Jean-Pierre GARNIER @codeyourweb
Adversary Hunter && Threat Researcher - ♥infosec, code and mojitos - Opinions are mine Paris Joined February 2014-
Tweets337
-
Followers148
-
Following177
-
Likes282
‼️Copy Fail (CVE-2026-31431) is a Linux privilege escalation bug that lets any local user get root using a 732-byte Python script, and itworks on basically every major Linux distro shipped since 2017. Website: copy.fail Write-up: xint.io/blog/copy-fail… GitHub: github.com/theori-io/copy… It's a logic flaw in the kernel's crypto code (authencesn via AF_ALG and splice()) that allows a small write into the page cache, which can be used to tamper with a setuid binary like /usr/bin/su. Think how bad this is going to be for shared environments like Kubernetes, CI runners, and cloud sandboxes, where it enables container escape and tenant-to-host compromise. Found by Theori's Xint Code scanner, patched in the mainline kernel, and publicly disclosed on April 29, 2026; if you can't patch right away, the recommended workaround is to disable the algif_aead module.
@anyrun_app @msftsecurity Did you really make the exact same mistake exactly one year later? It's been back on @anyrun_app for the past few hours
rzweb : A complete browser-based reverse engineering platform built on Rizin, running entirely client-side via WebAssembly : github.com/indalok/rzweb
Already five years, Time flies so quickly... At the end of 2021, I developed #fastfinder to simplify triage using #YARA. 2026 is an opportunity to reinvest time in this project with a V3 featuring tons of new features #DFIR #CERT #threathunting github.com/codeyourweb/fa…
@_0b1d1 Dm allowed. Interested by your work.
@_0b1d1 Interested in the full document, but at first glance it appears to be a thorough piece of work. Could you share the full content?
New blog post: Tear Down The Castle - Part 2 dfir.ch/posts/tear_dow… I analyzed 250 PingCastle Reports, grouping the findings along the categories I used for my 10 AD Commandments series. The number of affected domains is stated within each finding, i.e., in how many domains we found the misconfiguration or the vulnerability.
Many missed this on #BadSuccessor: it’s also a credential dumper. I wrote a simple PowerShell script that uses Rubeus to dump Kerberos keys and NTLM hashes for every principal-krbtgt, users, machines. no DCSync required, no code execution on DC.
And here's a little project to monitor network traffic and logging directly over endpoints interfaces. First proof-of-concept with local pcap and HTTP API forwarder (fully tested on #SEKOIA plaftform). github.com/codeyourweb/lp… #soc #cybersecurity #networksecurity
Microsoft has released its own document parser for LLM use! . . Introducing MarkItDown, a 100% open-source, one-stop solution for effortlessly converting any file to Markdown—perfect for text analysis, indexing, and more! Here’s what makes it special: ↳ Converts PDF, Word, Excel, PPT, images, audio to markdown ↳ Extracts EXIF, OCR, and transcripts automatically ↳ Available via CLI, Python API, or Docker ↳ Offers LLM-based image descriptions ↳ Supports batch conversions Link to the repo in next tweet! _____ Find me → @akshay_pachaar ✔️ For more insights & tutorials on AI and Machine Learning.
Reviews are MOSTLY NEGATIVE - Gray Zone Warfare vid is up on yt #GZW #GrayZoneWarfare
Kudos to @DragosInc for sharing details of a recent event. The adversary compromised a new employee's personal email address and impersonated them to get access. How would you protect against that?
It's time to destigmatize security events. Yes it happens at security companies and here's why we need to talk about it. #cybersecurity #icscybersecurity #otcybersecurity #industrialcybersecurity #criticalinfrastructureprotection hubs.la/Q01Pj-S60
I remember a time when people here in Europe still had issues storing their corporate emails on US mail servers - nowadays you store the master keys to your company on their servers 🎵 … for the times they are a-changin'
Did you know that Microsoft recommends creating your Global Admin accounts in the cloud to protect Microsoft 365 from on-premises attacks? See aka.ms/protectm365 for all the details.
