KeyStrOke @KeyStrOke95
Security Researcher | Red Teamer | Malware Developer | CTFer lsass.exe Joined December 2014-
Tweets103
-
Followers339
-
Following2K
-
Likes3K
🚀 We just released my research on BadSuccessor - a new unpatched Active Directory privilege escalation vulnerability It allows compromising any user in AD, it works with the default config, and.. Microsoft currently won't fix it 🤷♂️ Read Here - akamai.com/blog/security-…
You can now relay any protocol to SMB over Kerberos with krbrelayx.py and the latest PRs from @hugow_vincent. Thanks @_dirkjan for merging it! Here is an example from SMB to SMB:
Administrator Protection, introduced in the latest Windows Insider Canary build, is a solid security enhancement... uhh.. really?? can be bypassed with @splinter_code's clever SspiUacBypass tool. Check it out here: github.com/antonioCoco/Ss…
CVE-2024-38124: Predict the name of the New Domain controller and become Domain Admin. Reminds me of sAMAccountName Spoofing. To predict the name would be easy in some domains: ▪️DC1 ▪️DC2 msrc.microsoft.com/update-guide/e…
Attacking UNIX Systems via CUPS, Part I evilsocket.net/2024/09/26/Att…
HTTP/Webdav variant explained here ;) decoder.cloud/2023/11/03/loc…
@decoder_it We have also released a new version of LocalPotato with the HTTP edition exploit 👇 github.com/decoder-it/Loc…
sometimes in hardened AD env they disable (actually remove) SeDebugPrivilege globally (via GPO) in order to prevent malicious things targeting process memory (like token stealing, etc.) even as local admin. good (or bad) news is that the bypass is easy: pentest.party/notes/windows/…
By-design AV bypass with "dev drive" 😅 I really like this feature! Update your detection rules if you want to spot this...
My F5 exploit landed to @metasploit earlier today. It includes unauthenticated code execution as root, with admin hash dumping and account cleanup. buff.ly/3shIKNX
New tool by @Prepouce_ and @hackoura for local privilege escalation on a Windows machine, from a service account to NT SYSTEM. Should work on any recent versions of Windows. Watch out the explanatory blog: blog.hackvens.fr/articles/Coerc… And the tool : github.com/hackvens/Coerc…
How to defeat Hashcat !? 🛡️ Well, I think I found a workaround😈 Use a password with the following format : ⚔️ '$HEX[xxxx]' ⚔️ (where xxxx are only hex characters) Unless a specific flag is added to hashcat, the attacker will never be able to crack it ! #hashcat 1/5⬇️⬇️⬇️
As promised, at @porchetta_ind we release all of our tooling to the public at semi-regular intervals. Here is my part...
I hacked into a @bing CMS that allowed me to alter search results and take over millions of @Office365 accounts. How did I do it? Well, it all started with a simple click in @Azure… 👀 This is the story of #BingBang 🧵⬇️
@YogoshaOfficial @rootedcon @leboncoinEng @LaRedouteFr @z3r00t @TnMch_ @Yassineaboukir @TnMch_ sa77a ya chef 🔥🔥🔥
Today we're publishing new techniques for recovering NTLM hashes from encrypted credentials protected by Windows Defender Credential Guard. These techniques also work on victims logged on before the server was compromised. research.ifcr.dk/pass-the-chall…
