msm @MsmCode
Malware analyst. Cofounder of @p4_team. No independent thought: ALL opinions belong to my employers, cats. and friends. [email protected] https://t.co/AeZd6IJwQe tailcall.net https://msm.lt Joined February 2016-
Tweets139
-
Followers2K
-
Following67
-
Likes376
Finally, some easy to use software for local CA/PKI management🙏.
Now live: a GUI for Step CA that allows to visualize all issued certificates; it also allows to create "invitations" to easily onboard (even non-technical) people onto your private CA through a friendly web-based flow. GitHub icedevml/tinypki: github.com/icedevml/tinyp…
We have just published a new blog article on the topic of ClickFix/fake CAPTCHA campaigns. Step-by-step overview of the infection, malware analysis, IoCs and YARA rules to help secure your own infrastructure. 🔗 cert.pl/en/posts/2026/…
My short blog post on ClickFix threats (with focus on malware used in recent campaigns): cert.pl/en/posts/2026/…
Logowanie do #KSeF z poziomu Pythona przez klucz zgodny z PKCS#11, np. podpis/pieczęć kwalifikowaną w formie karty, tokena USB albo HSMa. Umożliwia też hostowanie kluczy od certyfikatów wydanych przez KSeF w HSMie, albo kluczem na dysku w formacie PEM. github.com/icedevml/pyksef
🔍 Have you tried monitoring certificate transparency logs lately and found existing tools or libraries disappointing? ✅ Fear not! We're releasing a better one, with tiled format support, async operations, state persistence and an easy-to-use API. 🔗 github.com/CERT-Polska/ct…
My new post about #malware #deobfuscation - cert.pl/en/posts/2025/…. I focus on the simple - but powerful - technique of local substitutions. Uses #ghidra and ghidralib. Thx @nazywam for review.
I analyzed thousands of messages from 35+ suspected state-sponsored hacktivist groups using machine learning—uncovering hidden connections through writing styles, language and topics. After a year of research, here’s what we found and how we did it. 👇 research.checkpoint.com/2025/modern-ap… 1/
Ghidralib development continues: py3 support, binary/asm patching, and symbolic propagation: github.com/msm-code/ghidr…. I also write docs for people who want to try it. Newest chapter: emulation msm-code.github.io/ghidralib/emul… #ghidra #reverseengineering
@fles_on No worries, it was easy to miss. Actually I forgot it was there and almost uploaded it for the second time. I hope it's useful. As for the band, hard question. Probably "Death" (the Chuck Schuldiner's band).
RULECOMPILE - Undocumented Ghidra decompiler rule language. A blog post about how frustration with poor decompilation led me to dive deep into Ghidra's decompiler to discover (and reverse-engineer) - an obscure, undocumented DSL msm.lt/re/ghidra/rule… #reverseengineering #ghidra
@fles_on Sure! It's already there: msm.lt/re/ghidra/rule…. (This is a small example binary with that obfuscation recreated, I can't share the original sample)
🚀Excited to announce ghidralib - a library that makes #Ghidra scripts drastically shorter and easier to write. I've been using it daily for #reverseengineering and decided it’s time to share! Check it out: github.com/msm-code/ghidr… And the docs: msm-code.github.io/ghidralib/ #infosec
Hi #Ghidra users. I've created a quick search/command palette/launcher plugin called "Ctrl+P". You can search for functions, labels, data, bookmarks, focus windows, launch scripts and trigger available action. github.com/msm-code/Ghidr… #reversing #reverseengineering #infosec
🚨 Uwaga na fałszywe reklamy na dużych platformach internetowych! Oszuści nadal skutecznie omijają mechanizmy weryfikacji, a platformy mają problem z ich powstrzymaniem. Jakie są rodzaje oszustw i dlaczego te mechanizmy zawodzą? 🤔 🔍➡️ cert.pl/posts/2024/11/…
@jciesz @PrzJar @MagdalenaGawin1 @kultura_gov_pl "skoro się pan na to zgodził, to chyba czuł pan, że są nie halo, prawda?" - jestem pod wrażeniem. A: oddaj mi swój portfel albo dostaniesz! B: [oddaje] A: "skoro oddałeś portfel to chyba czułeś potrzebę podzielenia się, prawda?"
