Wyatt @whyitfor
Benevolent binary manipulator at @redballoonsec. OFRAK! ofrak.com NYC Joined July 2022-
Tweets149
-
Followers39
-
Following248
-
Likes90
This is RASPUTIN—the first human-on-the-loop hardware-reversing robot, developed by Red Balloon Security. Automate embedded hardware analysis, firmware extraction, vulnerability detection, fault testing, and more. 🔗 Learn more: redballoonsecurity.com/industry-solut… #Firmware #Engineering
People keep making category errors talking about how insidiously broken LLM-generated code is. The broken assumption: developers are on the hook to accept any generated code. It's weird, b/c I reject about 1/3rd of all generated PRs outright.
It was great meeting everyone who visited our booth at #EScarUSA! We showcased our latest research and solutions on securing embedded automotive ECUs and joined the conversation on the #EMB3D threat model. #AutomotiveSecurity #CyberSecurity #ECU #EmbeddedSystems
Oh come the f***🤬 on. You gotta be kidding. If an attacker can get a user to click a bloody WebEx meeting invite link they can compromise the user's device. Because version 44.6 of WebEx stopped validating meeting invite links content properly. sec.cloudapps.cisco.com/security/cente…
Pretty interesting phish
If you work in DevOps read this post-mortem. If you don't work in DevOps, send this to your coworkers that do. Trust me, it's important they read this. landh.tech/blog/20250211-…
Adjacent experience—we asked an LLM to implement a parsing function and cite source. Its source was a blog post which lacked an input validation, but LLM added this check silently. When asked where it got the validation from, LLM said it read the RFC:)
Adjacent experience—we asked an LLM to implement a parsing function and cite source. Its source was a blog post which lacked an input validation, but LLM added this check silently. When asked where it got the validation from, LLM said it read the RFC:)
Nice writeup on how legacy bugs still work in new AI reality. Ultimately, we are still dealing with a lot of C code, and the same problems appear again.
Nice writeup on how legacy bugs still work in new AI reality. Ultimately, we are still dealing with a lot of C code, and the same problems appear again.
It's a never-ending source of mystery to me how orgs that see security in terms of selecting which commodity products to buy expect to defend against advanced attackers that show up with custom tooling and exploits. If the product isn't export-controlled, how good is it really?
It's finally here! Ghidra 11.3 dropped with built-in support for Python 3 through Pyhidra. Let's go! github.com/NationalSecuri…
Ghidra 11.3 is OUT! PyGhidra is the new feature to be excited about. It’s a Python library providing direct access to the Ghidra API. I expect this to massively increase Reverse Engineering tool development, as it significantly reduces the barrier to entry.
This right here: "The USG can and should respond to China and other adversaries using all instruments of power within its reach. But China isn’t the only adversary capable of compromising these targets, so without fixing the underlying vulnerabilities another attack is just a…
This right here: "The USG can and should respond to China and other adversaries using all instruments of power within its reach. But China isn’t the only adversary capable of compromising these targets, so without fixing the underlying vulnerabilities another attack is just a…
Finance ppl expect more M&A than IPO in #cybersecurity in 2025: “Midmarket cyber vendors are ripe for consolidation” Increased CISO spending is expected to reinforce this trend, as CISOs are looking for fewer vendors with more tools wsj.com/articles/cyber…
List of 340 CVEs detected to be exploited in the wild in the past many years. Thanks to whoever compiled that! This is a gold mine for vulnerability research.
List of 340 CVEs detected to be exploited in the wild in the past many years. Thanks to whoever compiled that! This is a gold mine for vulnerability research.
happy new year everyone 🎉 to continue the tradition, here is some of my favorite firmware & embedded security research of 2024: Defeating the new Raspberry Pi's RP2350 Security Features [1] Reversing and Hacking Firmware of an in-orbit Satellite to Re-establish Lost…
We used this exact phrase at @Square in 2014 when I first started. We took on the as much of the complexity around PCI compliance as possible for Square sellers so that they didn't have to buy security products for their business. We were the secure product for their business.
We used this exact phrase at @Square in 2014 when I first started. We took on the as much of the complexity around PCI compliance as possible for Square sellers so that they didn't have to buy security products for their business. We were the secure product for their business.