Many new adds on my AD and ADCS cheatsheets: the @M4yFly 's mindmap, initial access techniques, important CVEs to test, Kerberos relay, Pass The Challenge, SCCM attacks and so on - AD : hideandsec.sh/books/cheatshe… - AD Python : hideandsec.sh/books/cheatshe… - ADCS : hideandsec.sh/books/cheatshe…
@saidelike I can’t wait for this training 🔥
🔥You like Exploit Development and you want more? Good news, NCC Group (@NCCGroupInfosec) has been sponsoring the release of a Windows Kernel Exploitation training, that you can attend for free... If you want to get access (beta testing), apply here ASAP docs.google.com/forms/d/e/1FAI…
Fresh off the #WayWest2022 Toolshed, dropping my new Office365 userenum technique against Federated tenants, check it out below! B: whynotsecurity.com/blog/o365feden… G: github.com/knavesec/o365f…
Lateral movement with Outlook + WMI COM objects
Kahla @BelkahlaAhmed1
964 Followers 599 Following Product Security Engineer @ Mercari JP - Pentester @ EV Cure53, CTF Player @Zer0pts , Web/Mobile Exploitation N00b + Anime fan| Tunisian 🇹🇳
TnMch @TnMch_
1K Followers 3K Following CTFer with @SuperGuesser / Application Security Engineer , Synack Red Team Member | OSWE & OSWA
𝐂𝐮𝐫𝐭𝐢�... @CurtBraz
2K Followers 873 Following Cybersecurity researcher/blogger/pentester. Try to tweet only technical/educational but occasionally post about https://t.co/MTZoEINlWg 🙂
LUSAKULA Ala eddine @a_lusakula
10 Followers 16 Following Got into the Internet of Things to make the 🌐 more connected..
Luong NGUYEN @luongnv89
909 Followers 553 Following se/ai/cybersec learn, build, share, and connect claude-howto (37k+): https://t.co/cjJ0nOVtI0 asm (633+):https://t.co/4gBAFztVmG custats: https://t.co/kPhiwzkBQ2
yassine @xoxruns
18 Followers 64 Following
Dali @THE_Dali1
7 Followers 351 Following
m0stima @_m0stima_
114 Followers 1K Following Speaker @ RootedCon2024 | Computer Engineer | Threat Hunting | DFIR | Hacking | https://t.co/Txihkzj2bH
red0xff @red0xff
500 Followers 736 Following Vulnerability research at @apple Open Source / Offensive Security
Bernadette @6SnzrFmq9rV4HIX
167 Followers 6K Following
Rhuwee @Rhuwee2651238
205 Followers 7K Following You don’t have to play the game the way they wrote it.
Giduin @Giduin5213399
27 Followers 608 Following She dances to the songs in her head, speaks with the rhythm of her heart.
Drorre @Drorre198766
9 Followers 153 Following
jions jack @JionsJ41789
1 Followers 179 Following
Tatiana @pqrQ96MMSB0kA
55 Followers 876 Following
Awklorseef @Awklorseef9665
24 Followers 881 Following The moon understands what it means to be human.
PearlSherwood @e0fX336z86j3JB8
43 Followers 973 Following
Paula @camylle89088
239 Followers 7K Following
Quang Vo @smuggiekeplar
885 Followers 917 Following Offensive security engineer and Malware researcher . Tweets are my own
Muhammad Farid @Mu7ammadfared
10 Followers 1K Following
Adam. @adam_bouafia
118 Followers 75 Following Brick by brick, building a wall that no one could break. CS Master Degree Student at Vrije Universiteit Amsterdam.
Is Now on VT! @Now_on_VT
4K Followers 829 Following Stay ahead of cyber threats. Get real-time alerts on notable APT/FIN/ORB indicators from VirusTotal. A threat intel project by @craiu.
