ZeroBS_GmbH @zero_B_S
Information and data security. Leader in DDoS-Testing and Assessments in DACH/EU-Region. Full Spectrum Neuland 2.0 #DFIR #OSINT #DDOS #Cyberien zero.bs Kiel, Germany Joined April 2017-
Tweets1K
-
Followers621
-
Following217
-
Likes888
The case I've been working in 2024.Q1: The CONTINUATION Flood is a class of vulnerabilities within numerous HTTP/2 protocol implementations. A single TCP connection can lead to server crash. Check the advisory at: nowotarski.info/http2-continua…
a new HTTP/2 Attackvector, discovered by @bartn_ nowotarski.info/http2-continua… #ddos #http2 #layer7
Internet scanners are bouncing their traffic through Pi Nodes. This screenshot is from the GreyNoise backend which is running JA4+ on Arkime -- JA4T=29200_2-4-8-1-3_1424_7 is an actor that is bouncing their scans with multiple JA4's through devices running Pi Node. The true…
Attacking with Something That Does Not Exist: Low-Rate Flood with ‘Proof of Non-Existence’ Can Exhaust DNS Resolver CPU arxiv.org/pdf/2403.15233… [PDF]
Killnet2.0 has launched their own botnet. Despite killnet2.0 being a separate offshoot from the original killnet after it was taken over by deanon from kilmilk, they continue to operate similar to their name sake.. Leveraging their branding for financial gain. #cybersecurity…
just found the funniest way to explain how a DDoS works
Direct Link is here; fsisac.com/hubfs/Knowledg… x.com/fsisac/status/…
Direct Link is here; fsisac.com/hubfs/Knowledg… x.com/fsisac/status/…
The financial services sector is now the number one target of #DDoS (distributed denial-of-service) attacks. For more insights on why DDoS is here to stay and how to manage new and more sophisticated attacks, read the joint report by FS-ISAC and @Akamai: bit.ly/48MmWJo
Happy Birthday #cybertracker. 🥳 2 years since I decided to make a horrible looking list of hacktivist groups involved in the #RussiaUkraineWar #cybersecurity #infosec
Happy Birthday #cybertracker. 🥳 2 years since I decided to make a horrible looking list of hacktivist groups involved in the #RussiaUkraineWar #cybersecurity #infosec
TLDR; - they break into computer-managed and old, unused accounts via brute force / pwd spraying - use access tokens to bypass passwords, staying hidden on cloud platforms - by spamming MFA / tricking security checks, they sneak their own devices into the network
TLDR; - they break into computer-managed and old, unused accounts via brute force / pwd spraying - use access tokens to bypass passwords, staying hidden on cloud platforms - by spamming MFA / tricking security checks, they sneak their own devices into the network
An Empirical Evaluation of LLMs for Solving Offensive Security Challenges arxiv.org/pdf/2402.11814…
Amateur Radio Operators Needed for Help with Solar Eclipse Project #HamRadio arrl.org/news/view/amat…
I processed the image files from the ISOON/Anxun leak (using Tesseract OCR) the result is probably approximative but you can grab it here github.com/soufianetahiri……. Now working on translating the stuff locally using facebook/mbart-large-50-many-to-many-mmt, will take some time.