This speaks to why product certification alone will never be enough. Many certs are granted without actually validating the correctness of the implementation. Adding a mitigation != correctly implementing it
This speaks to why product certification alone will never be enough. Many certs are granted without actually validating the correctness of the implementation. Adding a mitigation != correctly implementing it
Nothing gets me angrier when someone misrepresents a technology. Part of why I pen test is to prove things. What sort of things you ask? Vendor claimed they did Mutual TLS Turns out... they had a 'unique' definition of what this is. 1
“It’s always the 90s somewhere” would be a good shirt or sticker
“It’s always the 90s somewhere” would be a good shirt or sticker
Vlehu @Vlehu7287238
6 Followers 257 Following
RobertaJob @43jE4wJ9BMdo6bx
75 Followers 2K Following
Rodger Rodriguez @RodgerRodr37308
7 Followers 546 Following
RosalindHansom @iTJ68z6geGe24
75 Followers 7K Following
Dnotdor @Dnotdor035XVS
63 Followers 4K Following
DawnLytton @omj7GXHz7NC2u
81 Followers 7K Following
SabinaWillard @U2j5GgG088y7Lhm
68 Followers 7K Following
Isabella @Dytharozxci
31 Followers 366 Following "Life can only be understood backwards; but it must be lived forwards." – Søren Kierkegaard
Halbert @noharakiku86759
79 Followers 7K Following
Max Aitel @AitelMax
177 Followers 825 Following top500 tank overwatch planes good FRC team 7652 alum/mentor
IvyPullman @T9R8y32fJSLD7
107 Followers 6K Following
KristinLongman @L9x03qEANPk0CF5
82 Followers 7K Following
Elga @noharakiku35623
82 Followers 7K Following
Dr. Dave Venable @davevenable
13K Followers 10K Following Chair @ISRSngo | Former U.S. Intelligence Officer, NSA, TAO, & StateDept | CISO-in-Residence | @TheCipherBrief | @AiiNonProfit | Art & Rare Book Collector
Kris Udomwongsa @bread_b4nk
4 Followers 82 Following cat lover trying to hack | pursuing major in CS and Maths | Malware Analyst Intern at @RecordedFuture
kateo 🌻 @vajkat
4K Followers 1K Following Christian | I like #computers, #automation, #SCADA, #ICS, and #CTFs | Director of Intel Research @DragosInc | Neutral Good Cleric | Member of #misec | #ENFJ.
Zion Leonahenahe Basq... @mahal0z
2K Followers 268 Following Native Hawaiian Hacker | Prev Co-captain of @Shellphish | PhD Student in Comp Sci @ASU l Decompiler Research | Mastodon: @[email protected]
BelindaFunk @sXPYFur337OeV
22 Followers 2K Following
ZenobiaBurns @2HWteb9zptfzRt
80 Followers 7K Following
JocelynPollitt @yRb1B6Ju6Cz48
71 Followers 7K Following
Moose @LitMoose
38K Followers 5K Following DFIR | Violinist | Former medical/vet tech | I work for everyone and no one. Infosec retellings obfuscated. Salty and tired. Also Litmoose on BlueSky
James Chambers @jamchamb_
1K Followers 476 Following security research and reverse engineering | security consultant | @[email protected]
Helen @SWlV7YV2b04P3
54 Followers 2K Following
CorneliaNancy @04cg6HNVpFreCN
74 Followers 7K Following
ElfMaster @ryan_elfmaster
2K Followers 256 Following Innovative thought leader, #phrack author, reversing, exploitation and kernel hacking. Shiva binary patching technology: https://t.co/MYfyikAJu7
HalinaEmeche @EmecheHali2099
44 Followers 2K Following
Barbara @barbara67moelle
317 Followers 3K Following
Sandra @king37sandra
292 Followers 3K Following
Ann @ann_short19
317 Followers 3K Following
Olga @olgahuston95
298 Followers 3K Following
Jim Posen @jimpo_potamus
3K Followers 412 Following Fast walker, slow talker. Building the world's fastest verifiable compute @IrreducibleHW.
loopsandtrees @loopsandtrees
6 Followers 685 Following
🌻e. v. m.🌻 @evm_sec
1K Followers 1K Following I publish zines and rage against machines. Reverse engineer. Matthew 7:7-8. Researcher @JHUAPL (personal acct). Præparate Ad Conscendit. Baseball crank.
Shane Jones @OhmSecurities
525 Followers 1K Following Non-Standard human, husband, and grateful father. USAF veteran. I mostly tweet nonsense, and my tweets are attributable only to me, no other entity.