[PL] Oprócz Paged Out!, wypuściliśmy dzisiaj też wywiad z 𝗣𝗼𝗹𝗮𝗻𝗱 𝗖𝗮𝗻 𝗜𝗻𝘁𝗼 𝗦𝗽𝗮𝗰𝗲, tj. (@p4_team + @DragonSectorCTF + przyjaciele) o HACK-A-SAT 4: ↓↓↓ youtube.com/watch?v=9Gl8ZZ… ↑↑↑
@PELock Thanks! Yeah, I'm quite happy with it. IMO it's more robust than the technique Checkpoint used (research.checkpoint.com/2023/dotrunpex…). DotRunpeX may be a state of the art .NET protector, but it's very hard for packers/protectors to evade dynamic analysis.
What's the first step of dynamically unpacking obfuscated .NET malware? Writing your own debugger, of course. A story of unpacking the recent .NET stealer campaign: cert.pl/en/posts/2023/…. (Going to start posting more writeups soon, stay tuned)
Slides (PL) from my yesterday's presentation at @OMHconf #ohmyhack are here: tailcall.net/static/talks/o…. I've talked a bit about my recent research about stealers in a - hopefully - approachable way.
I had the pleasure to conduct a 1.5 day #workshop about Threat Intel Pipelines and CTI to a room full of security experts during the #ITU Interregional #Cyberdrill for Europe and Asia-Pacific. I hope everyone had fun and maybe see you at the next Cyberdrill.
@1devlife No worries :). I time allows, I'll try to publish my writeups from my solutions when this Flare-On ends. Other than that I don't have any good resources to point to.
Finished my #flareon10 today! Fun fact: I used #Ghidra exclusively (no Ida) to solve almost all challenges (two exceptions: Android and PDP-11 Forth). It works great.
Gynvael Coldwind @gynvael
39K Followers 1K Following security researcher/programmer/director @ HexArcana Cybersecurity GmbH ⁂ @pagedout_zine ⁂ @DragonSectorCTF ⁂ https://t.co/ShG2c5As1K ⁂ ex-Google ⁂ he/him
Grzegorz Tworek @0gtweet
38K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
Łukasz @maldr0id
12K Followers 948 Following Military-grade @Android malware reverse engineer @Google || "Tom Brady of malware strings analysis" - @MalwareTech || Tweets are my own opinions || he/him ✨🌈🦄
ᴀᴅᴀᴍ ʟᴀɴ�... @AdamLangePL
4K Followers 592 Following Breaking things professionally | Researcher | Speaker | Lecturer | Podcaster | #ProudToBeDefender | Opinions are my own.
ςεяβεяμs - м�... @c3rb3ru5d3d53c
26K Followers 245 Following 💕 Malware Reverse Engineer & Malware Geneticist 💕 #Binlex Developer https://t.co/EKYUS9Itvd 👩💻 She/Her
Bartek Jerzman @secman_pl
3K Followers 3K Following Hunting ghosts in wires and boxes, Head of CTI, former NCSC-PL, PL Navy #fightingthreats | @PIVOT_con co-founder
Pan od Komputerow @komputerow
5K Followers 672 Following Dziwne, u mnie działa | UNIX | hacking | security | networks | forensics
Alexandre Dulaunoy @a... @adulau
8K Followers 7K Following Enjoy when humans are using machines in unexpected ways. I break stuff and I do stuff. @[email protected]
John Hammond @_JohnHammond
321K Followers 3K Following Cybersecurity Researcher @HuntressLabs Just Hacking Training @JustHackingHQ w/ @ethicalhacker https://t.co/UtsNJiyQtS && https://t.co/narO3sz7y6
Wojciech Lesicki @WLesicki
1K Followers 993 Following Lead, Threat Assessment and Countermeasures Things that I like to do: IR/TH CTI ICS/OT security cloud security(mostly Azure) #TogetherWeAreStronger
