Sander Maas @__Retrospect
Ethical Hacker & Red Teamer Netherlands Joined July 2009-
Tweets2K
-
Followers455
-
Following264
-
Likes145
The last talk of day one of #x33fcon 2026 is delivered by @chvancooten "The Best #Defense Is A Good #Offense: A Pragmatic Path to Continuous #Purple Teaming" - x33fcon.com/#!/s/CasvanCoo… #automation, #attack_simulation
🚀 Super excited to finally share that I have been working on a startup for over a year: @offensys! Offensys provides an enterprise platform for automated advanced attack simulations to enable continuous posture validation. 🌐Check out our new website: offensys.nl
@MarcOverIP @Cneelis @MDSecLabs @OutflankNL I’ve had a great time, the talks were amazing! Thanks a lot again for organizing @MDSecLabs @OutflankNL and @max__grim @c3c for creating the awesome badge 💯
Shall we call them "Hidden"? Hiado makes use of some undocumented Azure DevOps APIs to enumerate permissions on repositories within your organization. Big shout-out to @chvancooten and @__Retrospect who came up with attack paths this tool is based on. github.com/oldboy21/Hiado
Surprise, surprise... the new Teams client that is based on Edge WebView has the same issue in a similar "Session Storage" folder somewhere in %localappdata%
If you are looking for an easy way to access O365 refresh tokens when landing on an endpoint, have a look at the log files on the endpoint stored in "%localappdata%\Microsoft\Olk\EBWebView\Default\Session Storage\" [1/2]
... a C2 profile that uses Websockets. The pull requests have been submitted but until these are merged you can check it out at my fork: github.com/Retrospected/A… [2/2]
I have been playing around with the Apollo agent of Mythic C2 the past couple of weeks and decided to try and add some new features. I combined the work of RunOF by @Nettitude_group to add a loader to run your favorite BOF's and ... [1/2]
SOAPHound is out for walkies! SOAPHound is a #BloodHound collector to enumerate AD over SOAP instead of LDAP directly. Proud of Nikos for all his hard work! Blog: medium.com/falconforce/so… Tool repo: github.com/FalconForceTea… Detections: github.com/FalconForceTea…
YOLO: You Only Load Once Parsing RUNTIME_FUNCTION entries to hide the ReflectiveLoader function. Little experiment with hopefully some nice future developments. oldboy21.github.io/posts/2024/01/… #offsec #security #cplusplus #reflectivedll #pe
You might be lucky enough to find yourself 1 or 2 tokens. These seem to be placed as soon as one of the shortcuts on the left side of the latest Outlook client is used. Disclosing this here because MS will not fix the reported issue. [2/2]
If you are looking for an easy way to access O365 refresh tokens when landing on an endpoint, have a look at the log files on the endpoint stored in "%localappdata%\Microsoft\Olk\EBWebView\Default\Session Storage\" [1/2]
What's better for Christmas than a nice read about Reflective DLL Injection? 🎄 #reflectivedll #oldbutgold #cplusplus #code #belloblog oldboy21.github.io/posts/2023/12/…
Finding secrets in Office365 resources using the GraphAPI, check out a little something I made to help you with this: github.com/Retrospected/G…
Time to share something I have been working on as a small hobby project: PurpleKeep provides an Attack Simulation platform to serve as a starting point for your End-to-End Detection Rule Validation in an Azure-based environment. Check it out at: github.com/Retrospected/P…
@chvancooten @x33fcon It’s me being jelly.. 👨🦲 enjoy!!