Bruh @im_eningeer
275 Followers 704 Following I do dum things. S̶o̶m̶e̶t̶i̶m̶e̶s̶ ̶s̶m̶a̶r̶t̶ ̶t̶h̶i̶n̶g̶s̶.̶ nvm
Red Balloon Security @redballoonsec
2K Followers 202 Following Red Balloon Security is a leading embedded security provider and research firm committed to securing embedded devices across a range of critical industries.
@[email protected] @e_er1n
332 Followers 593 Following she/her 🏳️⚧️ I boop computers. Note: I don't use this account anymore but you can find me at https://t.co/IKQKcswS9r
Asger Jørgensen @AsgerSR
7K Followers 59 Following Swift Running. How I'm Helping 100 Clients Get To A Sub 20 Min 5k: https://t.co/ozVM43txOX
God of Prompt @godofprompt
141K Followers 848 Following 🔑 Sharing AI Prompts, Tips & Tricks. The Biggest Collection of AI Prompts & Guides for ChatGPT, Grok, Claude & Midjourney AI → https://t.co/vwZZ2VSfsN
KneeOverToesGuy @kneeovertoesguy
206K Followers 249 Following Knee Ability Zero to Pro: https://t.co/hTLLgOMSrh Equipment & Shoes: https://t.co/y61zp6agzX
Institute for Securit... @IST_org
5K Followers 2K Following We are the 501(c)(3) critical action think tank that unites technology and policy leaders to create solutions to emerging security challenges.
Silvio Cesare @silviocesare
11K Followers 1K Following CTO of @infosectcbr. Co-founder of @bsidescbr. Still hacking.
Tiffany Strauchs Rad @TiffanyRad
4K Followers 875 Following Computer security researcher, professor, and lawyer. My comments are my own.
Ryan Petersen @typesfast
251K Followers 2K Following Founder and CEO of Flexport: We’re making global logistics as simple and reliable as flipping a light switch.
Marcel @0ddc0de
226 Followers 295 Following PostDoc @HexhiveEPFL working on mobile security. CTF-Enthusiast @polygl0ts/@0rganizers. Former @shellphish and @fausecteam. Co-founder of @faustctf.
Adam 'pi3' Zabrocki @Adam_pi3
3K Followers 334 Following Director of Offensive Security @NVIDIA, architecting @RISC_V, @LKRG_org Founder, @BlackHatEvents & @Defcon Speaker, #Phrack author, @PwnieAwards nominee
Mohit Mishra @chessMan786
30K Followers 399 Following engineer | engineering | learning to learn the low-level system
Ryan Hurst @rmhrisk
6K Followers 3K Following Dropout. Father. I build things. Security, Cryptography, Engineering, Entrepreneurship. @peculiarventure + xMSFT + xGOOG ++. also on https://t.co/FaDXJfnZBm & Bluesky
Joe Lonsdale @JTLonsdale
235K Followers 481 Following I'm an entrepreneur, investor, & philanthropist. I founded @PalantirTech @Addepar @UAustinOrg @8VC & other mission-driven orgs. Bold policy @InstituteCicero
The All-In Podcast @theallinpod
522K Followers 7 Following @chamath, @jason, @davidsacks, and @friedberg cover all things economic, tech, political, social, and poker.
Ben Buchanan @BuchananBen
6K Followers 266 Following Professor at Johns Hopkins SAIS. Former White House Special Advisor for AI. Author of three books on cybersecurity and AI. Personal account.
Matthew Berman @MatthewBerman
74K Followers 836 Following Building Forward Future. YouTuber, Angel Investor, Developer, AI Enthusiast. https://t.co/9rk7dmIboR
Tatiana Stanovaya @Stanovaya
59K Followers 757 Following Founder/CEO at R.Politik, Senior fellow at the Carnegie Russia Eurasia Center Stay Connected with R.Politik https://t.co/5TRAuhQR2b
Roy🇨🇦 @GrandpaRoy2
34K Followers 1K Following 🇨🇦 🇺🇦 Grandfather, OSINT of Ukrainian and Russian sources: FPVs, drone munitions, EW, landmines. ❤️my family (grandchildren!), reading, and Kaja Kallas.