Priorities
[Android] Une trentaine de "Privacy Friendly Apps" proposées par @SECUSOResearch qui : - are Open Source (GPLv3) and their source code can be viewed an Github by anybody - used minimal permissions - do not neither tracking mechanisms nor advertisement secuso.aifb.kit.edu/english/105.php
Unable to extract credentials via DPAPI or Mimikatz? Don't worry. Microsoft got your back. Just use 'rundll32 keymgr.dll, KRShowKeyMgr' to extract all the stored passwords on the host, be it a target server, FTP or chrome's HTTP creds, microsoft has you covered. #redteam
Smph @SJC247
66 Followers 264 Following
Lixarg T.I. @lixarg
43 Followers 2K Following
Francine @Francine9351131
1 Followers 35 Following
John Williams Nichols... @nicholson_25237
201 Followers 6K Following
Mauricette Querrec @querrec54976
1 Followers 54 Following Je suis ici pour me faire des amies et entreprendre une belle aventure de vie social vue mes qualités énorme et mes capacités à rester fidèle et sérieuse 👍🤩❤️
Nathalie laberge @Nathaliela77459
0 Followers 5 Following
Dr. Carrie Lindley @dhilahfadzil
528 Followers 3K Following ⚡️For Parents: Help your thing|✨For expanding past 1:1 work, (Fourth of July) I remember it dump ❤️!
OogWay @way_oog
28 Followers 876 Following Threat Intelligence + OSINT + Anti Cybercrime from 🇻🇳 #Nodarkcornersforcybercriminals
Mirabelle @Mirabelle395851
37 Followers 405 Following je suis disponible pour des rencontres Sexuelle douce coquine envoyé moi message sur télégramme mon prénom télégramme c'est : @arianeco
Tiburón Cerpa @tibur95851
3 Followers 150 Following
Jean François @jean_franc34647
515 Followers 6K Following
Van Wolff @wolff_van29377
2 Followers 189 Following
Valérie Guedo @GuedoValer83104
9 Followers 191 Following
marie rose @danilo13_off
0 Followers 40 Following
marie tellano @tella27889
0 Followers 50 Following
David Lambert @Davidlambert44
1 Followers 37 Following J'effectue des virements sur le compte revolut et nickel
Hamza The King @fe8bff51ba6441a
7 Followers 399 Following
0xMalWar @0xMalWar
49 Followers 531 Following
Sabine EGNELL @EgnellSabi86885
3 Followers 25 Following
Stephanie Andretto @StephanieA52783
5 Followers 137 Following
AfroCubaWeb @afrocubaweb
1K Followers 3K Following https://t.co/YAhqH2ncLO was founded in 1997 to support the African cultures in Cuba. https://t.co/YAhqH2ncLO fue fundado en 1997 para apoyar las culturas africanas de Cuba.
Claire Eischen @eischen_claire
2 Followers 386 Following
Stephanie Cavelier @StephanieC52487
2 Followers 24 Following
gg_8123qw144 @8123qw14496319
1 Followers 246 Following
gg_tellyou16 @GTellyou1613033
0 Followers 237 Following
h0ui3bahj34 @h0ui3bahj393105
0 Followers 251 Following
eybgiv31284 @eybgiv312881740
1 Followers 252 Following
sec fun @gadhisy8989645
1 Followers 249 Following
dbot78ac2V3 @dbot78ac260796
0 Followers 300 Following
Flavia Larrubia @FlaviaLarr96663
0 Followers 21 Following
inginformatico @inginformatico
3K Followers 2K Following Autor de: "Iníciate en Análisis Forense Digital". Investigador y analista forense DFIR. Perito Judicial. OSINT. Ingeniero en Informática Colegiado.
M7md al-Aqeel محم�... @MoeA193
71 Followers 2K Following 🇯🇴 🇸🇦 Principal Consultant (DFIR / CTI / MARE) SecOps Solutions Engineer studied Computer Science
Yossi Poberezsky @pober58
221 Followers 3K Following #DFIR Incident Response | Cloud Security | Detection Engineering | Threat Hunting
Monsieur G. @LamaliF_
175 Followers 219 Following French cyber threat intelligence analyst // Casual #malware hunter // Love shining helmets and sweet wines respectively.
susie @RecianMismanos
300 Followers 4K Following I am The Oaks Cellars Pte Ltd - shareholder, I also invest in real estate,
CERT Orange Cyberdefe... @CERTCyberdef
10K Followers 418 Following First Private CERT in Europe. Tweets are about vulnerability and cyber threats. Corporate account: @OrangeCyberDef / @OrangeCyberFR GPG KeyID: 0xBD54B276
Colin Kealty @bartowski1182
3K Followers 174 Following LLM Enthusiast https://t.co/FadJBzEsVw https://t.co/9JIEKgsIMh https://t.co/lYSGzQBmuP
International Cyber D... @IntCyberDigest
166K Followers 293 Following Your weekly go-to cybersecurity newsletter, curated and commented on by our senior analysts.