Cyber all the Rucksäcke! Ab sofort haben wir den CYBER Aufnäher Patch im Shop: loet.bar/products/cyber…
The telegram page that claims to be powerproofs of the Meris botnet is claiming they have a 1 Billion Packets per second Bpps DDoS capability. For context, Google and Cloudflare mitigated the largest DDoS they had experienced last year and that was 398 million requests for…
KeyTrap - Assessment (DNSSEC-DOS, CVE-2023-50387) TL;DR: it depends :D blog.kybervandals.com/keytrap/ #dnssec #ddos #dos
Florian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇mRr3b00t @UK_Daniel_Card
92K Followers 7K Following 真理的揭露者 Quis custodiet ipsos custodes fella in cyberspace #nafo undercover #FVEY Lovely Horse #fella #meme #farm #appreciator #cyber #specialistAkira Nishii @nichii_a
2K Followers 4K Following SOC / SIRT / Security / デジタルフォレンジック / EDR•NDR 関連の記事備忘録Omarr @Toowan0x1
88 Followers 438 Following ◉ Cyber-Security Guy | OffSec ◉ Student @1337FIL Benguerir ◉ Pre-Entrepreneur (Technology entrepreneurship / Startupper)Ash3ban @Ash3ban1
53 Followers 996 FollowingTipsy @TipsyBacchus
819 Followers 1K Following I research dumb security topics and jank ways to exploit stuff. In my free time, I walk into buildings with a crayon ID. Com Lead for @sec_defcon. Get Goofed.Philip Tettey Kwao @kwaoizy1
55 Followers 408 Following Aspiring SOC Analyst | Telecom & Network Management Grad | Eager For Cybersecurity Opportunitiesسعید کاوه @wswsaeed55
0 Followers 62 FollowingBrad Moore @bemoore34
39 Followers 247 FollowingPhilip @neastyteat39296
253 Followers 965 FollowingDevr Inc. @DevrOfficial
254 Followers 5K Following Devr is a new Internet protocol for the governance of decentralized privacy networks (DPN), powering a new era for data sharing economiesCyberKnow @Cyberknow20
30K Followers 3K Following Situational Awareness | Threat Intelligence | #cybertracker | Hacktivist tracker | Meme Farmer 🇦🇺🇦🇺 Posts and Opinions are my ownAM @am16180
0 Followers 568 FollowingYoussef Mohamed @Gandalf0980
243 Followers 5K FollowingNeslet @Neslet475711
231 Followers 2K FollowingFarrell @Tisesme196029
285 Followers 4K Following See the world on the road, and get to know yourself on the way!Y @YongSeng_G
236 Followers 2K FollowingMarc Rogers @marcwrogers
17K Followers 2K Following Ramblings of Mad Englishman: Hacker @ BBC Real Hustle & Mr Robot. Head of Sec @ DEFCON. Founder @ CTI-League, Ransomware Taskforce, (He/Him).Mateusz @Pixx123
3 Followers 200 FollowingPeter Hense 🇺🇦�.. @peterhense
11K Followers 10K Following #NAFO | Litigator | data, tech, AI | host @regint_show | Passionate about politics, history, animal protection | Loves Rome & The Simpsons | Threema: YTN9VR2PKoDDoS @KoddosNET
8K Followers 9K Following #KoDDoS specializes in entreprise-grade ddos protection and anti-ddos solutions since 2009. Get help & support : @KoddosSupport #ddosprotection #antiddosMatthew @gmpiek
66 Followers 649 FollowingSathiyamoorthi @Sathiya317
78 Followers 1K FollowingContraKing @analiyst
173 Followers 1K Following 3qual respect to threat actors🖤, security researchers ❤️sajin @sajin786
10 Followers 142 FollowingH.Holon @holonia2008
278 Followers 1K FollowingGeeknik's {{☀️}} .. @geeknik
14K Followers 4K Following Principal Vulnerability Researcher at spiderSilk. I turn keystrokes into pixels, like code on canvas. Salsa farmer. Firefox Dev. Views & code = my own.Fergal Hennigan @fergal_hennigan
6 Followers 212 Following A motivated IT Sales consultant with over 20 years experience in the Technology and Services industry focused on customer needs.Miguel Angel Castañe.. @Mcastanedaalv
11 Followers 586 Following Analista de negocio apasionado por los Mercados Financieros, Medios de pago. entusiasta de la seguridad.gw @hgk0x
198 Followers 4K FollowingFuck You Twittِer @FuckTwi_tt_er
34 Followers 2K FollowingGaurav Kumar(GDATTACK.. @gdattacker
803 Followers 3K Following Just A Security Researcher Honoured By Facebook Hall Of Fame2019, Sony And Some More Brands. I Love To Learn New Things Every Moment From Previous Mistakes.zeroRampUp @Zer0RampUp
17 Followers 51 Followingdr soldier unfortunab.. @jnazario
