ThorMM @synbyte
Penetration Tester / Cybersecurity Analyst Joined July 2020-
Tweets454
-
Followers91
-
Following294
-
Likes6K
Happy to release SAMLSmith together with @ericonidentity - Generate forged SAML responses - Simulate Silver SAML & Golden SAML attacks - Extract usable certificate files from AD FS encrypted materials. The tool is written in C# Check it out here - github.com/Semperis/SAMLS…
Domain Admin shouldn’t logon to workstations. Here’s one way to restrict DA logins to workstations: Create a GPO… Computer Config → Windows Settings → Security Settings → Local Policies → User Rights Assignment → ‘Deny log on locally’ & ‘Deny log on through RDP’ → add…
@bettersafetynet Try start ms-cxh:localonly Instead
📢 Just launched our accelerated, hands-on training to prepare you for the CCDFA certification and build real-world digital forensics skills. #DFIR #C5W #CCDFA #Bootcamp Take $100 off if you enroll before Aug. 1st. For more details: academy.cyber5w.com/courses/c5w-di…
Dudes... please enable Detailed File Share auditing in your environment. All these attackers who switched over to the Impacket suite still run the default configs and it takes like 2 seconds to find them.
☀️ Summer Discount starts July 1st! Explore DFIR, Linux, Windows, Threat Intel & Malware Analysis. 🔥 Hands-on. Browser-based. Cert included. 🎯 Pay less, learn more. 👉 academy.cyber5w.com/collections #C5W #DFIR #CyberTraining #SummerSale
Write-up of the Active Directory lab I built for @_hackiin CTF 2025 : - ACL abuse - Exploitation of the Linux Kerberos stack - badSuccessor exploitation. Take a look 👇 rayanle.cat/hackin-2025-on…
Can Bug bounty be a direct pipeline to a Job or Hike? The answer isn't simple. They can be, but there's a huge disconnect. Just finding 50 XSS only proves you can find XSS. It does NOT prove to a Hiring Manager that you understand: - Threat Modeling, - Risk Assessment, -…
Our updated #eMAPT #certification is coming soon! This learning path and certification delivers hands-on, real-world scenarios across iOS and Android for comphrehensive mobile application pentesting mastery 💪 Presale starts soon! bit.ly/4jnjGJT
From NTLM relay to Kerberos relay: Everything you need to know decoder.cloud/2025/04/24/fro…
🏴 API Hacking - Cracking JWT Tokens 🏴 Most modern day APIs use JWT token for authentication instead of cookies. If you can crack the key used to sign these tokens then its instant game over. ghostlulz.com/blog/api-hacki… #bugbountytip #bugbountytips #redteam #infosec #hashcat
How to weaponize Sliver C2 and evade EDRs? With BallisKit ShellcodePack and MacroPack of course! Checkout this new tutorial on our blog! #redteam blog.balliskit.com/tutorial-slive…
Giveaway
Log Analysis with Wazuh: Detect Threats Before They Escalate 📊🛡️📁 . . .
Using a Hex editor is a must for #DFIR. I created a 40+ video series and now a full course so you can get started. The course is Pay-What-You-Can and YES you can access it for FREE! #DigitalForensics #010Editor #Cybersecurity labs.cyber5w.com/courses/5dd828…
You have got a valid NTLM relay but SMB and LDAP are signed, LDAPS has got Channel Binding and ESC8 is not available... What about WinRMS ? :D Blogpost: sensepost.com/blog/2025/is-t… Tool: github.com/fortra/impacke… And also, big thanks to jmk (Joe Mondloch) for the collab' :D!
