HaxRob @haxrob
I enjoy breaking things. Telco / mobile and IoT security. Surfing the information super highway one keystroke at a time. doubleagent.net Australia Joined April 2017-
Tweets650
-
Followers16K
-
Following378
-
Likes459
Collecting my longer threads into blog posts to make it easier for people to follow and reference. Here is a technical writeup on the wiretapping claims in a lawsuit against Meta. doubleagent.net/onavo-facebook… (Feel free to subscribe to receive updates and new content to your inbox)
This will surely open up many job/work opportunities for people who lack the experience and are willing to put in the hard work. Priced in a way that money should not be a prohibitive barrier even for students. What a great initiative. 👏👏
This will surely open up many job/work opportunities for people who lack the experience and are willing to put in the hard work. Priced in a way that money should not be a prohibitive barrier even for students. What a great initiative. 👏👏
Interesting side note, Julian Assange had worked with @SueletteD on the research behind this story, captured in the 1997 book 'Underground'. Both the book and related documentary can be found found online: youtube.com/watch?v=0UghlW… underground-book.net
Interesting side note, Julian Assange had worked with @SueletteD on the research behind this story, captured in the 1997 book 'Underground'. Both the book and related documentary can be found found online: youtube.com/watch?v=0UghlW… underground-book.net
Watch @wrongbaud's BOOTSTRAP24 talk, Glitching in 3D: Low cost EMFI attacks: buff.ly/3VmGuBh
A fix in QEMU's nw driver code caused a old IOMMU bug to surface when booting an ancient SUN SPARCstation 5 PROM. Downgrading QEMU and we are one step closer to studying some telco malware from days of yesteryear. Emulation: preserving the past to better understand the present.
If someone directly copies and pastes images from your tweets and into their own, the file hashes of the image data served from X will be exactly the same. This is because X has already postprocessed and stripped out the metadata (exif), so it preserves the original uploaders.
Will @BushidoToken
29K Followers 3K Following Threat Intel & Hunting @Equinix | Co-founder @CuratedIntel | Co-author @SANSForensics FOR589 | @darknetdiaries #126: REvilBattle Programmer Yuu @netspooky
18K Followers 1K Following knuck if you buck 日本語/español OK (he/they) @tmpout @binarygolf @[email protected]OccupytheWeb @three_cube
219K Followers 4K Following Pentester, Forensic investigator, and former college professor. Trained hackers at every branch of US military and intelligence. Visit me at https://t.co/G478wufszwAndrew Thompson @ImposeCost
34K Followers 1K Following Head of Research and Discovery @Mandiant/@GoogleCloud. Understanding and countering adversaries. Posts attributable to me—not my employer.Cybergibbons 🚲🚲.. @cybergibbons
49K Followers 3K Following Head of hardware. IoT hacker. Alpha Male.Cas van Cooten @chvancooten
10K Followers 661 Following Benevolently malicious offensive security enthusiast || OffSec Developer & Malware Linguist || NimPlant & NimPackt author || @ABNAMRO Red Teamhackerfantastic.x @hackerfantastic
103K Followers 4K Following Co-Founder @myhackerhouse cyber security assurance & hacker training ~ ISBN9781119561453 ~ a book on professional hacking. Offensive Lua project.Phill Moore @phillmoore
8K Followers 3K Following This Week in 4n6 // ThinkDFIR // SANS // CyberCX (DFIR) https://t.co/vLyL2sxTuy I might not know much, but I do know how to Google Tweets are mineLucia @kunimitsuw29822
1 Followers 221 FollowingTheTeeSTar @TheTeeStar
107 Followers 1K Following Cybersecurity expert, Cryptologist and creator of PowerShell CryptoStudio. Counter of primes n/ln(n) Proud dog daddy.Peter Boyer @peterboyer_
68 Followers 457 FollowingAndrés Pozo @apoz
514 Followers 1K Following yet another monkey floating in the space. Software developer enjoying the journey . OpenSource contributor #OSS #Linux #Music #BasketballSauvage.sec @SauvageSec
1 Followers 16 FollowingAlice Woodson (e/cel) @alice_ecel
119 Followers 2K Following IQ of 160 (full scale). Multi-millionaire. 24. 🇦🇺faynoa @faynoa1
0 Followers 1 FollowingSeila Gamo @seila_gamo