2K Followers 365 Following 40-something technologist who used to be a biochemist. now in cybersecurity. cooking my way through shelves of cookbooks. hockey fan. @[email protected]Venkatesh Allampalli @venkallampalli
35 Followers 1K Following Entrepreneur | Data Engineer| Swimmer.Florian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇mRr3b00t @UK_Daniel_Card
92K Followers 7K Following 真理的揭露者 Quis custodiet ipsos custodes fella in cyberspace #nafo undercover #FVEY Lovely Horse #fella #meme #farm #appreciator #cyber #specialistJulien | MrTuxracer �.. @MrTuxracer
30K Followers 417 Following Freelancer | Full-time #BugBounty | @Hacker0x01 H1-Elite & $1,500,000 Hacker | ❤️ IDA ProShodan @shodanhq
101K Followers 2 Following Monitor your external network, search the Internet of Things and perform empirical market research. You can also find us on https://t.co/nPLFbFy8R5Jack Rhysider 🏴.. @JackRhysider
147K Followers 3K Following Creator of @DarknetDiaries. Tell me a good hacker story. 💻🔦⤵️🐰🕳️ Discord: https://t.co/qxanMuIy7uThe DFIR Report @TheDFIRReport
53K Followers 0 Following Real Intrusions by Real Attackers, the Truth Behind the Intrusion. Services: https://t.co/XW613EKt2wMarc Rogers @marcwrogers
17K Followers 2K Following Ramblings of Mad Englishman: Hacker @ BBC Real Hustle & Mr Robot. Head of Sec @ DEFCON. Founder @ CTI-League, Ransomware Taskforce, (He/Him).I am d3d (dead, мё�.. @deadvolvo
2K Followers 152 Following Security Researcher - Founder of Malicious Group Research - Synack Red Team Operator - DoD researcher of the year 2022 - Top 10 web attacks in 2023 - CRTOONYPHE @onyphe
2K Followers 85 Following ONYPHE provides solutions dedicated to Attack Surface Discovery (ASD) and Attack Surface Management (ASM). Scanning at Internet-scale - contact at onyphe dot ioCyberKnow @Cyberknow20
30K Followers 3K Following Situational Awareness | Threat Intelligence | #cybertracker | Hacktivist tracker | Meme Farmer 🇦🇺🇦🇺 Posts and Opinions are my ownBGP.Tools @bgptools
3K Followers 1 Following It's like a real-time global BGP looking glass that doesn't hate you! You can also pay us to tell you when stuff changes! Tweets by: @[email protected]Doug Madory @DougMadory
9K Followers 805 Following Director of Internet Analysis at @Kentikinc. Alum of @dynresearch @renesys @uva @dartmouth @usairforceQrator Labs @Qrator_Labs
520 Followers 67 Following DDoS Attacks Mitigation and Continuous AvailabilityCloudSecurityPodcast @CloudSecPodcast
3K Followers 363 Following Cloud Security Podcast by Google hosted by @anton_chuvakin and @_TimPeacock - see more at https://t.co/xYsgwSz1ffTheZDIBugs @TheZDIBugs
3K Followers 2 Following Checks for high severity, 0day, or Pwn2Own related advisories published by @thezdiErikJohansson.eth @tackochgodnatt
12K Followers 353 Following Photographer/artist from Sweden, enjoying life between Sweden and Prague. Fine Art Prints & books on web: https://t.co/SnXakmS6PQ. Keep it surreal 🇺🇦_cybervandals @_cybervandals
35 Followers 31 Following CyberVandals / Weapons of Mass Disruption - a book about modern DDoS-Warfare/Attacks, by zeroBS #ddos #cybervandals(p,n) @geenensp
693 Followers 237 Following | Tweets and views are my own | SKS PGP 0xed0ce83bcb657663fa5bab8e5cf262ef21a755c4 |Henrik Moltke @moltke
10K Followers 943 Following Tech correspondent at Danish Broadcasting (DR), investigative reporter. Co-host, "Prompt". Recovering surfer & cyclist. Signal: +4527123536 🇩🇰: @DRMoltkeCVE Trends @CVEtrends
9K Followers 0 Following Monitor trending CVEs in real-time; crowdsourced intel sourced from Twitter, NIST NVD, Reddit, and GitHub. Run by @SimonByteBuitengebieden @buitengebieden
2.8M Followers 74 Following Welcome to the positive side of 𝕏. I’m Sander from the Netherlands. All copyrights belong to their respective owners! DM for credits/removal/submission!Egor Homakov @homakov
13K Followers 469 Following Security/crypto researcher. https://t.co/RDcMImw49XDesiree Sacher-Boldew.. @d3sre
2K Followers 644 Following cyber defense architect, dc4131 alumni, FIRST BoD member, curious geek driven by the urge to understand thingsAlex Bortok @Bortok