KrbRelayEx-RPC tool is out! 🎉 Intercepts ISystemActivator requests, extracts Kerberos AP-REQ & dynamic port bindings and relays the AP-REQ to access SMB shares or HTTP ADCS, all fully transparent to the victim ;) github.com/decoder-it/Krb…
Exciting News🚀🎉: Our @cyber5w Intro to DFIR Course is now FREE!🔍 Please read our announcement found below. The course will also be available for FREE @OpenSecTraining very soon! #DFIR #infosec #cybersecurity #DigitalForensics cyber5w.com/into-dfir.html
🚨 How to Design a Secure JWT Library 🚨 1️⃣ Disable None by default – 'no signature' = 'no security.' 2️⃣ Force algorithm selection – never trust the alg header. 3️⃣ No decode-only methods – validate every time. 4️⃣ Fail loudly on validation – no silent errors! 5️⃣ Enforce time…
🎤✨ Our security researcher, Konstantin Polishin, presented “Red Team Social Engineering 2024: Initial Access TTP and Project Experience of Our Team” at #ROOTCON18 🚀 Recording: youtube.com/watch?v=6nnZJi…
07x_v3177.exe @VedGawde
81 Followers 2K Following Trust in His plan | God's love makes even the hardest journeys worthwhile | His love is the compass guiding your life's purpose |
Rahul999 @Script461915
4 Followers 212 Following
Awseexe @Awseexe2249
75 Followers 2K Following
Wiley Hagenes @WHagenes76483
115 Followers 2K Following
Xarsea @Xarsea646
23 Followers 1K Following
Ann @velasquez_ann56
265 Followers 3K Following
Jean Davidson @jeanxdavidson
131 Followers 2K Following
James Ibrahim @JamesIb54140322
55 Followers 3K Following
CISO Marketplace @CisoMarketplace
343 Followers 2K Following We are a #ciso marketplace selling information security services, digital products, and various IT swag items. #IoT #infosec #cybersecurity vCISO and Compliance
IT CPE Academy @itcpecredit
286 Followers 4K Following Self-Study CPE Programs to help professionals acquire the skills, knowledge and certificates in IT and cybersecurity
💻🥷 WarthogTK �... @warthogtk
2K Followers 6K Following Pentester | Ex MD (Intensivist) | (Black) Arch Linux enthusiast - AD - MalDev | DCS, Gaming/VR/MR, Metal+++, Geopolitics, Defense #avgeek Opinions are my own
neutroncore @neutroncore
2K Followers 579 Following I post random thoughts on mainly IT security. These thoughts are not always tested...
jack3 @jackbat1111
8 Followers 947 Following
Randall Maynard @RMaynard88558
2K Followers 5K Following
king 👑 @MusengeNg
125 Followers 3K Following
Mitesh Valvi @MiteshValvi12
34 Followers 676 Following
Irtiza Khan @irtiza_niloy
30 Followers 833 Following
Sheryl sandberg @S90451Sheryl
11 Followers 412 Following
Thiodee @ThiodeetVXlYF
25 Followers 574 Following
Chris Duggan @TLP_R3D
7K Followers 3K Following Head of Threat Informed Defence for a FSTE 100 | Malware Geek | Curated Intel Member | Threat Intelligence Expert Extraordinaire
Jackie Vergne,PhD @vergnj11
1K Followers 7K Following 👩💼 CEO of Vergne Equity 🌍 Global Equity/Debt funding. I am dedicated to making dreams a reality.
Advik @Ad_vi_k
80 Followers 5K Following
0x0sec @0x0sec
1K Followers 4K Following OSCP Student, DFIR, Reverse Engineering, Exploit Dev, Entrepreneur, NEO Sports Fan... Tweets are Tweets... RT != Endorsement.
Nyxthewarlock @Nyxthewarlockx
870 Followers 7K Following Hacker for good,Security researcher, ex-DHS he/him, all opinions here are my own. sometimes 18+, 20
ARI @AriOkio
230 Followers 3K Following IT Security Enthusiast. Security addict. Just a security guy. CTF solver.
gege @gege67192672299
537 Followers 7K Following Vintage car collector, automotive self media, automotive brand embracing AI founder, world new energy vehicle promoter, personal non licensed car dealer.
Elixir @ItsElxvr
508 Followers 2K Following ☆GoogleIT|ISC² CC|CompTIA A+☆ ☆@RealTryHackMe Top 11% WIP 1%☆ ☆Cybersecurity & Pen Testing Enthusiast☆
annumeena @annumeena19
87 Followers 6K Following
Teausleat @teausleat29376
10 Followers 172 Following Gods determine what you're going to be。 https://t.co/3y2NcAeFxc
Hackviser @hackviserr
2K Followers 3K Following Tailored cybersecurity upskilling platform for all levels, catering to beginners and pros | Best way to boost your #cybersecurity skills
Lorena Elena @LorenaElen66458
4 Followers 101 Following
Jacob Krell @hackerfren
2K Followers 657 Following Cybersec/AI expert | Hacker | Pilot | OSCE3, CISSP, CCNP, CSIE | Better than a thousand hollow words is one word that brings peace | meme magic 🐸
Gale @mazor_gale
1K Followers 3K Following
Linda @r_linda77
274 Followers 3K Following
TrentonBuhlig @BuhligTren27487
61 Followers 2K Following
Patricia @rybij_patricia1
226 Followers 3K Following
warm heart jojo @warmheartjojo
1K Followers 7K Following
Ecuador-llaves 🇪�... @Ecuador_Fellas
235 Followers 1K Following Luchando por la libertad desde 1809 💪🏽
Kyle Cucci @d4rksystem
6K Followers 560 Following Threat Research @proofpoint | Author of "Evasive Malware" @nostarch | Talks about cybercrime, threat intel, and malware stuff.
