Rohit Mothe @rohitwas
Security Re..(dare i say it?) , struggling janitor. tweets,replies,retweets,likes,DMs entirely my own doing, undoing Seattle, WA Joined October 2009-
Tweets666
-
Followers795
-
Following157
-
Likes4K
At @defcon 33, George Hughey (@ecthr0s) and Rohit Mothe (@rohitwas), Senior Security Research Managers at MSRC, took us back to the 90s with their talk on the ghost of Internet Explorer in Windows: MapUrlToZone. They uncovered how this legacy API, used by Outlook, Office,…
Looking to hire 2 experienced Security Researchers in the US for the Exploits Research Team within the Microsoft Security Response Center (MSRC) Senior Security Researcher jobs.careers.microsoft.com/global/en/shar… Security Researcher II jobs.careers.microsoft.com/global/en/shar…
This week's Patch Tuesday included 8 CVEs that @rohitwas and I found! We've been focusing on findings ways to bypass MapUrlToZone and found several very interesting ways to confuse it. This is an API we've seen a lot of interest in lately, so good to have it locked down!
To help protect against NTLM relay attacks, we’ve enabled Extended Protection for Authentication (EPA) by default in Windows Server 2025. This update strengthens key services like Exchange Server, Active Directory Certificate Services (AD CS), and LDAP, making identity compromise…
MSRC V&M is expanding and is looking for a leader who can guide team of hackers in tackling challenging problems in the areas of Open Source, Supply Chain and Hardware security. If you have the skills and passion for vulnerability management. Apply Now @ jobs.careers.microsoft.com/global/en/job/…
MSRC Vulnerability and Mitigation (V&M) team is expanding into exciting challenges of Open-Source vulnerability response and research. This is an opportunity for you to redefine how Microsoft respond and research in this space. Interested? Apply @ jobs.careers.microsoft.com/us/en/job/1611…
We have our Microsoft STRIKE Capture the Flag winners! Drumroll, please!🥁 Congrats to the top 3 teams: 🥇JasonsJsons 🥈Capture the Food 🥉0xCAFEBABE #MSFTSTRIKE
Why is the best defense good offense? like..why is the best defense not the best offense, how does a superlative in one domain equate to merely “good” in another… #RandomThoughtsThursday
Yesterday's Patch Tuesday saw the release of 10 CVEs I found in DNS! These could potentially allow an authenticated attacker to gain remote code execution. A huge thank you to the DNS team who worked through and fixed these. msrc.microsoft.com/update-guide/v…
Time for a new blogpost! Let's do a CHERIoT walkthrough - including a straightforward setup, understanding how we kill bug classes and mitigating attacks on our minimal TCB through practical examples, and more fun! msrc.microsoft.com/blog/2023/02/f…
Speaking of Function Overrides... here is the video of my presentation: recon.cx/media-archive/…. Thanks @reconmtl and @hugofortier !
I was super excited to talk to @44CON today, thanks for having me! If you spot me and want to talk about kernel exploits, come and say hello! If you missed the talk, check out the MSRC blog post I did: msrc-blog.microsoft.com/2022/03/22/exp… 🙂
What is the true impact of a blind arbitrary kernel pointer read primitive? DoS, second order info leak, or is something more possible (EoP / RCE)? I'll be discussing this at 44Con next month, come and join us! 🙂
What is the true impact of a blind arbitrary kernel pointer read primitive? DoS, second order info leak, or is something more possible (EoP / RCE)? I'll be discussing this at 44Con next month, come and join us! 🙂
One of my favorite people to work with. Big recommendation from me if you’re interested in working with amazing kernel engineers.
One of my favorite people to work with. Big recommendation from me if you’re interested in working with amazing kernel engineers.
I'm looking for talented software engineers for multiple positions in the Windows Kernel team to create the best platform for Azure, Xbox, HoloLens and Desktop. linkedin.com/feed/update/ur…
Second part of the iBoot Firebloom blogpost series is up! This time, reversing the functionalities around the type pointer :) Hope you'll find this interesting! saaramar.github.io/iBoot_firebloo…
We're super excited to announce the release of snmalloc 0.6.0 with a load of new security features that no other allocators have. We have a small write up of the features: github.com/microsoft/snma… 🧵(1/5)
Last year, Apple shared a high-level overview of "Memory safe iBoot implementation". I thought it would be nice to reverse and write about it, hope you will find it interesting :) saaramar.github.io/iBoot_firebloo…
Greg Linares (Laughin... @Laughing_Mantis
37K Followers 2K Following 20+ yrs in Infosec. Malware Influencer. I turn Malware into Art and Music. Art @MalwareArt. 4x Pwnie Nominee. 𝕍𝕏. GameDev. Autistic.
