Rich Warren @buffaloverflow
Red Team & Offensive Security Research @AmberWolfSec // @buffaloverflow.rw.md on bsky Joined May 2011-
Tweets2K
-
Followers11K
-
Following668
-
Likes4K
@HaifeiLi Looked at the gh repo and confirmed its bs. Doesn’t contain any of the prototype pollution gadgets, just some semi-convincing garbage
1
0
7
969
0
View Details
NSIS 3.12 has been released, which fixes a potential privilege escalation issue: nsis.sourceforge.io/Docs/AppendixF… If you read our recent blog post related to NSIS then maybe this might be useful
Next, Next, SYSTEM: Exploiting NSIS installer bugs to escalate privileges in Zscaler Client Connector In this blog post I show how patch gaps in Zscaler's bundled NSIS versions led to LPE.. includes PoCs and yara rule to help you find other affected s/w blog.amberwolf.com/blog/2026/apri…
Rich Warren retweeted
"You need to be admin to run the installer anyway." A common pushback that misses an entire class of attack. New research from @buffaloverflow on exploiting NSIS installer bugs to escalate from a standard user to SYSTEM in Zscaler Client Connector.
Next, Next, SYSTEM: Exploiting NSIS installer bugs to escalate privileges in Zscaler Client Connector In this blog post I show how patch gaps in Zscaler's bundled NSIS versions led to LPE.. includes PoCs and yara rule to help you find other affected s/w blog.amberwolf.com/blog/2026/apri…
here's my writeup for the latest Netskope LPE this was a fun bypass of CVE-2025-0309, and highlights an interesting cloud-based attack surface :) blog.amberwolf.com/blog/2026/marc…
Finishing off the week with a writeup of CVE-2025-0309 - Netskope Windows Client LPE This was one of the bugs we demo’d in our DEF CON #ZeroTrustTotalBust talk. Also releasing a NachoVPN plugin and our 🆙skope PoC. Details on the @AmberWolfSec blog: blog.amberwolf.com/blog/2025/augu…
So nice they patched it thrice
Delinea protocol handler RCE number 3. blog.amberwolf.com/blog/2026/febr…
@HaifeiLi ODT config that works without auto update :) gist.github.com/rxwx/0b9eadc68…
@mkolsek @HaifeiLi @EXPMON_ @yorickkoster this trick still works on Word 2019 (10417.20080). No idea if it's actually the security feature bypass they patched, but this does actually work in preview pane.. so ..🤷♂️
Rich Warren retweeted
A CheckPoint Harmony priv esc that @buffaloverflow and I found last year: blog.amberwolf.com/blog/2026/janu…
@_xpn_ 💯 I felt the same when I saw it earlier. It’s sad to see the monetisation of outrage seep through into the infosec TL, but good to call out this shitty behaviour
Rich Warren retweeted
Zero Trust is not a product it is an approach - at the @NCSC we have just released demystifying zero trust which addresses common misconceptions, and provides practical advice on when and how it should be adopted. ncsc.gov.uk/collection/zer…
@cyb3rops Probably an eula violation so you shouldn’t do it, but as a point of interest MS ship a big list of “FriendlyFile” hashes in Defender’s vdm db github.com/commial/experi…
@irsdl Haha thanks 😆 Unfortunately readme\.md was taken but I like your interpretation!
I made a website that lets you generate VBA macro docs in your browser (using rust+wasm!): vba.rw.md ^just for fun, inb4 "motw kills macros" etc. 😅
Florian Roth ⚡️ @cyb3rops
220K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Justin Elze @HackingLZ
70K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Nicolas Krassas @Dinosn
157K Followers 763 Following Head of Threat & Vulnerability Mgmt @ Henkel AG & Co. KGaA https://t.co/NC1orlKZLB Posting content that I find interesting.
