ret2src @ret2src
Breaker of Stuff | Injector of 0x41 | Discoverer of Dumb Things | Creator of Glitches. Dropping shells since 0x7DC. Joined July 2021-
Tweets762
-
Followers371
-
Following1K
-
Likes1K
Best Citrix Breakout ever. You can only download .ica files that provide access to certain local applications but breakout out of these applications is not possible? Just modify the .ica file before starting it and remove The InitialProgram= value -> Full Citrix Session! 🤓
The second book in my “being a professional red teamer requires more than just having kick ass technical tradecraft” series is: “Never Split the Difference” by Chris Voss. The reason I picked this book is because red teams rarely control the environments they are operating in.…
The first book in my “being a professional red teamer requires more than just having kick ass technical tradecraft” series is: “Thanks for the Feedback” by Douglas Stone & Sheila Heen. The reason I recommend this book is simple: red teamers spend _a lot_ of time delivering…
I stopped reporting Internet-exposed Citrix Netscaler instances as a vulnerability because dozens of customers argued with me that “it is intended to be exposed directly to the Internet”. I was right all along and will start reporting it again starting today.
I stopped reporting Internet-exposed Citrix Netscaler instances as a vulnerability because dozens of customers argued with me that “it is intended to be exposed directly to the Internet”. I was right all along and will start reporting it again starting today.
“Once you start a Windows machine, it will first attempt to obtain network configuration via DHCPv6 […] due to Windows’ preference for IPv6. […] even if your network does not actively use IPv6.” This makes poisoning using mitm6 especially dangerous: resecurity.com/blog/article/m…
This will be fun
Feeling too familiar with using Sysmon? You can use it for #redteam purposes by having it overwrite the #antimalware executable. Just like I did with #windowsdefender
every programmer must listen to this 👏🏼
I just started a new blog, and this is my first post. I took a bit of PTO, so this is a little record of some fun I had playing around with Intune during that time. It's about enrollment restriction bypass😄 temp43487580.github.io/intune/bypass-…
We're back - returning to the scene of the "crime" - to demonstrate 2 pre-auth RCE chains against Commvault (CVE-2025-57788, CVE-2025-57789, CVE-2025-57790, CVE-2025-57791) Enjoy, and speak soon 😉 labs.watchtowr.com/guess-who-woul…
TIL you can drop the zeroes in IPv4 addresses
Something neat! Turns out, if an IP address has a 0 in one of its octets (like 10.20.0.2), you can omit the zero and still reach the same host! So 10.20.2 works the same as 10.20.0.2
Windows Defender blocks any procdump execution referencing "lsass" on the command line (1️⃣) Simply querying lsass' process ID and using this instead bypasses this somewhat naive detection (2️⃣) Even simpler? Use lsass' service name, "KeyIso" 🤷 (3️⃣)
Thanks to everyone who joined my DEFCON33 talk!🎉 For those of you who missed it and are interested in seeing how we can extract cleartext credentials and bypass MFA directly from the official Microsoft login page, I just uploaded the recording to YouTube: youtu.be/z6GJqrkL0S0
$5 Membership sale is live for the next 24 hours: account.shodan.io/billing/member
I stumbled upon this tweet and dug a bit deeper into the internals of ksetup.exe: pentest.party/posts/2025/kse… When you are local admin and need machine account credentials this could be a viable alternative to the good old LSA dump.
I stumbled upon this tweet and dug a bit deeper into the internals of ksetup.exe: pentest.party/posts/2025/kse… When you are local admin and need machine account credentials this could be a viable alternative to the good old LSA dump.
It’s merged into master if you want to test it — feedback welcome 🪂
It’s merged into master if you want to test it — feedback welcome 🪂
Try this out on your next target! Some more gold from the guys at @ctbbpodcast! 🔥
When you finally get DA but now your report is a million pages long.