Richard Johnson @richinseattle
18K Followers 3K Following Computer Security, Reverse Engineering, and Fuzzing; Training & Publications @ https://t.co/mloVP6rPB7; hacking the planet since 1995; Undercurrents BOFH
Alex Ionescu @aionescu
47K Followers 2K Following Chief Technical Innovation Officer @crowdstrike. Windows Internals author and trainer. He/Him. RTs are not endorsements, opinions are my own.
Andrea Allievi @aall86
5K Followers 374 Following Currently Senior Windows Core OS Engineer, Windows Internals Enthusiast and Book author, tennis lover, currently working for MS. Opinions and tweets are my own.
HackSys Team @HackSysTeam
10K Followers 628 Following Vulnerability Research, Kernel Exploitation, Reverse Engineering, Exploit Development, Program Analysis, Malware Research, Web, Machine Learning
d1rkmtr @d1rkmtr
8K Followers 468 Following
Ptrace Security GmbH @ptracesecurity
59K Followers 867 Following Empowering IT Security Professionals through Hands-On Online Courses.
Andrew Ruddick @arudd1ck
563 Followers 211 Following Breaking software. Security Researcher @ Microsoft. Views are my own.
SinSinology @SinSinology
12K Followers 674 Following Pwn2Own 20{22,23,24,24.5,25,25.5}, i look for 0-Days but i find N-Days & i chase oranges 🍊
rthhh @rthhh17
2K Followers 651 Following Hyper-V Security Researcher. Black Hat USA 2021/2022 Speaker. MSRC MVR 2019/2020/2022/2024.
gabriela @eoncrypt
17 Followers 111 Following MSRC security researcher + ctf player for the us cyber team
Tống Thế Bảo @BoTng958944
1 Followers 117 Following
Alan @com9bakwa
2 Followers 135 Following
Cyber Marmot @cybermarmot_
383 Followers 3K Following 🇪🇺 🇮🇹 I smuggle cheese and Data around EU https://t.co/TWQGa73zNz
Brad Schlintz @nmdhkr
320 Followers 374 Following Traveler, security researcher, software engineer. Microsoft MVR 2025 (5th) and 2024 (19th).
m3di @m3dip
4 Followers 702 Following
Tuan Dinh Van 🇻�... @tunadv
155 Followers 721 Following Security engineer | MSRC 2024 Q3/4 | MSRC 2025 MVR
Celedonio Hernández @ctcichs
95 Followers 4K Following
ABE DIAZ @abe238
3K Followers 5K Following Disaster Relief. Tweets are my own and do not indicate opinion, also RTs are not endorsements. 🇵🇷
Nodi @Nodi577
11 Followers 1K Following
Tomer Eizenberg @EizenbergT47800
6 Followers 328 Following
Srikanth Addagatla @SRKNTHCSE
72 Followers 2K Following
Gowrishankar @g0wricsMD
12 Followers 100 Following
Ervroovow @Ervroovow75264
19 Followers 611 Following
Jans @JT777777777
3 Followers 712 Following
nuyo4h @nuyo4h
0 Followers 2K Following
devanits98 @devanits9817220
90 Followers 4K Following
Karim Abdelaziz @Karim_A_26
18 Followers 702 Following OP. Palestine is not a case, it is a life that we were raised on.
Ali Akbar @aliakbar09214
12 Followers 150 Following
Michael DePlante @izobashi
4K Followers 739 Following Security Researcher at the Zero Day Initiative. DMs open.
DevNg @NgocNguyen92096
1 Followers 416 Following
比个心 @vbigthing
91 Followers 4K Following
A @A0596764045126
0 Followers 572 Following
Isaiah @Hacker_Ise
5 Followers 637 Following Web & Mobile Security Reseacher | Exploring Blockchain and Cloud Security | ARM | Chasing My Curiousity
ashu (logic-cracker) @munde_ashu33622
263 Followers 498 Following Path too CPTS , part time bug bounty hunter , learning red teaming | penetration tester | htb (hacker)........... and also a ctf player ;) | love animes