Het Mehta @hetmehtaa
36K Followers 1K Following Security Analyst | Content Creator | I Spread Cybersecurity News & Talk about AI, Cloud, Tech, Tools & Recent Updates
Altered Security @AlteredSecurity
7K Followers 2K Following Global leader in hands-on learning for enterprise and cloud security education. Join 40000+ infosec professionals from 130+ countries
Ali Hadi | B!n@ry @binaryz0ne
33K Followers 565 Following DFIR and Adversary Simulation | DFIR @ ProtonMail
Smukx.E @5mukx
14K Followers 230 Following Malware Researcher & Red Teamer | 0-Day 🔬 at 🌒 | 0x15 Y/o
Patrick Laverty 🎱 @plaverty9
4K Followers 1K Following Organizer https://t.co/koddp3Iu9y, Host #Layer8Podcast
MalDev Academy @MalDevAcademy
17K Followers 5 Following Providing specialized, module-based security training and resources designed for cyber security professionals
RedTeam Pentesting @RedTeamPT
8K Followers 173 Following Official RedTeam Pentesting GmbH account -- Impressum: https://t.co/pS9oK62Lsu
Ryan M. Montgomery @0dayCTF
102K Followers 611 Following Pentester / Serial Entrepreneur / Child Safety Warrior — https://t.co/9c4DBWMYiQ
neutroncore @neutroncore
2K Followers 579 Following I post random thoughts on mainly IT security. These thoughts are not always tested...
Andrew Case @attrc
28K Followers 4K Following @Volatility Core developer, Dir. of Research @Volexity, @lsucyber, The Art Of Memory Forensics Co-Author
s1r1us @S1r1u5_
11K Followers 2K Following aham nityaṃ śiṣyaḥ, jagat mama guruḥ. {~hacker~} {founder @ElectrovoltSec, @HacktronAI}
Maddy 🐝 @Cyb3rMaddy
27K Followers 264 Following Cyber Security Content Creator 🛜 Technical Tutorials 🚨 Security News 📺 100k+ on YouTube 👇
Nick Powers @zyn3rgy
2K Followers 225 Following Adversary Simulation @SpecterOps | Previously @Rapid7 & @Protiviti
sapir federovsky @sapirxfed
5K Followers 183 Following Doing things @wiz_io And then doing more things at home | failed research blog: https://t.co/j2HT1Tpscs
hextree.io @hextreeio
8K Followers 2 Following 🌱 Grow your cybersecurity skills with concise and well-edited video courses - in early-access, sign-up now! Created by @LiveOverflow and @ghidraninja.
Graham Christensen @grhmc
6K Followers 1K Following Nix! In! Spaaaaceeee!!!!! @DeterminateSys. he/him. 📻 NO5IG
pilvar (Philippe Dour... @pilvar222
1K Followers 439 Following Co-founder & CEO @haicker_app | @EPFL Computer Science dropout | CTF player @polygl0ts and @0rganizers | ECSC Swiss National Hacking Team @TeamM0unt41n '22-'24
Mustafa Can İPEKÇİ @mcipekci
8K Followers 426 Following I'm an engineer from Turkey, who is interested with biotechnology, computer science and digital gaming. Proud father of three little devils. A.K.A nukedx
James Forshaw @tiraniddo
49K Followers 339 Following Security researcher in Google Project Zero. Author of Attacking Network Protocols. Tweets are my own etc. Mastodon: @[email protected]
ali @endingwithali
28K Followers 542 Following software engineer AVAIL FOR HIRE - content creator @ https://t.co/4vI4dOxzmn - threatwire host @hak5 - nyc - MIT - jewish
d415k @d415k
1K Followers 651 Following I love Hack The Box! OSCP/OSWE/HTB CBBH/HTB CPTS/HTB CWEE/PortSwigger BSCP/ネスペ Certified. (2021/7/22-)
BC Security @bcsecurity
9K Followers 52 Following Threat Emulation | Training | Red Team | Penetration Testing | Compliance Discord: https://t.co/4C5C3M1Tk9
Nasser Albarrak @nass3r000
8K Followers 871 Following Penetration tester & Bug hunter | #eWPTX, #eMAPT, #eCPPT, #CRTP
Gunnar Andrews @G0LDEN_infosec
5K Followers 916 Following Hack Stuff | Code Stuff | Fitness | Kaizen OSCP | OSWA | OSWE https://t.co/4lgaVGZxd0 https://t.co/db6Gmb2ImT https://t.co/uY8NkPXaqA
Trimarc @TrimarcSecurity
5K Followers 136 Following We are the experts in Active Directory, Entra ID, and Identity security. Find out more about our services at https://t.co/3kWA6f7dh1.