B3lm0nd0 @b3lm0nd0
19 Followers 174 Following
theonexc @theonexc1
0 Followers 5K Following
0xDbg @0x_dbg
8 Followers 889 Following
Joanna @Joanna667323859
0 Followers 82 Following
Jaime Cordova @JaimeC40238
9 Followers 358 Following
Lin Yucheng @LinYuch91587557
1 Followers 26 Following
Mikołaj Kamiński @m_kaminski_
21 Followers 217 Following .NET dev, technology enthusiast, I like sharing my knowledge.
longkytruyen 🦭(Ø,... @longkytruyen
410 Followers 859 Following
𝙢0𝖏0𝖏0𝖏0 @TherealWaRL0k
43 Followers 773 Following
Alex @BadDootix
10 Followers 81 Following
Eaqaba @Eaqaba5522
53 Followers 3K Following
Blank @bl4nk_end
2 Followers 165 Following
BlueEye @BlueEye46572843
773 Followers 947 Following Security research @GroupIB . Interested in #APT research and targeted #malware. @GroupIB_TI Opinions are my own not of my employer.
Eleanora Oberbrunner @EOberbrunn47044
79 Followers 3K Following
Josh @eganosun
0 Followers 1K Following
Rachel Benford @benford_ra37950
4 Followers 126 Following Recr uiting webshell engineers to penetrate websites, with a monthly salary of up to $100,000. If interested, please contact https://t.co/g1rG4gVQw5
Чіт @John44147535
0 Followers 569 Following
Jevin Sweval @jevinskie
2K Followers 5K Following Fuck Elon Musk and his fascist & racist friends This account is archived. Find me elsewhere. https://t.co/aPN2y5oggJ
Look at my homepage @cole_meyer43343
21 Followers 3K Following Virtual currency game platform, deposit and get 50% bonus, recruit agents to earn 100,000 USDT per month, contact us https://t.co/j3jdAz4niL
strmode @strmode
32 Followers 382 Following
Acno @Unk_614
17 Followers 1K Following
samanda Andre @SamandaAnd60506
0 Followers 95 Following
f00fc7c800 @f00fc7c800
2K Followers 7K Following
Mohammed al-Ramadany @al_ramadan343
7 Followers 525 Following
Bhargav Rathod @malwr4n6
356 Followers 3K Following All things DFIR & Malware Analysis | macOS/iOS DFIR & Malware Research | Staff MDR Analyst @ Unit42 | OC-DFRWS | GIAC - GREM, GIME & Advisory Board Member
Idan Banani @IdanBanani
41 Followers 637 Following Low level SW Security R&D | Vulnerability research
Mohammed BASAMED @mhbasamed
5 Followers 199 Following
Finixbit (0x0 Researc... @finixbit
328 Followers 367 Following Senior Engineer, Chief Hacker, Binary Analysis, Code Analysis, Security Research, Soldier of Christ.
Smeighez @smeighez24520
38 Followers 897 Following
C0dingBastard @C0dingB
82 Followers 84 Following Show me the code. Director de Argentina de Eclypsium Inc. Las opiniones publicadas en este medio son personales.
Nicolò Altamura @nicolodev
562 Followers 184 Following Reverse Engineer focused on decompilation, disassembly, and software internals.
vx-underground @vxunderground
439K Followers 360 Following The largest collection of malware source code, samples, and papers on the internet. Password: infected
ZaufanaTrzeciaStrona ... @Zaufana3Strona
46K Followers 278 Following Spowiedź bezpieczeństwa AD 2026 - poznaj sekrety moich zabezpieczeń: https://t.co/9hytFsalZ7
CERT Polska @CERT_Polska
35K Followers 8 Following Oficjalny profil zespołu CERT Polska | Zgłoszenie incydentu: https://t.co/NNUSNq61UT | O nas: https://t.co/mv9SshTgzy
Gynvael Coldwind @gynvael
39K Followers 1K Following security researcher/programmer/director @ HexArcana Cybersecurity GmbH ⁂ @pagedout_zine ⁂ @DragonSectorCTF ⁂ https://t.co/ShG2c5As1K ⁂ ex-Google ⁂ he/him
Grzegorz Tworek @0gtweet
38K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
hasherezade @hasherezade
91K Followers 956 Following Programmer, #malware analyst. Author of #PEbear, #PEsieve, #TinyTracer. Private account. All opinions expressed here are mine only (not of my employer etc)
Łukasz @maldr0id
12K Followers 948 Following Military-grade @Android malware reverse engineer @Google || "Tom Brady of malware strings analysis" - @MalwareTech || Tweets are my own opinions || he/him ✨🌈🦄
ᴀᴅᴀᴍ ʟᴀɴ�... @AdamLangePL
4K Followers 592 Following Breaking things professionally | Researcher | Speaker | Lecturer | Podcaster | #ProudToBeDefender | Opinions are my own.