Adam Chester 🏴�... @_xpn_
38K Followers 538 Following Hacker for Hire at @SpecterOps | Blog at https://t.co/tjfTOlmau2 | Insta at https://t.co/PqR6CZQ48T
chompie @chompie1337
88K Followers 1K Following hacker, exploit developer/weird machine mechanic head of X-Force Offensive Research (XOR) @IBM
Grzegorz Tworek @0gtweet
38K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
Will Dormann is on Ma... @wdormann
26K Followers 1K Following I play with vulnerabilities and exploits. I used to be here on Twitter but now I'm here: @[email protected] https://t.co/hXggdAVkSQ
Vincent Yiu @vysecurity
32K Followers 344 Following Director, Red Team / Offensive Security. Help organizations safeguard their businesses from the bad guys.
Mike Felch (Stay Read... @ustayready
17K Followers 2K Following Offensive @ TrustedSec | Hacking since Renegade BBS backdoors | Prior CrowdStrike/BHIS | In Christ's grip | Fighter for truth | K1HAQ
mgeeky | Mariusz Bana... @mariuszbit
14K Followers 949 Following 🔴 Offensive Security Developer @ Outflank, Red Team operator, ex-AV dev, ex- malware researcher 🫖 Green tea lover
b33f | 🇺🇦✊ @FuzzySec
33K Followers 1K Following 意志 / mobile research @ ▓▓▓▓▓ / Team 501 / ex IBM Capability Lead & FireEye TORE / I rewrite pointers and read memory / AI Psychoanalyst / Teaching @CalypsoLabs
Dirk-jan @_dirkjan
30K Followers 205 Following Hacker at @OutsiderSec. Researches AD and Azure (AD) security. Likes to play around with Python and write tools that make work easier.
Dominic Chell 👻 @domchell
18K Followers 551 Following Just your friendly neighbourhood red teamer @MDSecLabs @nighthawk_c2 | Creator of /r/redteamsec | https://t.co/3k3EBAZqGd | https://t.co/KwO2OwDOkl
Stephan Berger @malmoeb
29K Followers 1K Following Head of Investigations @InfoGuardAG https://t.co/A5lnFAu7eX
Will @BushidoToken
38K Followers 3K Following Senior Threat Intel Advisor @TeamCymru | Co-founder @CuratedIntel | Co-author @SANSForensics FOR589 | Co-founder @BSidesBournemth | @darknetdiaries #126: REvil
Thomas Cannon @thomas_cannon
950 Followers 182 Following Occasional tweets about: Mobile Security Research. Penetration Testing and Reverse Engineering.
Lil Bindle @YungBindlestiff
101 Followers 5K Following
Thanatos Tian @HototogisuTian
22 Followers 319 Following CTF Player @ L3H_Sec / Game Security / Windows Security / Bug Hunter / CS PhD Student
Kylian Mbappe @turtle0943218
3 Followers 84 Following
Aretiico Group plc. @AretiicoGroup
1 Followers 53 Following UK's First and Only Certification Authority: Empowering Sovereignty and Security in Digital Trust. Follow us here: https://t.co/2NTEMQUhb4
who1am @nowindows9
5 Followers 202 Following
Mohamed Adel @0xd01a
476 Followers 2K Following All about: Malware analysis | Reverse Engineering | CTI | DFIR. OPEN TO WORK.
MAk @BugBountyBeast
6 Followers 1K Following
manjeri @manjeriredteam
0 Followers 6 Following
doghero @dogherohero
17 Followers 545 Following
Sual @SualGoodWAN
0 Followers 49 Following 23 | just vibing music • memes • midnight thoughts trying to stay sane
Nancy T @esrakoc05
12 Followers 688 Following Just a colorful girl who feels velvet and dreams fragile futures 🌌
C @C9pue
2 Followers 368 Following
Feng Xue @s0what
1K Followers 3K Following Founder of ThreatBook(CTI provider). ex Microsoft TwC, ex Amazon InfoSec.