Fodhil Benhiba 🇵�... @BenhibaFodhil
110 Followers 197 Following Computer Science Student | Bug Bounty Hunter | Cyber Security Enthusiast | CTF player @h3avensbirds
Daqaw @Daqaw079
32 Followers 1K Following
JustCryp ( Easy Escro... @only4coin
282 Followers 3K Following Crypto Ecosystem for Payments, Freelance Hiring, and Expanding Use Cases
Advance-sec @advance_sec0
974 Followers 710 Following Advance-sec platform: is leader in acquisition of vulnerabilities and 0day exploits. Email: [email protected] Wire: @advance_sec Telegram: @advance_secur
Nsikak Smith @nsikak_smi37
256 Followers 1K Following I love being myself I don't get a fuck with anybody
Saikou @Saikou202
285 Followers 7K Following the world is unbearable for the poor and still we strive everyday to see another day 🙏
Two Seven One Three @TwoSevenOneT
5K Followers 2K Following Chief Security Officer (CSO) || Security Researcher at https://t.co/YsorB5YEAu || Penetration Tester || Red Teamer || Social Engineering Awareness Trainer
Mohamed OUNIS @MohamedOUNIS5
21 Followers 292 Following Interested in: DevSecOps , Microservices , Java , CyberSecurity , SRE , Software Solutions Architecture
Maekl @malek_soul26230
5 Followers 61 Following
Berke Babacan @ilovebinbash
4K Followers 1K Following
Lil Bindle @YungBindlestiff
105 Followers 5K Following
0xW43L @GhnimiWael
655 Followers 4K Following CTI Researcher | SRT Member @synack | Former-Red/Blue-Teamer | OSEP | CRTO | eWAPTx | arcX | ICTTF | DANTE ... Hunt threats, secure systems, learn always.
Tosheatoos @TosheatoossKfK
49 Followers 4K Following
Ph4nt0m @Ph4nt0mm
237 Followers 676 Following newbie pwner and Interest pwn/rev, Fuzzing and I am OT/ICS Researcher
Sothawl @Sothawle7L
51 Followers 4K Following
Teautairl @TeautairlGunre
66 Followers 4K Following
Kha Lyl @EthicalLuffy
84 Followers 1K Following
Vishal Gupta 🇮🇳 @HackerxTommy
136 Followers 4K Following •HACKER •Security Resercher @Hacker0x01 & @Bugcrowd •Bug Bounty Hunter #Ittakesacrowd #Wearehackerone
Luke Jahnke @lukejahnke
3K Followers 6K Following
我要去晒太阳 @Break47961154
199 Followers 3K Following CTFer| 区块链安全 | web|链上追踪|hunter| Mixer Analysis 烦恼终究是一种暮气,是一种病态
vx-underground @vxunderground
439K Followers 362 Following The largest collection of malware source code, samples, and papers on the internet. Password: infected
Kahla @BelkahlaAhmed1
964 Followers 599 Following Product Security Engineer @ Mercari JP - Pentester @ EV Cure53, CTF Player @Zer0pts , Web/Mobile Exploitation N00b + Anime fan| Tunisian 🇹🇳
chompie @chompie1337
89K Followers 1K Following hacker, exploit developer/weird machine mechanic head of X-Force Offensive Research (XOR) @IBM
Intigriti @intigriti
210K Followers 666 Following Bug bounty & VDP platform trusted by the world’s largest organisations! 🌍
TnMch @TnMch_
1K Followers 3K Following CTFer with @SuperGuesser / Application Security Engineer , Synack Red Team Member | OSWE & OSWA
Ben Sadeghipour @NahamSec
248K Followers 1K Following Cofounder @hackinghub_io | Advisor @CaidoIO. I hack companies and make content about it. #NahamCon organizer. ex @hacker0x01🇮🇷
Julien | MrTuxracer �... @MrTuxracer
39K Followers 443 Following Founder of @rcesecurity | #BugBounty | @Hacker0x01 MVH && H1-Elite | $1,5+ Mio in Bounties | Mobile Hacker | @[email protected]
cts🌸 @gf_256
67K Followers 986 Following founder and hacker @zellic_io @v12sec @pb_ctf yt https://t.co/nlNai6iQCn
Hack The Box @hackthebox_eu
246K Followers 228 Following Cyber Mastery: Community Inspired. Enterprise Trusted.
Justin Elze @HackingLZ
71K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
James Kettle @albinowax
84K Followers 101 Following Director of Research at @PortSwigger aka @Burp_Suite. Find my research, tools & contact details at https://t.co/vP6UbGmvl3
Youssef Sammouda (sam... @samm0uda
41K Followers 590 Following Security Researcher/Hacker 1st in Meta bug bounty program for 6 years Opinions are my own and not my employer's.