MalwareHunterTeam @malwrhunterteam
254K Followers 37 Following Official MHT Twitter account. Check out ID Ransomware (created by @demonslay335). More photos & gifs, less malware.
ςεяβεяμs - м�... @c3rb3ru5d3d53c
26K Followers 245 Following 💕 Malware Reverse Engineer & Malware Geneticist 💕 #Binlex Developer https://t.co/EKYUS9Itvd 👩💻 She/Her
akrasuski1 @akrasuski1
135 Followers 19 Following
Keidii / Tomasz Bukow... @_keidii
362 Followers 78 Following security - mostly technical. offensive and defensive ;) (and physics, nonlinear stuff ... )
Marcin Dudek @dudekmar
2K Followers 447 Following Head of @CERT_Polska, ICS/OT Security Researcher, @Info_CCI Poland Coordinator, @BEERISAC 131
WerWolv @WerWolv
5K Followers 116 Following Embedded systems electronics engineer, mostly interested in low-level coding and console dev. Discord server: https://t.co/XmgrcyNxqP
szymex73 @szymex73
2K Followers 1K Following CTFs & 🎶🎮 | Capturing 🚩 with @justCatTheFish | @[email protected] / @szy.bsky.social
Bulek @bulkowo_
20 Followers 95 Following
implr @implring
379 Followers 426 Following Cursed Computer Connoisseur @dragonsectorctf, BGP shitposting @bgpwtf, infrastructure security at An Alphabet Corporation
Disconnect3d @disconnect3d_pl
4K Followers 706 Following Security Engineer at @trailofbits. Pwndbg maintainer, justCatTheFish CTF team captain. Opinions are my own =)
Jakub Sajniak @kubolos231
201 Followers 323 Following Pentesting at @stm_cyber. Playing CTFs with @p4_team | @S™.
Patryk Sondej @patryk4815
241 Followers 154 Following cve-2023-32233 (author), golang/ Back-end Developer working at @wirtualnapolska nicknames: Cypis, patryk4815, CTF player at @justcatthefish, Pwndbg maintainer
foxtrot_charlie @foxtrot_0x4fult
1K Followers 2K Following It won't get better. Brace for impact lads! IT security researcher/pentester, IRCop. Senior shitposter & meme evangelist. @pagedout_zine doorkicker.
Michał Leszczyński @icedevml
427 Followers 56 Following https://t.co/6OlGvVGmzn / Web security / Virtual Machine Introspection / ITSEC Automation / NFC technologies
Adam 'pi3' Zabrocki @Adam_pi3
3K Followers 341 Following Director of Offensive Security @NVIDIA, architecting @RISC_V, @LKRG_org Founder, @BlackHatEvents & @Defcon Speaker, #Phrack author, @PwnieAwards nominee
kazet @kazet1234
79 Followers 14 Following
Robert Tomkowski @trodbert
175 Followers 93 Following Software and security engineer. Currently working on his world domination plan as CEO of @hacking_dept and Head of R&D at @stm_cyber. Member of @p4_team.
TheSasza8 @TSasza8
32 Followers 102 Following
Bonus @BonusPlay3
444 Followers 532 Following programming & hardware & security 🦆 Pretending I know what I'm doing at @stm_cyber. Playing CTFs for @p4_team.