364 Followers 710 Following Backender. Mamá de 3. Aprendiz de mucho, maestra de nada.Peter @pejupeju
142 Followers 2K Following Danish programmer with a lot of different interests. NOT interested in various get-rich-quick schemes.No @acarre92
33 Followers 620 FollowingRyan Mynatt @rymy_x
174 Followers 749 FollowingOdd Christer Brovig @oddchrister
160 Followers 421 Following Datamann og halvslapp halvveis treningsnarkoman.Konrad Biernacki @kgbier
35 Followers 246 FollowingTracksuit Nomad @tracksuitwisdom
15 Followers 299 FollowingShafik Punja @qubytelogic
940 Followers 3K Following DFIR worker bee/research monkey. Views are my own.🐧 And do not necessarily represent strategies, views or opinions of any employers: past, present or future.ByronGoudeau @ByronG52686
22 Followers 850 FollowingMichael Cain @MikeCaino
92 Followers 606 FollowingLibertas @Libertas33
1K Followers 6K Following Am ©️ Respect is earned. ©️ Sui generis. ©️ çΩΩ≈ΩΩ ©️ Everything is an Art 🔃 ©️ SOUNDLESSNESS ©️ .ART Ambassador @ART_domainsYung Shien Lu @luyunghsien
5 Followers 31 Followingหยดน้ำแ.. @ysK1Gz9v3cdKO7
69 Followers 1K Following เราเจอชะตากรรมแบบไหน ชอบติดตามไว้ก่อนได้นะครับ ผมจะส่งข้อมูลติดต่อไปที่หน้าแรกเป็นระยะๆครับXD @XD7615625140549
41 Followers 199 Following∞kumaor.xrd.Ӿ @KumaorAkaa
137 Followers 2K Following maxi $XRD, $ICP, and $XNO. pro web3, anonymous security/privacy coins #RADIXDLT #ICP #XNO #ӾStewart Webb (parody .. @nuclearpidgeon
130 Followers 383 Following Codebase historian | Computer Science masters student | Lover of strange electronic sounds and music. also available @[email protected]Book Reading @BookR97356
2 Followers 20 Followingchsh @0xchsh
258 Followers 246 Following strangely looping • 🛹🐶 • australian language enjoyer • sovereignty never ceded • consultant @ shea securitycharli xss @_bradan
169 Followers 396 Following monkey enthusiast, apprentice wizard. father of @EmuExploit and ctf with @malta_ctfLuis Eduardo @elearocha
423 Followers 2K Following Técnologo en Sistemas, Analista de Sistemas de Información, temeroso de la venida de nuestro Señor Jesucristo, y amante de las Redes y la Informática.Timothy Dunn @TimDunn94183193
163 Followers 790 Following Threat Researcher, Security+, CEH, Speaker, Practicing Curmudgeon. Opinions are my own ...Crixus0x21 @UrielJs
41 Followers 739 Following I love reverse engineering, pentesting, programming c++ and research bug in IOS & 4pple devicesMama Laylow @laylow_mama
274 Followers 3K FollowingGeovanny @GeovannyMontoy9
4 Followers 211 FollowingBull of A.I 🐉 @WorldofAGI
421 Followers 4K Following Explorer of the unknown Forward Thinker Free Soul Lover of FREEDOM Profit Maximalist🎱 @fotio_parf70317
109 Followers 521 Followingotternose @OtternoseNo1
273 Followers 1K Following Other things. I stand with humanity. Peace. ▶• ılıılıılılılıılıılı.Daeun Lee @DaeunL6944
25 Followers 67 FollowingKhaled @Ezcuse315
33 Followers 84 Following Palestinian. The son of Palestinians, the grand son of Palestinians. Palestinian landowner. Deeds for land in Phillistine dating back to the Ottoman eraMewantha Kaluarachchi @MewanthaK
18 Followers 29 Followingjack ☕️ @SynAckJack
336 Followers 2K Following |🏴|👨💻|🦮 | cybersecurity stuff and doggos | graduate @abertayhackers and Security Consultant 🤙Luke Jahnke @lukejahnke
2K Followers 5K FollowingPatrick Kulesh @herrkulesh
52 Followers 465 Following Ich habe eine Aversion gegen die B Version, think enterprise, anything IT, security and risk-awareM @exploratio_hack
27 Followers 754 FollowingLee Revell @BigP4P4Smurf
58 Followers 537 FollowingFlorian Roth @cyb3rops
180K Followers 2K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇Will @BushidoToken
29K Followers 3K Following Threat Intel & Hunting @Equinix | Co-founder @CuratedIntel | Co-author @SANSForensics FOR589 | @darknetdiaries #126: REvilSwiftOnSecurity @SwiftOnSecurity
403K Followers 9K Following computer security person. former helpdesk.0xor0ne @0xor0ne
55K Followers 526 Following | CyberSecurity | Reverse Engineering | C and Rust | Exploit | Linux kernel | PhD | My Tweets, My Opinions :) |Battle Programmer Yuu @netspooky
18K Followers 1K Following knuck if you buck 日本語/español OK (he/they) @tmpout @binarygolf @[email protected]John Hammond @_JohnHammond
240K Followers 2K Following Hacker. Cybersecurity Researcher @HuntressLabs || https://t.co/qUeDM3lSCl@mikko @mikko