Mathis Hammel @MathisHammel
62K Followers 534 Following Co-fondateur et CTO @Agoratlas. Compte inactif, retrouvez-moi sur BIueSky 🙃
OffSec @offsectraining
329K Followers 118 Following Empowering the world to fight cyber threats with indispensable cybersecurity skills and resources. Support queries: https://t.co/HtFpqjjlRZ
Nate @nnwakelam
43K Followers 1K Following
reverseame @reverseame
22K Followers 1 Following RME-DisCo research group from University of Zaragoza. Special interest on software and systems security. Link to our Telegram channel: https://t.co/UmkcXVG8MU
Abhishek Meena 🏵�... @aacle_
47K Followers 279 Following Building @Vulncure ⚡| Helping founders fix vulnerabilities before hackers find them. Talk to me about: Bug Bounties, LLM Security & React.👇 Book a 15-min Demo
Specter @SpecterAnalyst
14K Followers 466 Following Onchain Investigator | Peace ✌️ Specteranalyst.sol (.eth)
Vivek @0xvivekd
1K Followers 761 Following Smart contract security researcher I find the bug before it finds the treasury $400M+ exploits prevented #32 Immunefi · #36 HackenProof DMs open for collab
Trail of Bits @trailofbits
38K Followers 259 Following We help secure the world’s most targeted organizations and products. We combine security research with an attacker mentality to reduce risk and fortify code.
Ivan Bogatyy @ivanbogatyy
9K Followers 949 Following exploring previously @polymarket @zksync @dragonfly_xyz @GoogleAI
Aires @airesresearchai
47 Followers 0 Following The AI research skill layer for Claude Code, Codex, Gemini CLI & Cursor.
Jesse D'Aguanno @0x30n
2K Followers 613 Following Hacker, Vuln Research, 2x winner DEF CON CTF, Founder & CEO Blackwing Intelligence (@blackwinghq), not a CISSP (@[email protected])
Kirk @KirkDerpca
237 Followers 221 Following Kirk from https://t.co/yKnARcdLm6 Security Research - We like the internet.
Linux Kernel Security @linkersec
10K Followers 0 Following Links related to Linux kernel security and exploitation. Maintained by @andreyknvl and @a13xp0p0v. Also on https://t.co/GVE11dpBb8 and https://t.co/YpxPWXnA6Z.
TestMachine @testmachine_ai
2K Followers 503 Following The #1 AI-powered smart contract security tool. Try TestMachine's Azimuth for free - https://t.co/vjMgyTrL0Q
zkSecurity @zksecurityXYZ
7K Followers 17 Following Security audits, development, and research for ZKP, MPC, FHE, PQC, and more generally advanced cryptography. Contact us: [email protected]
Essential @only01Essential
3K Followers 95 Following Bug huntoor GoLang | Rust | Move | C++ | Solidity
Tur.js @Tur24Tur
7K Followers 1K Following Interested in Application Security, Bug Bounty, Reverse Engineering, Frida & Ghidra @NoBugEscapes @BugBountyZip https://t.co/bltifT1jkQ
Socket @SocketSecurity
22K Followers 5K Following Socket is the #1 software supply chain security platform. Next-gen SCA + SBOM + 0-day prevention. LOVED BY DEVELOPERS. 👀 @npm_malware
David Adrian @dadrian
3K Followers 460 Following Adding value @googlechrome security. Host @scwpod, cofounder of @censysio, cryptography, startups. “Ruthlessly practical". DJB says I’m an NSA plant. Go blue!