Mauricio @mauricio424
85 Followers 1K Following
PoliticsFan @TomH1720
194 Followers 707 Following Husband. I ignore all DMs. R supporter all the way and an unabashed USA Patriot.
tejas krishna @tejaskrshna
57 Followers 2K Following
Niraj Mahajan @niraj1mahajan
2K Followers 675 Following Microsoft 2024, 2025 MVR | #BugBounty Hunter | Application Security | Discovered 11x CVEs
Yannick Boog @YannickBoog
75 Followers 5K Following
@known_hosts @known_hosts
0 Followers 2K Following
James Ibrahim @JamesIb54140322
55 Followers 3K Following
Adrien @chohco0A
2 Followers 61 Following
Guilherme Rodrigues (... @guilhermesgi
184 Followers 386 Following 🇧🇷🧑🏾💻 InfoSec Analyst |🐞 ETH Hacker | Bug Hunter | 🏆 Microsoft MVR 2023 & 2025 | 👑 Microsoft Leaderboard: Q1/23 • Q4/24 • Q1/25 • Q2/25
Ojaswi Kumar Mishra�... @0xojaxwi
75 Followers 2K Following Old-school Malware & Offensive Security REsearcher | ⚡Kernel Pwner⚡
Philipp Giersfeld @grsfld
0 Followers 93 Following
mdowd @mdowd
32K Followers 747 Following Internet Hacker. Founder of @vigilant_labs. Previously, co-founder of Azimuth Security (now L3Harris Trenchant)
Ivan Fratric 💙💛 @ifsecure
18K Followers 207 Following Security researcher at Google Project Zero. Author: Jackalope, TinyInst, WinAFL, Domato. PhD. Tweets are my own. Backup @[email protected]
Satoshi Tanda @standa_t
8K Followers 395 Following Software security engineer and trainer https://t.co/tenaquooTc
Richard Johnson @richinseattle
18K Followers 3K Following Computer Security, Reverse Engineering, and Fuzzing; Training & Publications @ https://t.co/mloVP6rPB7; hacking the planet since 1995; Undercurrents BOFH
James Forshaw @tiraniddo
49K Followers 339 Following Security researcher in Google Project Zero. Author of Attacking Network Protocols. Tweets are my own etc. Mastodon: @[email protected]
Alex Ionescu @aionescu
47K Followers 2K Following Chief Technical Innovation Officer @crowdstrike. Windows Internals author and trainer. He/Him. RTs are not endorsements, opinions are my own.
Axel Souchet @0vercl0k
13K Followers 544 Following ¯\_(ツ)_/¯, blogging on https://t.co/36oOc8Mgha and posting codes on https://t.co/P83Oen94Rc.
Andrea Allievi @aall86
5K Followers 374 Following Currently Senior Windows Core OS Engineer, Windows Internals Enthusiast and Book author, tennis lover, currently working for MS. Opinions and tweets are my own.
Andrew Ruddick @arudd1ck
563 Followers 211 Following Breaking software. Security Researcher @ Microsoft. Views are my own.
SinSinology @SinSinology
12K Followers 674 Following Pwn2Own 20{22,23,24,24.5,25,25.5}, i look for 0-Days but i find N-Days & i chase oranges 🍊
Mark Ermolov @_markel___
12K Followers 130 Following I research security of Intel platforms. I don't work for Intel
ABE DIAZ @abe238
3K Followers 5K Following Disaster Relief. Tweets are my own and do not indicate opinion, also RTs are not endorsements. 🇵🇷
Michael DePlante @izobashi
4K Followers 739 Following Security Researcher at the Zero Day Initiative. DMs open.
Jonathan Gorard @getjonwithit
40K Followers 17 Following Applied mathematician, computational physicist @Princeton Previously @Cambridge_Uni Making the universe computable.
kylebot @ky1ebot
6K Followers 319 Following CTF player @Shellphish | PhD Student @ASU | @angrdothorse dev | Author of how2heap | Vulnerability Research Hobbyist | @[email protected]
Microsoft Threat Inte... @MsftSecIntel
187K Followers 1K Following We are Microsoft's global network of security experts. Follow for security research and threat intelligence.
Sam Pope @20brokenSP
41 Followers 93 Following Things I break: Software ,Passes, My own body. MSRC UK Software Researcher & Swindon Storm CB #20
Cam @SecretlyHidden1
2K Followers 230 Following Former full time bug bounty hunter - now doing security stuff at places :)
nwf, Ph.D. @qedragon
340 Followers 994 Following "nʉf". He/They. A nerd's nerd. Anti-fascist, anti-theist. 🏳️🌈🏳️⚧️ΘΔ. Work @ MS Azure; opinions mine. AKA @[email protected]
Joseph Bialek @joseph... @JosephBialek
4K Followers 344 Following No longer using Twitter, find me on Mastodon: @[email protected] Security engineer @ Microsoft. I speak on my own behalf, not my employers.