theonexc @theonexc1
0 Followers 3K Following
Maria @piercemaria76
277 Followers 3K Following
Hans Meuris @Meurisjo
121 Followers 1K Following
Eeee @zzznewone
2 Followers 35 Following
cheesyquesadilla @quesadilla_exe
962 Followers 4K Following CTF player and CS student. Still bad at computers.
SquareZer0 @__squarezero__
131 Followers 1K Following @protos3c team member | CTF player | Pentester
Yglarne @Yglarne61477
5 Followers 289 Following
cyber-ipman @Cyberipman
876 Followers 325 Following Girl dad | Aerospace Security Engineer/RMF Analyst | Windows/Linux tryhard | Infinite conquest of learning | OSRS lifelong nerd
Lucia @2vEYTPNs0tI68A
27 Followers 1K Following
Veferw @Veferw675397
20 Followers 1K Following
Awpiemuk @Awpiemuk53408
106 Followers 3K Following
0xLite@Ha @AzyzChayeb
888 Followers 7K Following
Norbert @NB1r0
58 Followers 3K Following
George Karchemsky @gkarchemsky
84 Followers 1K Following
Two Seven One Three @TwoSevenOneT
2K Followers 1K Following Chief Security Officer (CSO) || Security Researcher at https://t.co/YsorB5YEAu || Penetration Tester || Red Teamer || Social Engineering Awareness Trainer
Alaerpirm @Alaerpirm837
26 Followers 910 Following
𝓐𝓷𝓷𝓪 ✍ @Anna_online
2K Followers 2K Following Here for the enjoyment and elucidation.😉 Explorer at heart. I once climbed the pyramid wearing high heels and a skirt.
Aleck Plouffe @veFwLujd
0 Followers 9 Following
Poxa @Poxa713
20 Followers 960 Following
Pinkie Keeling @pinkie77774
78 Followers 3K Following
Constantin @HackmichNet
465 Followers 2K Following Windows security novice ... Always try to learn something new ... Happy hacking
Jean @Jean_Maes_1994
12K Followers 1K Following @sansoffensive Certified instructor/SEC565 author/SEC699 co author
test domain @User2Micro
721 Followers 4K Following
Sebastian @0xB455
270 Followers 314 Following retired eSports pioneer; nowadays dwelling in the #infosec realms; offensive guy; 20y+ in security; occasionally blogging @ https://t.co/2v0NG2niap; LVL 3 dad
bruk belay @zbruk7
0 Followers 59 Following
Tuhin Mmukherjee @unknown1111wolf
314 Followers 3K Following Football Freak, Hacker, Bugbounty Hunter, Appsec, Dog Lover 🇮🇳
Rhiegir @Rhiegir7696
34 Followers 1K Following
Feedalm @Feedalm0256
63 Followers 3K Following
Spiros Fraganastasis @m3g9tr0n
14K Followers 1K Following Team @hashcat! Eternal n00b and knowledge seeker! Age is just a number and motivation is the fuel! Whatever you do in your life, do not forget to be humble.
defaultacc @crisisacted
0 Followers 40 Following
potatoherder @hackingforbeer
148 Followers 1K Following yeah nah, janitor. copy pasting through your network. floppy saves
Obrorajo @Obrorajo083
32 Followers 1K Following
Doris Britney @BritneyDor90407
5 Followers 172 Following Recruiting webshell engineers to penetrate websites, with a monthly salary of up to $100,000. If interested, please contact https://t.co/k37v4g7kfW
annumeena @annumeena19
88 Followers 6K Following
Cecil Lin @dumpywizard
2 Followers 145 Following
Passive Directory @PASVDirectory
46 Followers 551 Following Slowly figuring out AD. Security Specialist @ Secura. Opinions and tweets are my own you know the drill.
Binary Defense @Binary_Defense
13K Followers 492 Following We're determined to make the world a safer place through our-industry recognized managed security services. Founded by @HackingDave|Sister company @TrustedSec
Dave W Plummer @davepl1968
88K Followers 73 Following Hi! I'm Dave Plummer. You might remember me from such Windows components as Task Manager, Windows Pinball, Calc, ZIPFolders, Product Activation, etc. Cheers!
Blake Burge @blakeaburge
415K Followers 198 Following On a mission to build meaningful things with @sahilbloom. Fan of Bourbon, Books, and Good Advice 🥃 📚 💬
Brad Spengler @spendergrsec
4K Followers 4 Following President of @opensrcsec, developer of @grsecurity Personal account
cyber-ipman @Cyberipman
876 Followers 325 Following Girl dad | Aerospace Security Engineer/RMF Analyst | Windows/Linux tryhard | Infinite conquest of learning | OSRS lifelong nerd
Flipper Zero @flipper_zero
101K Followers 145 Following A portable multi-tool device in a toy-like body for pentesters and hardware geeks. Buy worldwide here ➡️ https://t.co/n09EKVnqri
Jacob Krell @hackerfren
2K Followers 657 Following Cybersec/AI expert | Hacker | Pilot | OSCE3, CISSP, CCNP, CSIE | Better than a thousand hollow words is one word that brings peace | meme magic 🐸
Shodan @shodanhq
108K Followers 2 Following Monitor your external network, search the Internet of Things and perform empirical market research. You can also find us on https://t.co/nPLFbFy8R5
EZ @IAMERICAbooted
2K Followers 1K Following Yesterday is history. Tomorrow is a mystery. Cloud Solutions Engineer at Contoso. Hacktive Directory admin. Posts don't represent my employer(s).