220 Followers 167 Following Network validation with Open Traffic Generator and Keysight/Ixia. Hacking lab automation with @netreplicaShadowserver @Shadowserver
18K Followers 0 Following Our mission is to make the Internet more secure by bringing to light vulnerabilities, malicious activity and emerging threats. Join our Alliance!DDoS24.net @ddos24net
495 Followers 11 Following Your downtime is our pleasure! Exploring new markets at https://t.co/CChXIXz38w / @[email protected]Daniel Bou-Fadel @SecurityExpertP
14 Followers 73 Following 15 years security addiction, standards, critical infra, security testing, DDoS, IPv6 security, availability, blockchain securityNetBlocks @netblocks
258K Followers 0 Following The Internet's Observatory: Tracking cybersecurity and digital governance • connectivity and democracy • tools and policy for changeZiv Gadot @GadotZiv
33 Followers 20 Following I'm the founder and CEO of Red Button, a team of DDoS experts that provides DDoS testing, consulting, training, and incident response services.nic.at @atregistry
139 Followers 24 Following https://t.co/1XxCiF56E9 is the registry for domains ending in .at, .or.at and .co.at.holiman @mhswende
5K Followers 266 Following Programmer and appsec:ista Pronouns: anything but 'bro', reallyremy🐀 @_mattata
6K Followers 2K Following Dad, Vulnerability Research, Packet connoisseur. He/Him. Cyber Security Architect @GreyNoiseIO, DM's open. Top percentage RattataThinkst Canary @ThinkstCanary
12K Followers 10K Following Most companies only realise they are breached when informed by a 3rd party. This is a stupid problem! Thinkst Canary. Know. When it Matters.NETSCOUT Threat Intel.. @ASERTResearch
914 Followers 63 Following @NETSCOUT Threat Intelligence researchers. Unmatched visibility into the world’s Internet traffic around the 🕐 & around the 🌎. These are our insights.Richard Hummel @MalwareAnalyzer
1K Followers 553 Following Threat Intelligence Research Lead for NETSCOUT's ASERT Research TeamREMnux @REMnux
7K Followers 1 Following REMnux® is a free Linux toolkit for reverse-engineering and analyzing malware. Follow this account, managed by @lennyzeltser, for #REMnux updates and news.Patrick Gray @riskybusiness
32K Followers 2K Following Host of the Risky Business® podcast. Guests by invitation only. Bsky: https://t.co/xxk90HocUFMG @_MG_
42K Followers 647 Following I was a terror since the public school era. My opinions are your adversary’s. — I also make terrible things: https://t.co/cwueENXhIvLink11 @Link11GmbH
1K Followers 320 Following Next Level Cybersecurity - We protect your IT infrastructure and web applications against DDoS and other attacks and strengthen your company’s cyber resilience.Marcello @byt3bl33d3r
29K Followers 532 Following CyBeRsEcUrItY | Not afraid to put down with some THICC malware on disk | securing and breaking AI @ProtectAICorp | Ex @spacexKyle Hanslovan @KyleHanslovan
11K Followers 357 Following CEO at @HuntressLabs | Classy but ❤️’s Trap MusicDavid Krause @krausedw
397 Followers 0 Following Views expressed are my own and not those of my employer. Mastodon: @[email protected]Geeknik's {{☀️}} .. @geeknik
14K Followers 4K Following Principal Vulnerability Researcher at spiderSilk. I turn keystrokes into pixels, like code on canvas. Salsa farmer. Firefox Dev. Views & code = my own.Ransomwaremap @ransomwaremap
6K Followers 0 Following #NPO | Collecting PR of #Phishing #Ransomware #Cyberattacks for a Situational #CyberAwareness PictureVitali Kremez @VK_Intel
46K Followers 91 Following Ethical Hacker | Reverse Engineer | CEO @AdvIntel | Malware Course Author "Zero2Hero" / "Zero2Automated" | Former .gov Cybercrime | Threat Seeker Awardϻг_ϻε @steventseeley
21K Followers 519 Following Hermetic Initiate. Exploring conscience and the nature of reality. I also hack things. @[email protected]Eric Capuano @eric_capuano
10K Followers 3K Following Director @limacharlieio | Founder @recon_infosec | SANS DFIR Instructor | IANS Faculty | https://t.co/yCVDASYk8s | ⬡@Cyberknow20 And they are created like most of them died: in a snap.