231K Followers 932 Following Technology speaker and author. Chief Research Officer at WithSecure.blackorbird @blackorbird
28K Followers 600 Following Peace and Love. Just Analysis/Hunter. #APT #threatIntelligence #Exploit Need JobOccupytheWeb @three_cube
219K Followers 4K Following Pentester, Forensic investigator, and former college professor. Trained hackers at every branch of US military and intelligence. Visit me at https://t.co/G478wufszwippsec @ippsec
111K Followers 350 FollowingAndrew Thompson @ImposeCost
34K Followers 1K Following Head of Research and Discovery @Mandiant/@GoogleCloud. Understanding and countering adversaries. Posts attributable to me—not my employer.Cybergibbons 🚲🚲.. @cybergibbons
49K Followers 3K Following Head of hardware. IoT hacker. Alpha Male.HelSec Ry @HelSecurity
3K Followers 105 Following Cybersecurity group by the community, for the community.Jason Haddix @Jhaddix
147K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. @arcanuminfosec 18 years hacking + sec leadership. ex:BuddoBot-Ubisoft-Bugcrowd-Fortify-HP-Redspin-Citrix.hackerfantastic.x @hackerfantastic
103K Followers 4K Following Co-Founder @myhackerhouse cyber security assurance & hacker training ~ ISBN9781119561453 ~ a book on professional hacking. Offensive Lua project.Phill Moore @phillmoore
8K Followers 3K Following This Week in 4n6 // ThinkDFIR // SANS // CyberCX (DFIR) https://t.co/vLyL2sxTuy I might not know much, but I do know how to Google Tweets are mineHussein Daher @HusseiN98D
43K Followers 151 Following Entrepreneur, Hacker 🇱🇧🇨🇮 @WebImmunify 27th/270000 BugCrowd Hacking PlatformPentesterLab @PentesterLab
153K Followers 0 Following We make learning web hacking and security easier. Online systems, code review, videos & courses that can be used to understand, test and exploit bugs!Stewart Webb (parody .. @nuclearpidgeon
130 Followers 383 Following Codebase historian | Computer Science masters student | Lover of strange electronic sounds and music. also available @[email protected]charli xss @_bradan
169 Followers 396 Following monkey enthusiast, apprentice wizard. father of @EmuExploit and ctf with @malta_ctfchsh @0xchsh
258 Followers 246 Following strangely looping • 🛹🐶 • australian language enjoyer • sovereignty never ceded • consultant @ shea securityCasey Muratori @cmuratori
41K Followers 120 Following I want all my garmonbozia. https://t.co/Bdh1Xj2PpVGammitin (Ben) 💾 @Gammitin
20K Followers 5K Following Obsessed with Vintage / Retro tech - I collect, repair, upgrade retro Laptops, Desktop Computers, Consoles, unusual tech. Also love Gaming and Cats 😸Andrej Karpathy @karpathy
980K Followers 905 Following 🧑🍳. Previously Director of AI @ Tesla, founding team @ OpenAI, CS231n/PhD @ Stanford. I like to train large deep neural nets 🧠🤖💥Anastasios Pingios @xorlgr
4K Followers 1K Followingrev.ng @_revng
4K Followers 4 Following Building the next generation decompiler. Binary analysis is a dish best served static.JD Work @HostileSpectrum
8K Followers 1K Following Former intel, now academic @NDU_CIC, @TheKrulakCenter, @SIWPSColumbia @ColumbiaSIPA, @CyberStatecraft, @ElliottSchoolGW, @PAISWarwick. Apolitical, views=ownAndres Freund (Tech) @AndresFreundTec
9K Followers 105 Following FWD: @[email protected] Postgres developer, working at Microsoft. For politics: @AndresFreundPolalden @birchb0y
2K Followers 2K Following sr detection engineer @ huntress • re/malware enjoyer • macOS securityocdsec @0xocdsec
3K Followers 4K FollowingGrant H @Digital_Cold
2K Followers 2K Following Mobile security researcher. Previously @Qualcomm product security. @UF Ph.D, @UCF B.S. Opinions my own https://t.co/VKTGUksQFd Mastodon: @[email protected]mitsh @bmitsh
62 Followers 186 Followingidatips @idatips
4K Followers 3 Following Tips and tricks for everyone's favorite disassembler. Account not run by Hex-Rays.Ben Dowling @coderholic
3K Followers 833 Following Founder at https://t.co/19OosmhiVS and https://t.co/RrpmPHQ1lv - former CTO at https://t.co/i1MTX60Wbj, eng at Facebook and various startups in the UKBoschko 🇨🇦 @olivier_boschko
4K Followers 2K Following just a french canadien | adversary emulation (red team) @ RBC | CISSP BSCP CRTL CRTO OSCP eWPTX eCPPT | goofing off @ https://t.co/aWC0YYEp9xMatthew @embee_research