Bypassing CrowdStrike, Microsoft Defender for Endpoint etc. for fun.. not profit vanmieghem.io/blueprint-for-…
Happy April Fool’s day! Today’s blog is no joke though. While debugging MDE, Gijs discovered an interesting vulnerability. This enabled sending spoofed data to any M365 tenant. Both the CVE and patch have been released a while ago, so it’s time to share! medium.com/falconforce/de…
Spring Boot 2.5.12 has been released. This release contains a fix for CVE-2022-22965, check the release announcement and the dedicated blog post it links to: spring.io/blog/2022/03/3…
Olaf Hartong @olafhartong
17K Followers 980 Following @FalconForceTeam | researcher with a camera | Microsoft MVP | Snow man role model
Marc Smeets @MarcOverIP
5K Followers 510 Following Does a thing or two with red teaming @OutflankNL | part time race and drift car instructor
Cas van Cooten @chvancooten
10K Followers 670 Following @Offensys Co-Founder || Benevolently malicious offensive security enthusiast || OffSec Developer & Malware Linguist
Dave Kennedy @HackingDave
231K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Pod. God + Family/Hacker/CSO/USMC/Intel/Fitness. Make the world a better place.
Oscar Koeroo @okoeroo
4K Followers 1K Following High-performance security, Concern CISO MinVWS, Kobayashi Maru, #OpCyberpaint, Daddy^2, Husband, Hacker, Creative.
Thijs Bosschert @ThiceNL
1K Followers 199 Following Security, IR & SOC professional. Escape room & game creator. Sometimes plays CTFs with Eindbazen, Jobless Hackers & Spotless.
FalconForce Official @falconforceteam
3K Followers 335 Following Building a resilient digital society through highly specialised digital security consulting.
GJ @gertjanbruggink
1K Followers 405 Following Builder, Cybersecurity Contrarian & Film buff obsessed with systems thinking | Founder & CEO @venationdigital
JMP RSP @0xffhh
389 Followers 329 Following offensive security addict. @falconforceteam co-founder. speed maniac.
Clara Bowman @BowmanClar7850
27 Followers 1K Following Loving, loyal, and ready to share life’s adventures. Looking for something real ❤️❤️
Expl0itabl3 @Expl0itabl3
888 Followers 2K Following
Vinay Kandul @KandulVinay
2 Followers 52 Following
Camden Sporer-Rohan @CamdenRoha79439
6 Followers 170 Following Recruiting webshell engineers to penetrate websites, with a monthly salary of up to $100,000. If interested, please contact https://t.co/H0OkAoJ9jZ
tonghuaroot @tonghuaroot
470 Followers 4K Following Staff Security Engineer. Cyber Security enthusiast, not Hacker. Focus on Application Security, Penetration testing. #OSCP #OSEP #MSCS #RedTeam #AppSec #WebSec
Vidad @DaddaDaud
112 Followers 1K Following OSCP | OSEP | CEH | CRTE | CRTP | CARTP | CISSP | CISM | AZ-500 | SC-100 | SC-200 Passionate cyber enthusiasts lost in space
dexter @dexter79331247
1 Followers 2K Following
Hai Au Huynh @bibob1b0
136 Followers 663 Following
Spiros Fraganastasis @m3g9tr0n
14K Followers 2K Following Team @hashcat! Eternal n00b and knowledge seeker! Age is just a number and motivation is the fuel! Whatever you do in your life, do not forget to be humble.
Filip Dragovic @filip_dragovic
7K Followers 1K Following My research unless stated otherwise. My opinions are my own and do not represent the views of my employer. Red Team @MDSecLabs