wang junren @WJunren1144
1 Followers 263 Following
twis @Twis65640Twis
2 Followers 524 Following
Blaze @atheosblazezero
20 Followers 856 Following
Hillary Soita @mortaltechniq
1K Followers 1K Following Part time nerd | Beyond a script kiddy | Guardian of the Web : Vol 2 | More listening, less speaking | I Think Pad | co-founder @BSidesNairobi
OneWildSoul @OneWildSoul1
18 Followers 975 Following
Sporto - good trouble... @jmadincea
2K Followers 7K Following Country First! Rise with us! Strong as individuals - unbeatable as a team!
Yagami @yagami1999
141 Followers 6K Following
Alaa Kachouh @Alaatk9
3 Followers 121 Following
Luke @lukeparadoxis
52 Followers 238 Following I barely use Twitter btw, contact me via my website instead. Views and opinions expressed here are mine and not that of my current or past employers'.
L@ND3v @LND3v1
4 Followers 549 Following
2B @2B9975657120850
19 Followers 2K Following
withlogic @withlogic
165 Followers 896 Following information security, homebrew development, emulator enthusiast, sysadmin of sorts.
TELDROP @TELDROP_X
1 Followers 65 Following
Rodrigo Rios @Rodrigofrj
49 Followers 2K Following O sábio nunca diz tudo o que pensa, mas pensa sempre tudo o que diz. Aristóteles.
mikebriggs1973 @mikebriggs1973
73 Followers 4K Following
Tran Frederic @00psme
9 Followers 239 Following
Karthikeyan CB @karthikeyan_cb
18 Followers 1K Following
kuan @nulldiscipline
0 Followers 453 Following
San milan @Sanmilan716693
10 Followers 990 Following
Mchenzie @Osenliahenry
93 Followers 2K Following
yangchangcheng @BugPassthru
15 Followers 429 Following
Arlen Yan @arlenyan
66 Followers 787 Following
Florian Roth ⚡️ @cyb3rops
220K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Justin Elze @HackingLZ
70K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Adam Chester 🏴�... @_xpn_
38K Followers 538 Following Hacker for Hire at @SpecterOps | Blog at https://t.co/tjfTOlmau2 | Insta at https://t.co/PqR6CZQ48T
chompie @chompie1337
88K Followers 1K Following hacker, exploit developer/weird machine mechanic head of X-Force Offensive Research (XOR) @IBM
Grzegorz Tworek @0gtweet
38K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
Will Dormann is on Ma... @wdormann
26K Followers 1K Following I play with vulnerabilities and exploits. I used to be here on Twitter but now I'm here: @[email protected] https://t.co/hXggdAVkSQ
Vincent Yiu @vysecurity
32K Followers 344 Following Director, Red Team / Offensive Security. Help organizations safeguard their businesses from the bad guys.
Rad @rad9800
10K Followers 687 Following ex-founder. building solutions to secure organizations. prev @deceptiq_ (acq.), now at @thinkstcanary
mgeeky | Mariusz Bana... @mariuszbit
14K Followers 949 Following 🔴 Offensive Security Developer @ Outflank, Red Team operator, ex-AV dev, ex- malware researcher 🫖 Green tea lover
b33f | 🇺🇦✊ @FuzzySec
33K Followers 1K Following 意志 / mobile research @ ▓▓▓▓▓ / Team 501 / ex IBM Capability Lead & FireEye TORE / I rewrite pointers and read memory / AI Psychoanalyst / Teaching @CalypsoLabs
x86matthew @x86matthew
23K Followers 204 Following system emulation / reverse-engineering / binary analysis. @the_secret_club
TrendAI Zero Day Init... @thezdi
89K Followers 16 Following TrendAI Zero Day Initiative™ (ZDI) is a program designed to reward security researchers for responsibly disclosing vulnerabilities.
DirectoryRanger @DirectoryRanger
37K Followers 102 Following This account assembles and disseminates information related to Active Directory and Windows security.