Krakovia @krakovia_evm
883 Followers 785 Following Humans lie. Building https://t.co/UquMGYM6tM & https://t.co/UwVmjfeHK7 (Dev/SR/Web3/AI)🩶🇮🇹 Chat: https://t.co/UjttTdpAeN
box turtle @xploitrsturtle2
2K Followers 16 Following I follow ToS Box turtle / canisterturtle / shai huturtle email service is down - uwu underground / icesolst has a safeword with me mum look Im on the news.
V4bel @v4bel
3K Followers 156 Following Independent Vuln. Researcher / Pwn2Own Berlin 2025, 2026 / Google kernelCTF 0-day / Pwnie Awards 2025
Raydium @Raydium
454K Followers 1K Following Building on-chain liquidity primitives that power the evolution of DeFi https://t.co/U8CuZFlu1k | https://t.co/lb56a4Ze0H
Brian Pak @brian_pak
4K Followers 204 Following ai + security + alpha CEO @theori_io / @xint_official → building the world's best AI hacker 9x DEF CON CTF winner CMU CS '11 | founded PPP & MMM
Xint @xint_official
1K Followers 16 Following What if the world's best hackers rebuilt AppSec from the ground up with AI? Meet Xint - autonomous, comprehensive, fast, and actionable.
Josh @devjoshstevens
10K Followers 949 Following VP, Engineering Defi @polymarket • prev SVP, Engineering at @aave • https://t.co/xILoNQsTZR
Shayne Coplan 🦅 @shayne_coplan
201K Followers 839 Following CEO @Polymarket. Ethereum since ’14. I love music and collect art.
David Maynor @Dave_Maynor
14K Followers 6K Following No tree, it is said, can grow to heaven, unless it’s roots reach down to hell. Offensive Security, AI LLM Ops, hardware hacking
Doyensec @Doyensec
4K Followers 9 Following Doyensec works at the intersection of software development and offensive engineering. We discover vulnerabilities others cannot, and help mitigate the risk.
Philip Tsukerman @PhilipTsukerman
3K Followers 81 Following I sometimes tweet about security stuff. Pondering whether to turn this into a music-focused account instead...
ZachXBT @zachxbt
1.0M Followers 2K Following Scam survivor turned 2D investigator, Advisor @paradigm
ClaudeDevs @ClaudeDevs
525K Followers 2 Following Official updates for developers building with @ClaudeAI
Cantina 🪐 @cantinasecurity
19K Followers 0 Following Cantina is an agentic security operating system that handles it all, from detection to remediation, autonomously. Check it out @ https://t.co/De6Z1HZK4h
Calif @calif_io
5K Followers 30 Following We're https://t.co/KTEDnC2VUV. Join us to make the Internet safer for your mum and everyone else: https://t.co/eUFMLkW9t2.
Netlas.io @Netlas_io
8K Followers 12 Following Stay ahead with updates on high-profile vulnerabilities, expert tutorials, essential safety tips, and the latest Netlas developments.
Thomas H. Ptacek @tqbf
35K Followers 618 Following Don't look at me sideways. Don't even look me straight on. bsky:@sockpuppet.org
payloadartist @payloadartist
46K Followers 291 Following I discuss AI, Cybersecurity & Hacking • Helped secure organizations like Google • Opinions are my cat's • Part-time shitposter
maxpl0it @maxpl0it
10K Followers 874 Following Principal Vulnerability Researcher. Occasional Pwn2Owner
mert @mert
1.0M Followers 2K Following ceo @helius @heliusprivacy — Solana RPCs, APIs & data: https://t.co/J2To2MzHwd — cyphercapitalist — private money & internet markets
flux @0xfluxsec
4K Followers 1K Following Senior Security Research Engineer @elastic | Opinions are my own | Rust | Ex-Red Team | Security & Systems Dev | https://t.co/QIih2B7vya https://t.co/VC3xsm0Wvq
Anthropic @AnthropicAI
1.4M Followers 2 Following We're an AI safety and research company that builds reliable, interpretable, and steerable AI systems. Talk to our AI assistant @claudeai on https://t.co/FhDI3KQh0n.
Trends for United States
You might like