nanjin002 @nanjin00272827
12 Followers 4K Following
Damien Vermaas @__dvermaas__
62 Followers 454 Following Ethical Hacker. Penetration Tester. DevSecOps Enthusiast.
DarkRay @darkr4y
169 Followers 1K Following cyber sec enthusiasts. now its time to pentest! ٩(•̤̀ᵕ•̤́๑)
RSAC Parties @RSACParties
829 Followers 2K Following Unofficial listing of RSA & Vendor Parties at RSA Conference 2026. Not affiliated with RSA. Serverless build by @sheffus on @AWScloud. DMs to @reInventParties
sender @senderend
117 Followers 95 Following Pentester, Red Teamer @Specterops | OSCP https://t.co/NxqedjZKrn https://t.co/2Srd2LBpUo https://t.co/ocu6vX5cF5
Brygida Papier @BrygidaPapier
0 Followers 9 Following
Moustafa Abdo Mohy @MoustafaAbdoMo3
17 Followers 667 Following فَمِنْهُم مِّن قَضَى نَحْبَهُ وَمِنْهُم مَّن يَنتَظِرُ وَمَا بَدَّلُوا تَبْدِيلًا Information Systems
jomana Hassan @jomana7rj
1 Followers 258 Following
Hugow @hugow_vincent
1K Followers 1K Following Red Team and research @synacktiv @rustyphasm.bsky.social
Chirag Savla @chiragsavla94
3K Followers 5K Following With Knowledge We Know the Words.. But... With experience We Know their Meaning ! #HOF #Microsoft #BigBasket
Carl Nykvist @CarlNykvist
199 Followers 1K Following
werdhaihai @werdhaihai
573 Followers 480 Following Principal Red Team Operator @armadinsecurity https://t.co/pztdK7udq3
TW🐕 CNM @Relay73749746
13 Followers 105 Following 你骂我我连通知都不会看 但是你别让我看见你 那么你爹我就要攻击你了,反正是你爹先攻击的你,哈哈气不气操你妈
Jochem @DudeNIX
7 Followers 41 Following
m0-matic @M0Matic
25 Followers 1K Following
ShadowBumble @ShadowBumble
41 Followers 190 Following Cyber Security :: Insert various certifications :: Theorycrafter :: Tweets are Own
Cody Thomas @its_a_feature_
8K Followers 311 Following Mythic Developer (https://t.co/Uz4fOxIUbe) | @SpecterOps @[email protected] | @its-a-feature.bsky.social
prakash kamalakannan @sn0wli0n
649 Followers 6K Following Security Researcher @Acronis #OSCP #Adversaryemulation
Michel Klomp @woodenshoe
210 Followers 214 Following
annumeena @annumeena19
75 Followers 8K Following
Dimitrios Bougioukas @DBougioukas
453 Followers 249 Following ➡ VP, IT Security Training Services @hackthebox_eu ➡ (Informal) Expert, Incident Response Technical Training @enisa_eu
Pascal @Pascal_0x90
499 Followers 1K Following Memes | Coffee | I apparently use Emacs now | CTF with Shellphish | Malware | All posts and thoughts are probably from Stack Overflow | Tick 196 enthusiast
Aloïs Thévenot @TechBrunchFR
2K Followers 1K Following Jack of all trades, master of some. CTO / Pentester @vaadata - Bluesky: @techbrunch.fr
Crash @CrashinYoGame
47 Followers 187 Following
Dirk-jan @_dirkjan
30K Followers 206 Following Hacker at @OutsiderSec. Researches AD and Azure (AD) security. Likes to play around with Python and write tools that make work easier.
Olaf Hartong @olafhartong
17K Followers 980 Following @FalconForceTeam | researcher with a camera | Microsoft MVP | Snow man role model
Marc Smeets @MarcOverIP
5K Followers 510 Following Does a thing or two with red teaming @OutflankNL | part time race and drift car instructor
vx-underground @vxunderground
439K Followers 359 Following The largest collection of malware source code, samples, and papers on the internet. Password: infected
John Hammond @_JohnHammond
321K Followers 3K Following Cybersecurity Researcher @HuntressLabs Just Hacking Training @JustHackingHQ w/ @ethicalhacker https://t.co/UtsNJiyQtS && https://t.co/narO3sz7y6
Cas van Cooten @chvancooten
10K Followers 670 Following @Offensys Co-Founder || Benevolently malicious offensive security enthusiast || OffSec Developer & Malware Linguist
Dave Kennedy @HackingDave
231K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Pod. God + Family/Hacker/CSO/USMC/Intel/Fitness. Make the world a better place.
Oscar Koeroo @okoeroo
4K Followers 1K Following High-performance security, Concern CISO MinVWS, Kobayashi Maru, #OpCyberpaint, Daddy^2, Husband, Hacker, Creative.
Thijs Bosschert @ThiceNL
1K Followers 199 Following Security, IR & SOC professional. Escape room & game creator. Sometimes plays CTFs with Eindbazen, Jobless Hackers & Spotless.