Dirk-jan @_dirkjan
30K Followers 205 Following Hacker at @OutsiderSec. Researches AD and Azure (AD) security. Likes to play around with Python and write tools that make work easier.
Dominic Chell 👻 @domchell
18K Followers 551 Following Just your friendly neighbourhood red teamer @MDSecLabs @nighthawk_c2 | Creator of /r/redteamsec | https://t.co/3k3EBAZqGd | https://t.co/KwO2OwDOkl
Yarden Shafir @yarden_shafir
25K Followers 318 Following A circus artist with a visual studio license
Greg Linares (Laughin... @Laughing_Mantis
37K Followers 2K Following 20+ yrs in Infosec. Malware Influencer. I turn Malware into Art and Music. Art @MalwareArt. 4x Pwnie Nominee. 𝕍𝕏. GameDev. Autistic.
hasherezade @hasherezade
90K Followers 952 Following Programmer, #malware analyst. Author of #PEbear, #PEsieve, #TinyTracer. Private account. All opinions expressed here are mine only (not of my employer etc)
akano @princessakano
3K Followers 522 Following infra sec (づ ◕‿◕ )づ c*mmunity manager @uwu_underground uwucada team Light the skies... burn it all down.
Jason Lang @curi0usJack
16K Followers 203 Following @TrustedSec Red Team lead | Hi-Fidelity trolling | Liberty/Privacy Enthusiast | Linux | Putting the "no" in nano | Avatar: https://t.co/3XHmKR8nCk
João Victor @joaoviictorti
572 Followers 233 Following Offensive Security Analyst | Windows Internals | Rust
William Burgess @joehowwolf
2K Followers 4K Following Ex-theoretical physicist, currently terrible hacker and wannabe security researcher. Views are, regrettably, my own. Likes = bookmarks
UwU Underground @uwu_underground
16K Followers 285 Following 🐴Pwnie Award Winning & Nation State funded psyop featuring 6 AI Anime Waifus and a Pup™ singing about APTs, Grifters, & Snake Oil in InfoSec 🖤🩷💚💙💜🤍
Sam Curry @samwcyo
101K Followers 1K Following
haroon meer @haroonmeer
17K Followers 3K Following Security Geek at Thinkst. We build https://t.co/Sv6Gp3sG6b
Wietze @Wietze
7K Followers 336 Following Threat Detection & Response. Views are my own, unless retweeted. Maintainer of https://t.co/000t7J0NBR & https://t.co/thv6PP5C48 Co-maintainer of https://t.co/rXIxOggXs2
Darren McDonald @R3n5k1
120 Followers 96 Following Currently into Rust, phishing, redteaming, and hardware.
Caitlin Condon @catc0n
4K Followers 3K Following Adventurer. Takes a lot of photos, calls many places home. Research VP @VulnCheckAI. Previous research director @Rapid7 / @metasploit. Opinions mine. She/her.