Ulf Frisk @UlfFrisk
8K Followers 981 Following IT-Security Minion | https://t.co/N1gIUL5rKc | https://t.co/XbBOnQPYoK | DMA | PCILeech | MemProcFS
eversinc33 🤍🔪�... @eversinc33
6K Followers 1K Following computers be computin | https://t.co/Eiur8iOJQ4
Andrey Konovalov @andreyknvl
7K Followers 783 Following Security engineer at https://t.co/027VXUlgOx. Focusing on the Linux kernel. Maintaining @linkersec. Trainings at https://t.co/D5MrxmYimS.
ETenal @ETenal7
1K Followers 322 Following Image Maker • Phd in Cybersecurity• 中文/English • Security Researcher at @microsoft
lukas seidel @pr0me
2K Followers 413 Following Firmware Security • Embedded Systems • AI x Infosec • Researcher @binarly_io • PhD Candidate @TUBerlin • Capturing Flags for @ENOFLAG
Rami McCarthy @ramimacisabird
2K Followers 745 Following security, for the internet, at @wiz_io! opinionated about security. (he/him) @[email protected], bsky=https://t.co/fxycKAqA6t
Nicholas Wilt @CUDAHandbook
2K Followers 63 Following Nicholas Wilt was on the inception team for CUDA, wrote The CUDA Handbook, and blogs at https://t.co/YkR71W07I7
Michael Kratsios @MichaelKratsios
9K Followers 0 Following Personal account | Assistant to the President & 13th Director of @WHOSTP47 | Previously 4th CTO of the US, Under Secretary of Defense, Thiel Capital, @scale_AI
David Sacks @DavidSacks
1.4M Followers 3K Following Tech founder & investor. Personal views only. Official account: @davidsacks47
8090 Solutions Inc. @8090solutions
8K Followers 3 Following Enabling every enterprise to benefit from purpose-built, transformative, high quality software.
ian bremmer @ianbremmer
787K Followers 2K Following @eurasiagroup & @gzeromedia. political scientist, author. if you lived here, you'd be home now.
Simo @SimoKohonen
1K Followers 272 Following cyber deception founder + researcher @defusedcyber | adversary tools, techniques, procedures
Artorias @artoriastech
20K Followers 12 Following Artorias builds cutting edge AI driven intelligence and defense software for businesses, governments and individuals. Learn more: https://t.co/K0ZzO8TgE5
0xAlexei @0xAlexei
6K Followers 1K Following Computer security research & cyber policy / @RPISEC alumnus / personal account
Max Aitel @AitelMax
177 Followers 825 Following top500 tank overwatch planes good FRC team 7652 alum/mentor
Kent Beck 🌻 @KentBeck
183K Followers 829 Following Programmer, coach coach, artist, pokerist, singer/guitarist. Learning to be me. Chief Scientist at Mechanical Orchard. Mastodon: @[email protected]
Dave Kline @dklineii
104K Followers 617 Following Become the Leader You’d Follow | Founder @ MGMT | CEO Coach | Advisor | Speaker | Trusted by 300K+ leaders. | Work with us: https://t.co/6P5ZGqxCyc
Lee Cullivan @leecullivan
176 Followers 600 Following Technologist, Reluctant CISO, Father, Occasional Musician. Infrequent Craft Beer and Bourbon Drinker.
Aleksandar Milenkoski @milenkowski
2K Followers 586 Following Threat Research | Threat Intelligence | PhD | European Commission Marie Curie Research Fellow 2011-2014 | Personal Profile | 🇩🇪
Dr. Dave Venable @davevenable
13K Followers 10K Following Chair @ISRSngo | Former U.S. Intelligence Officer, NSA, TAO, & StateDept | CISO-in-Residence | @TheCipherBrief | @AiiNonProfit | Art & Rare Book Collector
Jocko Willink @jockowillink
946K Followers 189 Following
itszn @itszn13
9K Followers 697 Following Amy | Security researcher | https://t.co/W1SE7NmCx8 | bsky: https://t.co/JBmOGE4YKO | LLM ART: https://t.co/7FtQ8O8nAW
DistrictCon @DistrictCon
999 Followers 26 Following A new DC hacker conference: Bringing together builders, breakers, and fixers to do cool shit. 🪩 Year 1: January 24-25, 2026 🪩 https://t.co/qYKu4hl0Uj
kateo 🌻 @vajkat
4K Followers 1K Following Christian | I like #computers, #automation, #SCADA, #ICS, and #CTFs | Director of Intel Research @DragosInc | Neutral Good Cleric | Member of #misec | #ENFJ.Trends for United States
You might like
