and hacker @zellic_io & @pb_ctf | https://t.co/nlNai6iiMP | 24 Intern @egirl_capital slow to reply to DMs
LiveOverflow 🔴 @LiveOverflow
155K Followers 1K Following wannabe hacker... he/him 🌱 grow your hacking skills @hextreeio
John Hammond @_JohnHammond
298K Followers 3K Following Cybersecurity Researcher @HuntressLabs || Just Hacking Training @JustHackingHQ w/ @ethicalhacker || https://t.co/UtsNJiyQtS || https://t.co/narO3sz7y6
YesWeHack ⠵ @yeswehack
39K Followers 3K Following Global Bug Bounty & Vulnerability Management Platform 🎯 https://t.co/57gODBq2WZ 👾 https://t.co/ICc6RyhJTp 💡 https://t.co/KNYxhkKuzt
Microsoft Security Re... @msftsecresponse
145K Followers 215 Following We are the Microsoft Security Response Center. To report security vulnerabilities or abuse in Microsoft products, visit https://t.co/kxEbdfMny1.
Akamai Security Intel... @akamai_research
26K Followers 109 Following All security research, all the time. Bringing you the latest insights from @Akamai’s research teams across the globe.
Ariel Garcia @Arl_rose
6K Followers 3K Following Community Builder. Pentester. Bug bounty Hunter. Bug bounty village @ DEFCON. https://t.co/PojmVAcqXQ Tweets are my own and not the views of my employer.
Sylvain HAJRI @navlys__
3K Followers 903 Following Founder @Epieos – Leveraging reverse engineering to deliver #OSINT 0days for tracking criminals. @_leHACK_ #OsintVillage founder | @OsintFr co-founder.
bsysop @bsysop
6K Followers 773 Following TOP14 @bugcrowd, TOP7 P1 Warrior 🚀 H1 AWC Champions 2024 and 2025 https://t.co/4PRRx7QQaH 🤟🏻 https://t.co/eehzMtCJO4
Medusa @_medusa_1_
426 Followers 394 Following
Claude @claudeai
108K Followers 1 Following Claude is an AI assistant built by @anthropicai to be safe, accurate, and secure. Talk to Claude on https://t.co/ZhTwG8dz3D or download the app.
sw33tLie @sw33tLie
10K Followers 909 Following Web application hacker, 25yo. Top 30 @ https://t.co/wX0yr85Tzk https://t.co/ZI7a8oJJcQ https://t.co/LGYK7tMOGo
Piotr Bazydło @chudyPB
4K Followers 307 Following Principal Vulnerability Researcher at watchTowr | Previously: Zero Day Initiative | @[email protected]
Santiago Lopez @santi_lopezz99
23K Followers 184 Following World's first $1M hacker | Top 3 @hacker0x01
d3d aka dead (dead, �... @deadvolvo
5K Followers 182 Following Senior Security Researcher @akamai - Malicious Group - SRT - DoD researcher of the year 2022 - Top 10 web attacks 2023 - CRTO - MSRC Top 75 in Q1/Q2 2025
DavenSec @Dav3nn
34 Followers 55 Following
bebiks @bebiksior
3K Followers 486 Following breaking stuff and developing plugins part-time at @CaidoIO
Harsh Jaiswal @rootxharsh
22K Followers 1K Following Building @hacktronai | researching at @httpvoid0x2f | auditing at @cure53berlin | prev @zomato @vimeo @pdiscoveryio
Dafydd Stuttard @DafyddStuttard
7K Followers 78 Following Founder and Chief Swig at @PortSwigger. Creator of @Burp_Suite and @WebSecAcademy. Author of The Web Application Hacker's Handbook.
Karim Adala @KharaTheOne
126 Followers 205 Following Opinions expressed are solely my own and don't represent Blizzard Entertainment.
Sebastian Lekies @slekies
3K Followers 420 Following Automated Security Scanning & Vulnerability Management @Google
Eduardo Vela @sirdarckcat
12K Followers 602 Following not mad. mentally divergent. personal profile, opinions my own. everything I say is probably wrong. 🐘 @[email protected]
BirdiBirdson @BirdiBirdson
11K Followers 1K Following Making pixelart and video game :) https://t.co/ejTpcSz9Jk
Emilien @Emilien___
52K Followers 16 Following Ancien Maître de Midi dans Les 12 Coups de Midi ! https://t.co/vhlhUcoTxL https://t.co/4SRBHFuIAq
Bug Bounty Village @BugBountyDEFCON
8K Followers 580 Following Official X account for the Bug Bounty Village @DEFCON. Founded by @infinitelogins and @arl_rose.