Ryan Emmons @the_emmons
560 Followers 538 Following Security Researcher, P2O ‘24. This profile is my own, and my tweets don't represent my employer :) https://t.co/D9PuJ9Ur9m
Iain Smart @smarticu5
923 Followers 852 Following Hacker, coffee drinker, film watcher. Former secretary of @AbertayHackers, now I break into containers and pipelines for @controlplaneio
Matt Burch @emptynebuli
235 Followers 175 Following Security researcher with an interest in breaking the world of IoT to win fast cash at the ATM 😉
Shawn @anthemtotheego
2K Followers 418 Following CTO & Co-Founder @RemoteThreat | Ex Head of Capability R&D Adversary Sim X-Force | Offensive AI | Malware | Work In Progress | https://t.co/eNspx7jLvm
Cas van Cooten @chvancooten
10K Followers 671 Following @Offensys Co-Founder || Benevolently malicious offensive security enthusiast || OffSec Developer & Malware Linguist
Marc Smeets @MarcOverIP
5K Followers 500 Following Does a thing or two with red teaming @OutflankNL | part time race and drift car instructor
Cedric Van Bockhaven @c3c
980 Followers 354 Following
Max Grim @max__grim
644 Followers 228 Following Red Teamer @OutflankNL | Cyber Security | Messing around with hardware
Duane Michael @subat0mik
1K Followers 528 Following Security Researcher, Teacher, Leader @SpecterOps
Tijme Gommers @tijme
2K Followers 608 Following Offensive Security at @ABNAMRO 🐙. Forensics at @HuntedNL. Cyber Cyber Cyber ⚡. Bluesky: https://t.co/536oE2DGUw
zebleer @zebleerpo1
4K Followers 1 Following I'm not using this Twitter account anymore. Don't trust it. My new Twitter = @zebleerguy & you can verify that on my website and Telegram
Stephen Sims @Steph3nSims
26K Followers 861 Following Perpetual Student | SANS Fellow | Musician | Braggart Hater | Gray Hat Hacking | VR | 🏂 | deadcode | https://t.co/4neOSsnCQ8
SANS Offensive Operat... @SANSOffensive
74K Followers 578 Following More Offensive Than Ever #PenTest | #PurpleTeam | #RedTeam | #ExploitDev Training, Certification, and Research
AmberWolf @AmberWolfSec
435 Followers 0 Following Offensive Cyber, Risk Management & Governance, Vulnerability Research and Technical Due Diligence
watchTowr @watchtowrcyber
12K Followers 12 Following watchTowr enables organizations to get ahead of in-the-wild exploitation with Preemptive Exposure Management technology.
Andy Iszatt @iszatt
64 Followers 528 Following
Interrupt Labs @InterruptLabs
4K Followers 91 Following We’re here to provide world-leading vulnerability research and research capabilities. From browsers, mobile, automotive and everything in between.
Infinity Ward @InfinityWard
4.2M Followers 38 Following Studio behind the original Call of Duty. #MW4 launches 10.23.2026
TheADHDadults @TheADHDadults
5K Followers 16 Following The ADHD Adults podcast For ADHDadultUK charity please visit @adhdadultuk
Asahi Linux (@AsahiLi... @AsahiLinux
29K Followers 6 Following Account retired, please follow us on Mastodon: @[email protected] https://t.co/hG6ROiXY2V
John Hammond @_JohnHammond
320K Followers 3K Following Cybersecurity Researcher @HuntressLabs || Just Hacking Training @JustHackingHQ w/ @ethicalhacker || https://t.co/UtsNJiyiEk || https://t.co/narO3syzIy
ATTL4S @DaniLJ94
3K Followers 665 Following I like spending time understanding things | FSAS @NCCGroupInfosec
Piotr Bazydło @chudyPB
5K Followers 318 Following Principal Vulnerability Researcher at watchTowr | Previously: Zero Day Initiative | @[email protected]
Trends for United States
You might like
Will Schroeder
@harmj0y
49K Followers
Chetan Nayak (Brute R...
@NinjaParanoid
32K Followers
Adam Chester 🏴�...
@_xpn_
38K Followers
Matt Hand
@matterpreter
10K Followers
🥝🏳️🌈 Be...
@gentilkiwi
62K Followers
Lee Chagolla-Christen...
@tifkin_
14K Followers
Ryan Cobb
@cobbr_io
12K Followers
Sean Metcalf
@PyroTek3
37K Followers
Matt Nelson
@enigma0x3
33K Followers
spotheplanet
@spotheplanet
11K Followers
Cn33liz
@Cneelis
13K Followers
Dominic Chell 👻
@domchell
18K Followers
Panos Gkatziroulis �...
@ipurple
27K Followers
b33f | 🇺🇦✊
@FuzzySec
33K Followers
kmkz
@kmkz_security
20K Followers