12K Followers 1K Following Malware Researcher & Reverse Engineer | Creating and Sharing Educational Cyber Content☩MalwareMustDie @malwaremustdie
6K Followers 145 Following Official account of MalwareMustDie, NPO. Info: https://t.co/131r5UW4bF Blog: https://t.co/lUnpKnXOqVTom Hegel @TomHegel
6K Followers 693 Following Information Security Research, Threat Intelligence, Adversary Analysis. Principal Threat Researcher with SentinelLabs / @SentinelOneAlexandre De Oliveira @yodresh
516 Followers 1K Following Bringing love to telecom networks. @Post_Luxembourg Telecom Security & Innovation. ex-@P1Security, @hesconference. T-ISAC @GSMAJai Minton @CyberRaiju
7K Followers 1K Following An Australian researcher who does cyber things | Defender @HuntressLabs | Former Principal @CrowdStrike | https://t.co/UBcQVAmCRp | Posts = own views.Félix Aimé @felixaime
6K Followers 2K Following Threat Intelligence stakhanovite ⛏️ and proud dad. Former @Kaspersky & @CERT_FR. Principal CTI researcher at @sekoia_io, focused on state-sponsored stuff.SttyK (してぃー�.. @SttyK
7K Followers 963 Following Open Source Intelligence Analyst @vxunderground & @curatedintel [email protected]MalDev Academy @MalDevAcademy
11K Followers 5 Following A comprehensive module-based malware development course providing fundamental to advanced level knowledgeHITBSecConf @HITBSecConf
17K Followers 4K Following The official Twitter stream for the HITBSecConf conference series held annually in Europe (Amsterdam), Asia (Bangkok), & The Middle East (Abu Dhabi)Nicolas Grégoire @Agarri_FR
26K Followers 607 Following Web hacker and Burp Suite Pro trainer Refer to https://t.co/D5tRH7U2hg for trainings Follow @MasteringBurp for free tips and tricksAlex Plaskett @alexjplaskett
9K Followers 591 Following Security Researcher | Pwn2Own 2018, 2021, 2022, 2024 | Tweets about 0day, OS, mobile and embedded security.5G Security @5G_Security_
189 Followers 159 Following 5G and Network Security. I write about Private 5G from business side.Tim Brown @timb_machine
3K Followers 5K Following push(@twitter, 'Adversarial Engineer'); # i tweet in PerlDaniel Mayer @dan__mayer
549 Followers 492 Following https://t.co/K4CorT895N Adversary Simulation @specteropsByron Tau @ByronTau
52K Followers 4K Following reporter at @notusreports. author of 'means of control,' a new book on big data and big government. buy: https://t.co/tsw9T0jwErHidden Forces @HiddenForcesPod
18K Followers 80 Following Get the edge with Hidden Forces, where podcast host @Kofinas teaches you how to think critically about the systems of power that structure our world.CRK @ch3tanK
531 Followers 1K Following Associate Director #ThreatIntelligence and #ThreatHunting, #CollectiveIntelligence. #Impossiblep says I M Possible安坂星海 Azaka �.. @AzakaSekai_
9K Followers 1K Following 台湾 / Taiwan (中/En) - 🖌️ #artsyaz Comfy VTuber / threat intelligence researcher (NOT independent) Model + rig @jamama_666 // add. rig @justNovajAlex Matrosov @matrosov
18K Followers 2K Following 🔬Founder & CEO @Binarly_io, #codeXplorer, #efiXplorer, @REhints and "Rootkits and Bootkits" book. Previously worked at Nvidia, Cylance, Intel, ESET, Yandex.hensec.com @hensec_eu
288 Followers 1K Following secure solutions. IT, OT, IoT, Smart Building, GPS Spoofing, Drone Detection, Decoding, Countersurveillance. Checks, Consulting and Training @hensec.bsky.socialThe Hacker's Choice (.. @hackerschoice
20K Followers 51 Following Not much activity here anymore, follow us at https://t.co/ZFXJjJAKvM security research group: The Hacker's Choice (1995). group account.Lozaning @lozaning
10K Followers 2K Following They/Them IoT, Blink'n Lights, InfoSec, creator of @WigleB, Mother of The Wifydra, HACKERS movie shitposting, HAM radio, top 100 Wigler. @[email protected]F2 @0xF2
18K Followers 1K Following Husband. Father. A laboratory mouse involved in an elaborate scheme to take over the Earth—Ceph, Ubuntu Server, AWS. Cloud and Linux with a dab of Open HardwareJames Brine @referefef
197 Followers 191 Following@itakenaps My prior work includes multiple exploits against "sudo" AND "su" across several platforms and architectures (Linux, HPUX, SunOS and AIX). You'd think a basic level of respect would be implied when discussing concerns about a newly designed "sudo" implementation...