Matt Zorich @reprise_99
14K Followers 2K Following @Microsoft Security | https://t.co/HWozKuixTi | Tweets are my own
PortSwigger Research @PortSwiggerRes
111K Followers 7 Following Web security research from the team at @PortSwigger
siri@fu4k1 @sirifu4k1
7K Followers 309 Following Web Pentest & girl hh & share anything ithink useful about infosec. follow me! 🇸🇬
Unknown Artists - Cyb... @dadamnmayne
245 Followers 144 Following Specializing in Threat Emulation and Offensive Security. Tons of Active Directory and Local Windows Pen Testing Knowledge.
Critical Thinking - B... @ctbbpodcast
22K Followers 69 Following A 'by Hackers for Hackers' podcast focused on technical content ranging from bug bounty tips, to write-up explanations, to the latest exploitation techniques.
HackingHub @hackinghub_io
9K Followers 12 Following Educating the next generation of ethical hackers.
Pentest-Tools.com @pentesttoolscom
4K Followers 994 Following From scan to proof, https://t.co/y3wBwRfGb9 gives 2,000+ security teams in 119 countries the speed, accuracy, and coverage to deliver results that matter.
Stephen Fewer @stephenfewer
9K Followers 245 Following Senior Principal Security Researcher @rapid7. Decompiler @relyze. Core @metasploit dev 2009 - 2013. MSRC Top 100 2015. Pwn2Own 2011, 2021, 2024.
Chris Thompson @_Mayyhem
3K Followers 467 Following Senior Security Researcher @SpecterOps https://t.co/Sz5fRYkX6u
Chris Dale @ChrisADale
2K Followers 188 Following Hack for good, not evil or greed. Seek to understand, not just to solve. Co-founder of River Security (@rivsec), Principal SANS Instructor. Doing my own thing..
Ash @_bin_Ash
949 Followers 230 Following Computer enjoyer // cert haver // бегство от действительности)) (@Mandiant+@GoogleCloud)
Andy Robbins @_wald0
36K Followers 2K Following Co-founder of SpecterOps. Co-creator of BloodHound. https://t.co/rub1i3Fs9g
Matt Creel @Tw1sm
1K Followers 232 Following Adversary Simulation @ SpecterOps | OSCP | CRTO | https://t.co/LfiIqD4M4l
︎ ︎ @0xocdsec
4K Followers 7K Following ︎ ︎︎ ︎︎ ︎︎ ︎︎ ︎🏴☠️ ︎︎ ︎︎ ︎︎ ︎︎ ︎🌹︎ ︎︎ ︎︎ ︎︎ ︎︎ ︎ ︎︎🏴☠️︎ ︎︎ ︎︎ ︎︎ ︎︎ ︎💚︎︎ ︎︎ ︎︎ ︎︎ ︎︎ ︎🇺🇦 ︎︎ ︎︎ ︎︎ ︎︎ ︎︎|︎ ︎︎ ︎︎ ︎︎ ︎︎603,628 km² ︎ ︎︎
Jacob Krell @hackerfren
2K Followers 657 Following Cybersec/AI expert | Hacker | Pilot | OSCE3, CISSP, CCNP, CSIE | Better than a thousand hollow words is one word that brings peace | meme magic 🐸
Dawid Czarnecki @dawiddczarnecki
81 Followers 149 FollowingTrends for United States
You might like