Maya :3 @meithecatte
532 Followers 190 Following standard-issue programmer catgirl · |she/her⟩ + |it/they⟩ · irredeemably genderfucked · slut for abstraction and bit-wrangling · alleged math nerd
@[email protected]... @ptrcnull
440 Followers 409 Following she/her | 🥰🥺 | moved to the fediverse https://t.co/VPvrftHF7U ( @[email protected] ) also @ptrc.gay on Bluesky
2 Wanda 💙 @mwk4
831 Followers 200 Following reach heaven through violence pfp: https://t.co/ZM36jIonjV
Itay Cohen 🌱 @megabeets_
6K Followers 536 Following Animal liberation activist 🌟 Forbes 30 Under 30 • Sr. Principal Researcher @ Unit 42 • Maintainer of Cutter and Rizin I don't eat animals.
Direction Blind Human... @mickeyftnt
241 Followers 1K Following Current: TD Bank Account for following infosec and healthcare people. I may DM you if I have queries
Hubert Jasudowicz @hjasudowicz
107 Followers 239 Following Playing CTFs for @p4_team. pwns and stuff.
Anna Miaśkiewicz @devnullek
672 Followers 488 Following
Gabi @hookgab
2K Followers 410 Following Security Researcher and Threat Hunter @SecureWithHUMAN Malware, gaming and everything in-between. ⚠️ My tweets are my own ⚠️ https://t.co/IK7sesL9M4
Pierre-Luc Vaudry @VaudryPL
10 Followers 11 Following #AI R&D for #emailsecurity @ZEROSPAM. PhD in #NLP @UMontrealDIRO. Degrees in both Computer science and #Linguistics. Thesis and several internships in #NLG.
Felix @felixw3000
2K Followers 497 Following 👨💻 Engineer, passionate about IT security 🔬 Daytime: Researcher @SophosXOps 🧪 Nightime: write-ups on experiments @ https://t.co/JD9nTOciQE 🙋 Opinions are my own
Knudsen Baio @JasonMilletary
448 Followers 544 Following shitposting and/or basketball more serious: https://t.co/KkRDPJhwgH
Vitali Kremez @VK_Intel
43K Followers 86 Following Ethical Hacker | Reverse Engineer | CEO @AdvIntel | Malware Course Author "Zero2Hero" / "Zero2Automated" | Former .gov Cybercrime | Threat Seeker Award
icchy @t0nk42
2K Followers 155 Following CTF @TokyoWesterns (founder/captain), ja: @icchyr, Opinions are my own. @[email protected]
Daniel Plohmann @push_pnx
4K Followers 183 Following Reverse Engineering & Malware Research @Fraunhofer_FKIE. Projects: @Malpedia, DGArchive, MCRIT, SMDA, ApiScout, IDAscope.
R0bert R0senb0rg @drProct0r
1K Followers 940 Following Playing cat and mouse with malware. R0bert is not my real name. I work for an AV company. Tweets are obviously mine.
Michał Kowalczyk �... @dsredford
4K Followers 172 Following reverse-engineering / low-level security @DragonSectorCTF vice-captain / Invisible Things Lab Mastodon: @[email protected] bsky: @mkow.bsky.social
Dhia Mahjoub, PhD @DhiaLite
2K Followers 3K Following Problem solver. Product builder. Innovator. former Head of Security Research @OpenDNS. #Cybersecurity, #DataAnalysis, #Web3, #BlockchainAnalytics.
Paweł Srokosz @_psrok1
1K Followers 298 Following Security researcher | Malware analyst at @CERT_Polska_en | @p4_team member
Nazywam @nazywam
1K Followers 297 Following 301 @nazywam.bsky.social //Security research at @CERT_Polska_en
Not on here anymore, ... @malwaretech
30K Followers 2 Following No longer using Twitter. Check out https://t.co/BYnF2Aml7H for where to find me.
Paul Burbage @hexlax
3K Followers 957 Following Co-Founder @MalBeacon https://t.co/e9YTNSPUI5 | Board Member @BSidesCHS. Tweets are mine & should be dismissed as bourbon-fueled ramblings.
Jakub Kroustek @JakubKroustek
7K Followers 542 Following Threat Research & Applied AI @ Gen (Norton, Avast) | Agentic AI Safety | Sage ADR | ɿɘɘniǫnɘ ɘƨɿɘvɘЯ | Malware hexorcistYou might like