Happy to report that QCSuper works with the Pinephone Pro @thepine64 for realtime radio frame monitoring of 2G/3G/4G, combined with the rooted baseband - this is now my preferred UE for mobility solution assessments. github.com/P1sec/QCSuper
Often overlooked pretty legit hacking movie scenes? Tron Legacy
I'm excited to share our first and likely only public @voidstarsec Hardware Hacking training of 2024! Check out the @_ringzer0 Training DoubleDown 2024 event here for early bird prices! ringzer0.training/doubledown24-h…
Yo! Zephyr Mixtral 8x22B on Hugging Chat! 👇 Arguably, it is the best open-source model out right now - now at the touch of a button. Open source for the win.. Let's fucking go!
We were just talking in @CuratedIntel about how there’s lots of training for SOC, pentesting & even CTI, but there really was not much affordable On Demand style platforms for hands-on DFIR training like this. Great work everyone involved 👏 Check this out 👇
APT Emulation Labs: NOW LIVE 🎉 Solve incidents emulating APT29, APT10 and other threat groups. $45 per month access to ALL labs: 👀 150+ hours of lab content 👀 Disk forensics + ELK logs 👀 Hints, questions and point system 👀 7 days free trial Labs are created & designed…
@haxrob Thank you so much I appreciate the kind words! And also for your support🖤
Five Compass Security analysts took on a new challenge at Pwn2Own Toronto last year. The goal? Unauthenticated remote code execution. Follow their journey on our blog this whole week! 🚀 #Pwn2Own #CyberSecurity blog.compass-security.com/2024/03/pwn2ow…
We just interviewed @AndresFreundTec about his xz backdoor discovery... thanks to him for finding the time!
Wow, a Sun SPARC 5? Ancient telco malware? I'm in.
A fix in QEMU's nw driver code caused a old IOMMU bug to surface when booting an ancient SUN SPARCstation 5 PROM. Downgrading QEMU and we are one step closer to studying some telco malware from days of yesteryear. Emulation: preserving the past to better understand the present.
@haxrob good call! i pulled all the info from github's graphql api so maybe there was a lookback limit or something - will check again
Absolutely remarkable reporting here. I strongly recommend reading all ~10,000 words. Some of the most stunning documentary evidence comes toward the end. Also really appreciated the historical depth.
NEW: A yearlong investigation by @InsiderEng, @60Minutes and @derspiegel has uncovered evidence suggesting that Havana Syndrome may have its origin in the use of directed energy weapons wielded by the Russian GRU’s infamous Unit 29155. theins.press/en/politics/27…
This thing Facebook did — running an MITM on Snapchat and other competitors’ TLS connections via their Onavo VPN — is so deeply messed up and evil that it completely changes my perspective on what that company is willing to do to its users.
I often get questions about my setup for taking macro shots, so I thought I'd finally do a short thread showing what I use. 🧵
If you run into Andres at a conference, buy this guy a nice meal. You owe him whether you know it or not!
@haxrob Speed is a feature. I sooo appreciate everyone who is working to get latency down and cares about this. And I love that it found a back door.
@haxrob He gets free drinks from me if we cross paths. Hero.
Here are two more suspicious personas with a similar naming scheme amplifying a "bug report" bugs.debian.org/cgi-bin/bugrep… krygorin4545[@]proton[.]me misoeater91[@]tutamail[.]com
Interesting note on the #xz backdoor: If you plot Jai Tan's commit history over time, the cluster of offending commits occurs at an unusual time compared to rest of their activity. If the dev was pwned, it could be a sign that the threat actor contributed in their own timezone