Saurabh Devulapally @saurabh_Dpally
21 Followers 32 Following
Matthew Parkinson @ParkyMatthew
546 Followers 559 Following Working at Microsoft Research on various programming language things.
Mark @offlinemark
6K Followers 1K Following trying hard. streaming kernel dev - https://t.co/aO5X4jXGQD blogging about life, art & systems programming. non-expert work: @ableton, prev @trailofbits
George Hughey @ecthr0s
579 Followers 195 Following MSRC Engineering - previously CS @ University of Maryland working on Geneva (https://t.co/dMYqBnn2oA)
Arnav Garg @hamsterz0
41 Followers 309 Following
Vishal Chauhan @axsdnied
523 Followers 241 Following Microsoft MSRC V&M team lead. Hacker. Gamer. Swimmer. Guitar player. Can't stay focused.
Saar Amar @AmarSaar
19K Followers 360 Following Reversing, exploits, {Windows, Hyper-V, *OS} internals, mitigations. Apple SEAR. Opinions are my own. @[email protected]
Matt Miller @epakskape
12K Followers 649 Following Killing bug classes and breaking exploits as part of @msftsecresponse. Adding more entropy to the Internet. https://t.co/J8GCGurGP3
Binary Ninja Devs @BinjaDevs
1K Followers 6 Following Group account for random posts by the Binary Ninja developers
Parsia Hakimian @CryptoGangsta
3K Followers 947 Following “I trust this man, he has a Power Glove.” Security @ MSFT. He/Him
Vector 35 @vector35
10K Followers 2K Following Makers of the Binary Ninja - Reverse Engineering Platform. https://t.co/opkys50srq Also posting at https://t.co/2HEfgOtSSR
Sophia d’Antoine @Calaquendi44
3K Followers 124 Following Founder @Margin_Research, Hacker in Residence @ NYU, @RPISEC
Yueqi Chen @Lewis_Chen_
748 Followers 497 Following Assistant Professor in CS @CUBoulder, #weirdmachine programmer and anti-programmer
Bryan Alexander @dronesec
2K Followers 334 Following researcher. exploit dev. hacking @ stripe stop using twitter. find me @ [email protected]
Giulio Zompetti @1nsane_dev
12K Followers 248 Following
Fermat's Library @fermatslibrary
775K Followers 4 Following A platform for illuminating academic papers. We annotate and share a paper every week. Save, annotate and share papers with anyone: https://t.co/0o2Pls3jmo
renorobert @renorobertr
2K Followers 921 Following
idatips @idatips
4K Followers 3 Following Tips and tricks for everyone's favorite disassembler. Account not run by Hex-Rays.
Brian Pak @brian_pak
2K Followers 192 Following CEO @ Theori | CMU CS '11 | Plaid Parliament of Pwning
@[email protected]... @bxsays
815 Followers 354 Following @studied the computer security arts as a PhD student at Dartmouth College. Thesis @ https://t.co/5Cmq4HJi2H Now trying to take over the world @narfindustries
Arthur Wongtschowski @artwongt
655 Followers 365 Following Vulnerability research manager at Google Cloud. Previously at Microsoft, working on breaking Windows and Azure. Opinions are non-existent or my own.
Richard Zhu @RZ_fluorescence
6K Followers 38 Following
Tom 7 @tom7
8K Followers 362 Following lexicographic NES AIs, alphabetical star wars, video games, fonts, album-a-day, expert mode running, chiptune, programming languages, etc.
Mathias Payer @gannimo
8K Followers 388 Following Securitatis inquisitor and professor at @EPFL_en leading the #HexHive 🐝 group, focusing on system/software security. @[email protected] (he/him)
Yuki Chen @guhe120
10K Followers 281 Following 古河, Indepent security researcher, Bug bounty, ACG Otaku, Pwn2Own 15/16/17, PwnFest16,TianfuCup 18/19/20, 5 times MSRC MVR yearly Top 1. Got two pwnie awards.
v1m (infosec.exchange... @v1m
153 Followers 372 Following This twitter feed is for vulnerability related information. https://t.co/l9DFJBgnsI
Trends for United States
You might like