Jean @Jean_Maes_1994
12K Followers 1K Following @sansoffensive Certified instructor/SEC565 author/SEC699 co author https://t.co/cp5DerI3g4
Florian Roth ⚡️ @cyb3rops
221K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Justin Elze @HackingLZ
71K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
FalconForce Official @falconforceteam
3K Followers 335 Following Building a resilient digital society through highly specialised digital security consulting.
Cn33liz @Cneelis
13K Followers 597 Following Red teamer @ Outflank. Passionate about networking and cybersecurity | father of two superheroes.
Adam Chester 🏴�... @_xpn_
38K Followers 540 Following Hacker for Hire at @SpecterOps | Blog at https://t.co/tjfTOlmau2 | Insta at https://t.co/PqR6CZQ48T
Edwin van Andel @Yafsec
5K Followers 2K Following https://t.co/N6FLQyoPB7 | CTO | Speaker | Security | Hacking | ALT-S Organizer | נקר ירוק | Last Unicorn Con | Defcon 003120 | @iamthecavalry | @[email protected]
Jack Rhysider 🏴... @JackRhysider
171K Followers 4K Following Creator of @DarknetDiaries. Tell me a good hacker story. 💻🔦⤵️🐰🕳️ Discord: https://t.co/qxanMuJ5X2
Spiros Fraganastasis @m3g9tr0n
14K Followers 2K Following Team @hashcat! Eternal n00b and knowledge seeker! Age is just a number and motivation is the fuel! Whatever you do in your life, do not forget to be humble.
MDSec @MDSecLabs
16K Followers 2 Following Consultancy and Training for offensive security by trusted experts | https://t.co/HtHSYcDxoK | https://t.co/UvOhGA5xe2 | @nighthawk_c2
Filip Dragovic @filip_dragovic
7K Followers 1K Following My research unless stated otherwise. My opinions are my own and do not represent the views of my employer. Red Team @MDSecLabs
Damien Vermaas @__dvermaas__
62 Followers 454 Following Ethical Hacker. Penetration Tester. DevSecOps Enthusiast.
Rob Jetten @MinPres
1.4M Followers 44 Following Minister-president van Nederland – Redactie door de Rijksvoorlichtingsdienst.
Delta Force Game @DeltaForce_Game
147K Followers 970 Following Delta Force is the ultimate team-based first-person shooter free to play on PC, mobile, and consoles. Get the best deal: https://t.co/rUBGALZ3B5
offensivecon @offensive_con
28K Followers 1 Following OffensiveCon Berlin is a technical international security conference focused on offensive security only. Organised by @Binary_Gecko. Stay tuned #OffensiveCon26.
Fox_threatintel @banthisguy9349
16K Followers 286 Following Just a person who is against cyber crime and dictators like Putin
Erik Van Buggenhout @ErikVaBu
2K Followers 256 Following Co-founder of NVISO, SANS Instructor & Author. Failed comedian. Red (purple) teaming & incident response.
Erik Remmelzwaal @erikremmelzwaal
1K Followers 561 Following Managing Director @zolderio | Cybersecurity | Hacking | 🐘 https://t.co/koJ6IWT97m | 🦋 https://t.co/SzKAH1ySrm
Stephen Sims @Steph3nSims
26K Followers 861 Following Perpetual Student | SANS Fellow | Musician | Braggart Hater | Gray Hat Hacking | VR | 🏂 | deadcode | https://t.co/4neOSsnCQ8
Matt Hand @matterpreter
10K Followers 195 Following Building @originhq | Author, Evading EDR @nostarch
ProjectDiscovery @pdiscoveryio
42K Followers 144 Following Real, exploitable vulnerabilities. No noise. Nuclei scans fast. Neo closes the loop. @pdnuclei × @neo_ai_engineer
Chris Thompson @retBandit
7K Followers 921 Following CEO @ RemoteThreat & Founder of Offensive AI Con | Former Head of X-Force Adversary Services | Black Hat Review Board | inveni et usurpa
x86matthew @x86matthew
23K Followers 203 Following system emulation / reverse-engineering / binary analysis. @the_secret_club
RSAC Parties @RSACParties