Steven Lim @0x534c
7K Followers 962 Following #MicrosoftMVP #Cybersecurity #Sentinel #DefenderXDR #KQL #KQLWizard
Sathwik Ram Prakki @PrakkiSathwik
2K Followers 1K Following Security Researcher @GroupIB_TI | APT Hunting | Malware/RE | Threat Intelligence | Darkweb/CTI | Opinions are my own | Ex-@Seqrite/@quickheal
SaxX ¯\_(ツ)_/¯ @_SaxX_
60K Followers 359 Following 🥷🏽Gentil Hacker et Engagé ¦¦🎙Speaker à forte Valeur ajoutée ¦¦ 🤝 Cyber Diplomate ¦¦ 👳Mentor Guardia CS ¦¦ 🥂Épicurien 🍽
Sam Curry @samwcyo
101K Followers 1K Following
ZiL @SixOneZil
2K Followers 468 Following Software Dev | Maître Bullshitsu | https://t.co/nZ095QrHvY | https://t.co/fVWMhTEfvU | @discord @EA Partner [email protected]
CERT SocieteGenerale @CertSG
7K Followers 67 Following Société Générale Group's CSIRT Security Incident & Cybercrime Response. GPG KeyID: 0x711978FBF0DC5F0C T/RT about public news are not endorsements.
OSSIR France @OSSIRFrance
8K Followers 6 Following Observatoire de la Sécurité des Systèmes d'Information. site : https://t.co/ptVsUOIzep. Egalement sur @[email protected].
Sam ☁️🪵 @Sam0x90
1K Followers 781 Following SOC/Intel | @SANSInstitute | @PacktAuthors https://t.co/itz9Mly1hK Love #PurpleTeaming #DE #CTI #DFIR
Kaspersky @kaspersky
313K Followers 85 Following Kaspersky is the world’s largest privately held vendor of Internet security solutions for businesses and consumers. For support https://t.co/enRPRUIwcm
Jazi @h2jazi
8K Followers 534 Following Threat Intel researcher! Technical tweets only; not reflective of employer's views. No endorsement of political groups/entities.
Rust Foundation @rust_foundation
40K Followers 179 Following The nonprofit dedicated to stewarding the Rust programming lang & its community 🦀 bsky: https://t.co/pURKYFM3az Mastodon: rustfoundation
Defense Charts @DefenseCharts
39K Followers 1 Following 📈🤷♂️📊 dedicated to the presentational aesthetics of the defense-industrial complex // editor: @timhwang
Eric Zimmerman @EricRZimmerman
19K Followers 993 Following KAPE, EZTools, forensics, X-Ways. Certified SANS instructor. FFL Please consider supporting me: https://t.co/pIjxED3CMx
MetallicHack @MetallicHack
841 Followers 389 Following 🇨🇵 Cybersecurity engineer enjoying Windows & AD security, DFIR and detection engineering @TheDFIRReport analyst
GovCERT.ch @GovCERT_CH
14K Followers 22 Following National Cyber Security Centre (NCSC), Computer Security Incident Response Team of the Swiss Government (https://t.co/S9JncbbeYk)
spotheplanet @spotheplanet
11K Followers 151 Following Hacking the planet at https://t.co/ifUgKQtEYV. Buy me a vinyl at https://t.co/SO41y55HJL
imp0rtp3 @imp0rtp3
787 Followers 290 Following Security Researcher, Threat Intelligence And Malware Analysis for fun. CTI Team Leader in @Fortinet. Keybase: imp0rtp3 Mastodon: @[email protected]
rkvl @rkervell
568 Followers 781 Following
Matt Cowell @m_p_cowell
1K Followers 586 Following VP of Strategic Alliances @nozominetworks; previously industrial automation engineer, system integrator and sales engineer. Tweets are my own own opinon.
Lenny Zeltser @lennyzeltser
50K Followers 2K Following Builder of security products and programs. Teacher of those who run them.
Guillaume Loulier @Guikingone
1K Followers 3K Following Certified @symfony (3, 4, 5, 6, 7 and 8) developer @sensiolabs, Speaker, former @OCFrance Mentor, @DeusEx fan. Motorsport lover. Opinions are my own.