xssdoctor @xssdoctor
4K Followers 372 Following hacker and cardiologist… not necessarily in that order
Gunnar Andrews @G0LDEN_infosec
5K Followers 916 Following Hack Stuff | Code Stuff | Fitness | Kaizen OSCP | OSWA | OSWE https://t.co/4lgaVGZxd0 https://t.co/db6Gmb2ImT https://t.co/uY8NkPXaqA
Patrik Fehrenbach @ITSecurityguard
31K Followers 285 Following rɪsˈpɒnsəbl dɪsˈkləʊʒə https://t.co/UKFhw5EBwf https://t.co/uCOkOOoNnP
XBOW @Xbow
10K Followers 6 Following Bringing AI to offensive security by autonomously finding and exploiting web vulnerabilities. Watch XBOW hack things: https://t.co/D5Mco1u8zM
Profundis.io @profundisio
680 Followers 0 Following Mapping the internet - turning DNS/host data into intel for sec teams, OSINT & bug-bounty hunters. Automated recon & real-time alerts.
Niemand @niemand_sec
5K Followers 374 Following Security Researcher at @xbow - Founder at @SwordBytesSec - Ex @immunityinc - #BugBounty hunter https://t.co/x39yDRfZoA - Blog https://t.co/5P8YS1OKbh
Vivek Galatage @vivekgalatage
9K Followers 515 Following 20+ yrs of building browsers • chromium, webkit contributor • ♡ compilers, systems, languages • cur: browser co • prev: samsung, nokia, ibm • views are personal
Meta Bug Bounty @metabugbounty
4K Followers 1 Following Updates & announcements related to Meta Bug Bounty program. If you have found a security vulnerability, we encourage you to let us know ⬇️
Hacktron AI @HacktronAI
2K Followers 6 Following Hacktron is an autonomous vulnerability hunter for ambitious engineering teams. Built by world-class security researchers. Powered by one principle: PoC || GTFO
Thomas Stacey @t0xodile
507 Followers 209 Following Penetration tester trying to perform novel research. You can find all of my write-ups and research at https://t.co/2chUIHJDeP.
siunam @siunam321
593 Followers 273 Following 22y/o 🇭🇰 | OSCP, OSWE | White-box Bug Bounty hunter | Web security researcher | Playing CTF with @ARESxCTF, @malta_ctf, @BlackB6a, and NuttyShell
Haicker @haicker_app
249 Followers 3 Following AI code auditors. Cheaper than pentests, smart enough to spot your bad habits. Get Haicker now on https://t.co/rPLvJrB2jP
Isira Adithya @isira_adithya
3K Followers 310 Following 20 years old Ethical hacker from Sri Lanka. Bug Hunter at @intigriti and @Hacker0x01. https://t.co/L9e2yNHr4T
Bug Bounty JP Podcast @bbjppodcast
203 Followers 4 Following バグバウンティなどを対象にバグハントすることが趣味なメンバーによる「セキュリティ雑談のポッドキャスト」 #BBJP_Podcast | 🎙️ Speakers: @scgajge12, @Mokusou4, @ryotkak
Truffle Security @trufflesec
4K Followers 1 Following The TruffleHog company We find credentials, with open source https://t.co/7CnEqo1inq https://t.co/8vZxthRRXX
Liran Tal | 🤖 Hack... @liran_tal
13K Followers 1K Following 🧠 Socially Engineering LLMs 🤖 Hacking AI Agents 🦄 Node.js Secure Coding 🌟 @GitHub Star 🏅 @OpenJS Pathfinder award for Security 🥑 DevRel @snyksec
idek @idekCTF
1K Followers 34 Following We don't even know either | Hosts of idekCTF | CTFtime: https://t.co/kh6m6OPLkX | Not currently recruiting.Trends for United States
6.389 posts
45,5 B posts
43,8 B posts
60 B posts
13,6 B posts
4.044 posts
213 B posts
20,6 B posts
1.061 posts
2.415 posts
3.467 posts
132 B posts
8.962 posts
2.543 posts
12,4 B posts
7.244 posts
1.417 posts
You might like
Rémi GASCOU (Podalir...
@podalirius_
8K Followers
rayanlecat
@rayanlecat
2K Followers
Laluka@OffenSkill
@TheLaluka
5K Followers
Worty
@_Worty
3K Followers
ESN'HACK
@esnhack
2K Followers
voydstack
@voydstack
2K Followers
Ruulian
@Ruulian_
483 Followers
Hell Diner
@DinerHell
406 Followers
Isis
@0x1sis
848 Followers
Noobosaurus R3x 🦖
@NoobosaurusR3x
2K Followers
Nishacid
@Nishacid
2K Followers
Midnight Flag CTF
@MidnightFlag
1K Followers
Vozec
@Vozec1
658 Followers
TRIKKSS
@0xTRIKKSS
994 Followers
Zeecka 🥀
@Zeecka_
2K Followers