829 Followers 2K Following Unofficial listing of RSA & Vendor Parties at RSA Conference 2026. Not affiliated with RSA. Serverless build by @sheffus on @AWScloud. DMs to @reInventParties
Alfie Champion @ajpc500
3K Followers 541 Following Founder at @delivr_to | Author of Practical Purple Teaming | Detection & Emulation at @github | Tweets my own
Malvuln (aka hyp3rlin... @malvuln
3K Followers 102 Following Powered by malware Malware vulnerability research
National Crime Agency... @NCA_UK
168K Followers 2K Following National Crime Agency. Protecting the public from serious and organised crime. Don't report crime on X. Please call 101. In emergencies always call 999
Fastest Pitstop @FastestPitStop
207K Followers 469 Following Home of breaking Formula 1 news and more. Brought to you faster than a pitstop. For promotions or enquiries, email us at [email protected]
werdhaihai @werdhaihai
573 Followers 480 Following Principal Red Team Operator @armadinsecurity https://t.co/pztdK7udq3
Tijme Gommers @tijme
2K Followers 608 Following Offensive Security at @ABNAMRO 🐙. Forensics at @HuntedNL. Cyber Cyber Cyber ⚡. Bluesky: https://t.co/536oE2DGUw
Cody Thomas @its_a_feature_
8K Followers 311 Following Mythic Developer (https://t.co/Uz4fOxIUbe) | @SpecterOps @[email protected] | @its-a-feature.bsky.social
MalDev Academy @MalDevAcademy
20K Followers 8 Following Providing specialized, module-based security training and resources designed for cyber security professionals
Kuba Gretzky @mrgretzky
17K Followers 759 Following Creator of Evilginx - Reverse Proxy Phishing Framework for Red Teams: https://t.co/hPg644CTnM
Grzegorz Tworek @0gtweet
38K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
Gemeente Houten @gemHouten
4K Followers 165 Following Berichten van de gemeente Houten. Reageren? Graag! Maar hou je aan de spelregels: https://t.co/MKhjZsW8C8
Ebrahem Hegazy 🇵�... @Zigoo0
35K Followers 932 Following Founder of @DarkEntryAMS. Vulnerabilities Hunter since 2013. ex Sr. Manager at Visa Inc, HackerOne, Deloitte, QCERT and EGCERT. Tweets are my own.
Jorge Orchilles @jorgeorchilles
11K Followers 470 Following SANS Principal Instructor & Author #SEC565 | #RedTeam | #PurpleTeam | #PenTest | #C2Matrix Creator | ATT&CK & Atomic Red Team Contributor | Published Author
Lawrence Abrams @LawrenceAbrams
18K Followers 834 Following Ransomware, Online Security, and Malware. Owner, Editor in Chief of @bleepincomputer. DM on Signal: LawrenceA.11 * https://t.co/LXVRoICs8Z
blackorbird @blackorbird
42K Followers 702 Following Peace and Love. Just Analysis/Hunter/Youtuber/AiCoder/Entrepreneur/. #APT #threatIntelligence #Exploit #CTI #meme #cyber #hacker #OSINT #Ai Need Remote Job
Carrie Roberts @OrOneEqualsOne
5K Followers 411 Following Mechanical Engineer turned Developer turned Pentester turned Red Teamer turned Blue-ish Purple. Instructor for Antisyphon Training. GIAC GSE Certification.
ATT&CK @MITREattack
117K Followers 515 Following MITRE ATT&CK® - A knowledge base for describing the behavior of adversaries. Replying/Following/Re-tweeting ≠ endorsement. @ https://t.co/wt46ArkZVt
Microsoft 365 Status @MSFT365Status
306K Followers 4 Following The official @Microsoft account for updates on certain @Microsoft365 service incidents. Get push notifications on our admin app: https://t.co/pGaOsdAblF.
The Cyber Bodyguard @_CyberBodyguard
8 Followers 57 Following The unfiltered opinions on the cyber security topics. Helping individuals to become more secure and aware.
Octoberfest7 @Octoberfest73
9K Followers 189 Following Red Team | Offensive Tool Dev | 2x Course Author @ Zero-Point SecurityYou might like