Wil Gibbs @cl4sm
523 Followers 241 Following @ASU Sefcom PhD Student | @Shellphish Captain Emeritus | AIxCC Shellphish Team Lead | pwn and rev is where it’s at | 日本語🤏
Red Siege Information... @RedSiege
10K Followers 1K Following Penetration Testing, Purple Team, Red Team & Adversary Emulation, Security Posture Review and Training Let our Offense, Prepare your Defense. #weareoffensive
MOR DAVID @m0rd4vid
234 Followers 435 Following Cyber Security Expert & Red Teamer with 5+ Years of Experience.
Paweł Hałdrzyński @phaldrzynski
779 Followers 45 Following Researching web applications' security at daylight - auditing smart contracts at night
Yassin @Yass1nMohamed
502 Followers 274 Following Cyber Security Engineer | AI & Robotics Enthusiast | C/Python/JS Developer
fin3ss3g0d @fin3ss3g0d
217 Followers 64 Following Red Team Operator/Pen Tester | Offensive Security Software Developer | Tweets are unaffiliated with my employer | OSCP | OSEP | CRTO | CRTL
Justin Kohler @JustinKohler10
659 Followers 181 Following VP Products @Specterops. Father of 4. Biking is life. He/him.
PinkDraconian @PinkDraconian
11K Followers 279 Following ▶️ YouTube: https://t.co/j2KvfZx6Un 💼 LinkedIn: https://t.co/1Ky1Jft7mj
Soroush Dalili @irsdl
20K Followers 909 Following Hacker (ethical), web appsec specialist, trainer, tools builder & apps breaker, @SecProjectLtd founder 🕸️https://t.co/YipuTcYnWc🥷 🍏A dad-joke maker🍐
Two Seven One Three @TwoSevenOneT
2K Followers 1K Following Chief Security Officer (CSO) || Security Researcher at https://t.co/YsorB5YEAu || Penetration Tester || Red Teamer || Social Engineering Awareness Trainer
Ezra Woods @Shammahwoods
114 Followers 58 Following we do a bit of security research ‘round these parts.
Mike Manrod @CroodSolutions
2K Followers 2K Following CISO and faculty by day, adversary emulation/tools by night, bad jokes and memes all the time. Profile photo image credit to Tib3rius. My dog disapproves.
Apple Design @TheAppleDesign
58K Followers 45 Following Apple Design. Not affiliated with Apple Inc. DM or mail for business.
Charles Shirer @bsdbandit
25K Followers 26K Following A Hacker who is A Lover of People, and Life @RetroTwinz @Secbsd, @GrumpyHackers, @NovaHackers, @deadpixelsec @hacknotcrime Advocate @PositivelyBlue_ OSCP, OSWP
Robert Graham @ErrataRob
66K Followers 2K Following Created (BlackICE,IPS,sidejacking,masscan). Doing (blog,code,cyber-rights,Internet-scanning). Macrodata refiner.
Geluchat @Geluchat
4K Followers 980 Following Baptiste Devigne | Bug Bounty Hunter | Most Impactful Team H1-0131 (AWS) | Eradicator H1-6102 (Salesforce)
Khoa Dinh @_l0gg
2K Followers 119 Following
Nextron Research ⚡�... @nextronresearch
2K Followers 10 Following Nextron Systems Threat Research Team research (att) https://t.co/QTt2X62dXP
sshell @sshell_
10K Followers 1K Following making ai hack a computer. security research. ccdc red team. tummy ache survivor.
BGT @realBrightiup
7K Followers 700 Following
siunam @siunam321
593 Followers 273 Following 22y/o 🇭🇰 | OSCP, OSWE | White-box Bug Bounty hunter | Web security researcher | Playing CTF with @ARESxCTF, @malta_ctf, @BlackB6a, and NuttyShell
Iceman @herrmann1001
8K Followers 1K Following RFID hacker, Proxmark, NFC & EMV | Magic moon beans | Four spaces instead of Tab | https://t.co/A6rzUPpPs6 https://t.co/dZD52FgCaL
Tim Blazytko @mr_phrazer
5K Followers 258 Following Binary Security Researcher, Chief Scientist at https://t.co/XhN07utPLu and Trainer. Also at https://t.co/YBfgAt3kc7
Spiros Fraganastasis @m3g9tr0n
14K Followers 1K Following Team @hashcat! Eternal n00b and knowledge seeker! Age is just a number and motivation is the fuel! Whatever you do in your life, do not forget to be humble.Trends for United States
You might like