@nullenc0de Ask and ye shall receive. Not even sure it works, so feel free to be the guinea pig github.com/geeknik/coupon…
The case I've been working in 2024.Q1: The CONTINUATION Flood is a class of vulnerabilities within numerous HTTP/2 protocol implementations. A single TCP connection can lead to server crash. Check the advisory at: nowotarski.info/http2-continua…
I feel like writing a book, largely based around hacktivism and other observations over the last 2 or so years. Question for all out there: Is there any point in generating a book? I'm really just wondering if it's worth the effort. 🤷♂️🤷♂️ #cybersecurity #infosec
@burkov Excuse me sir, but here I am at the birthplace of the world wide web at CERN, a research project in Europe run primarily by EU member states, with most funding coming from Germany. You could not be more wrong about the web here. Europe made it happen.
Internet scanners are bouncing their traffic through Pi Nodes. This screenshot is from the GreyNoise backend which is running JA4+ on Arkime -- JA4T=29200_2-4-8-1-3_1424_7 is an actor that is bouncing their scans with multiple JA4's through devices running Pi Node. The true…
Attacking with Something That Does Not Exist: Low-Rate Flood with ‘Proof of Non-Existence’ Can Exhaust DNS Resolver CPU arxiv.org/pdf/2403.15233… [PDF]
For educational purposes: RFC 2068 ff. make it perfectly clear that HTTP result code 500, even when covered up with HTML blankets, does mean something on the server side blew up...
@ionos_hilft might want to check database queries for the string 0xFFFFFFFF being auto-magically interpreted as a numeric value, although it is a string in the case of the domain name 0xFFFFFFFF.net.
Killnet2.0 has launched their own botnet. Despite killnet2.0 being a separate offshoot from the original killnet after it was taken over by deanon from kilmilk, they continue to operate similar to their name sake.. Leveraging their branding for financial gain. #cybersecurity…
just found the funniest way to explain how a DDoS works
Anonymous Sudan continues its long-standing tradition of mocking countries with whom they have targeted. The French attacks are notable as this is the second time that Anonymous Sudan has had a capability leap, following the Microsoft attacks in 2023. In both cases, Anonymous…
nice read
Direct Link is here; fsisac.com/hubfs/Knowledg… x.com/fsisac/status/…
Yuval Noah Harari: we have no idea what to teach young people that will still be relevant in 20 years
The financial services sector is now the number one target of #DDoS (distributed denial-of-service) attacks. For more insights on why DDoS is here to stay and how to manage new and more sophisticated attacks, read the joint report by FS-ISAC and @Akamai: bit.ly/48MmWJo
Happy Birthday #cybertracker. 🥳 2 years since I decided to make a horrible looking list of hacktivist groups involved in the #RussiaUkraineWar #cybersecurity #infosec
Made a list of #cyber groups currently involved in #UkraineRussiaWar It's a work in progress, tips/updates welcome. Updated daily at medium link. Real-time updates on this Twitter. Also see - @CuratedIntel #cybersecurity #ThreatIntelligence #infosec cyberknow.medium.com/2022-russia-uk…
TLDR; - they break into computer-managed and old, unused accounts via brute force / pwd spraying - use access tokens to bypass passwords, staying hidden on cloud platforms - by spamming MFA / tricking security checks, they sneak their own devices into the network
Russian-state linked cyber actor APT29 is adapting their tradecraft as more organizations move to the cloud. CNMF joined FVEY 🇬🇧🇦🇺🇨🇦🇳🇿🇺🇸 partners to expose the group’s TTPs & provide mitigation strategies. Read the CSA here: ncsc.gov.uk/files/Advisory…
An Empirical Evaluation of LLMs for Solving Offensive Security Challenges arxiv.org/pdf/2402.11814…