Runa Sandvik @runasand
75K Followers 373 Following Founder of @GranittHQ, securing journalists and at-risk people around the world.
Alexis Kauffmann @framaka
19K Followers 2K Following Communs numériques et libre éducatif à @Edu_Num CM du compte officiel @LeLibreEdu fondateur #Framasoft prof de maths et papa de fiston @[email protected]
Maarten Goet 🥷🏻 @maarten_goet
7K Followers 103 Following Microsoft MVP since '07, Microsoft RD since '15, Chief Threat Officer at @Wortell. Founder of @experts_live & @yellowhat_live. Flying the real clouds ✈️🧑✈️
Virus Bulletin @virusbtn
61K Followers 1K Following Security information portal, testing and certification body. Organisers of the annual Virus Bulletin conference. @[email protected]
Threat Intelligence @threatintel
115K Followers 366 Following Symantec and Carbon Black's threat hunters bring you the latest threat intelligence from the IT security world.
markus neis @markus_neis
3K Followers 1K Following Senior Principal Threat Intelligence Researcher at Arctic Wolf Labs | Opinions are my own
Seongsu Park @unpacker
12K Followers 1K Following Hustlin’ in Cyber Threat Intelligence | Tweets are my own | Keybase: @seongsupark | Mastodon: @[email protected]
Hilko Bengen / @hillu... @_hillu
363 Followers 424 Following Dormant account. Find me elsewhere, for example: - https://t.co/chlQOd8Lyl - https://t.co/H5Pb9iCtgH
French @notareverser
922 Followers 98 Following Malware reversing | Software development | Nonsensemonger https://t.co/TJt0Vb4e3I Cocktails at @NULLphoenix ⚜💻🍸.y.at
OSINT-FR @OsintFr
12K Followers 15 Following Association OSINT-FR | Communauté dédiée à l'Open Source Intelligence. Événements, apprentissage et collaborations autour des pratiques liées à l'OSINT.
ahmed khlief @ahmed_khlief
362 Followers 359 Following Purple Teamer who like to attack and defend. #APT-Hunter #NinjaC2 https://t.co/pX9YnnvWmU
Paul Rascagnères @r00tbsd
17K Followers 2K Following Lord of Loaders at @Volexity | Mastodon account: 🐘 @[email protected] | Bsky @r00tbsd.bsky.social
vx-underground @vxunderground
437K Followers 357 Following The largest collection of malware source code, samples, and papers on the internet. Password: infected
Simone Margaritelli @evilsocket
48K Followers 2K Following Music, cybersecurity, open source and AI • Author of bettercap, pwnagotchi, opensnitch, bleah, legba and a few other things. Chief Architect @ 🥷
Tyler McLellan @tylabs
3K Followers 588 Following Intrusion aficionado. @Google/@Mandiant GTIG Advanced Practices
Anonymous Security Ag... @AnonySecAgency
987 Followers 10 Following Anonymous Security Agency #ASA #CyberSecurity #APT #Hunter
ESET Research @ESETresearch
36K Followers 32 Following Security research and breaking news straight from ESET Research Labs.
Kevin Perlow @KevinPerlow
1K Followers 21 Following RE and CTI. Feel free to take a gander at my past presentations: https://t.co/iWUyecnxC6
Ange @angealbertini
25K Followers 920 Following Reverse engineer, file formats expert. Corkami, CPS2Shock, PoC||GTFO, Sha1tered, Magika... Security engineer @ Google. He/him.
sysopfb @sysopfb
4K Followers 758 Following Threat Intel as a reverse-engineer in Crimeware domain. Dubbed "Malware Mangler" by TheRegister. [email protected]
Joe Słowik 🌻 @jfslowik
28K Followers 1K Following CTI, OT/ICS, DE&TH, and related infosec content. Oh, and memes. And shitposting. Lots of shitposting.
John Hultquist @JohnHultquist
30K Followers 1K Following Chief Analyst, Google Threat Intelligence Group. @CYBERWARCON and @SLEUTHCON founder. Johns Hopkins professor. Army vet.
Andy Greenberg (@agre... @a_greenberg
72K Followers 1K Following WIRED writer, author of SANDWORM and now TRACERS IN THE DARK: The Global Hunt for the Crime Lords of Cryptocurrency. Andy.01 on Signal. [email protected]
You might like
