Gleb Gritsai @repdet
Joined September 2009-
Tweets1K
-
Followers440
-
Following222
-
Likes7
Sharing highlights from incident response cases in 2022 by @AymanShaaban in brighttalk.com/webcast/18657/…. You can get the slides github.com/klsecservices/… and the analyst report github.com/klsecservices/… #dfir #incidentresponse
This works on Windows 11 and both Gmail and MSFT will let it through to the inbox. Confirmed by @amitchell516 and @samkscholten New detection/hunt rule is live for this, which looks for UNC paths inside URL file attachments (h/t @amitchell516!): github.com/sublime-securi…
@awakecoding .url is great. The file doesn't even need to be opened, if you can get a user to download it and they go to delete it, just opening the Downloads folder sends the hash :D
You still need to "train" it on the specific keyboard and you need to have sort of "ideal" conditions, but yeah -- it's a fun tool :) Give it a try if you have a mechanical keyboard. There are examples you can run directly in your browser via WASM
github.com/ggerganov/kbd-… this tool lets you extract text from an audio recording of keyboard strokes, right now, for free i am not making this shit up, you can potentially steal a password from an audio recording in an office
I'd like to publicly introduce BinSync, a cross-decompiler collaboration tool and suite. With BinSync, you can finally share reversing data, like Types, across all your favorite decompilers (IDA, Binja, Ghidra, angr) on-the-fly. github.com/binsync/binsync. See thread for demos.
There are two rules in life: 1) Never give out all the information.
Interesting paper on finding and exploiting vulns within H.264 decoders: wrv.github.io/h26forge.pdf
🧵Some of my favorite LDAP queries. I let you all infer which tools to use them with. Most of these are from places around the web, nothing new. Just a list. 1. Find all DCs: (&(objectCategory=Computer)(userAccountControl:1.2.840.113556.1.4.803:=8192))
Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes github.com/Ciphey/Ciphey
My latest research which completely breaks trust transitivity, enjoy :-) exploit.ph/external-trust…
We've just published a quick write up on CVE-2023-23397, which allows a remote adversary to leak NetNTLMv2 hashes: mdsec.co.uk/2023/03/exploi… by @domchell
New AMSI lifetime bypass, it works by searching for the first byte of each instruction to prevent updates from affecting it, Check it out. #amsi #redteam #cybersecurity github.com/ZeroMemoryEx/A…
Zero Trust is a security strategy. It is not a product or a service, but an approach in designing and implementing the following set of security principles: - Verify explicitly - Use least privilege access - Assume breach Updated Information here: lnkd.in/g5UmGgEm
Need an almost invisible, post-exploitation, persistent, fileless, LPE backdoor? There are many, but this one looks really beautiful for me: type "sc.exe sdset scmanager D:(A;;KA;;;WD)" from an elevated command prompt.
Cool blog post by @xilokar on embedded devices reverse engineering, ARM TrustZone and secure boot bypass blog.xilokar.info/firmware-key-e… #iot #embedded #infosec #cybersecurity #hacking
Check out the latest articles from the Payment Village blog paymentvillage.org/blog : 1. How I used deepfakes to bypass security verifications in a bank. My first experience with hacking ongoing due diligence checks using deepfake and ML.
Very cool series by @__pberba__ about persistence in Linux environments Persistence map: pberba.github.io/assets/posts/c… Auditd, Sysmon, Osquery: pberba.github.io/security/2021/… Account Creation and Manipulation: pberba.github.io/security/2021/… #Linux #kernel #malware #infosec #cybersecurity
Sniffing SSH passwords TL;DR # pgrep -l sshd 6235 sshd # strace -f -p 6235 -e trace=write -o capture networklogician.com/2021/04/17/sni…
"Hello World under the microscope" - an article we wrote together with @gynvael and @j00ru! Originally published in issue 100 (1/2022) of the Programista magazine, now available online in Polish and English. asawicki.info/articles/Hello…
dragosr @dragosr
23K Followers 9K Following Stop, Think, Pwn! (see also @[email protected], https://t.co/BjclXYWQ9R for alternate)
Chick3nman 🐔 @Chick3nman512
3K Followers 2K Following Sam Croley, Austin based password cracker & researcher; Team @hashcat Core Dev; CEO of Detack Inc. - @DetackGmbH; DMs always open
Zalina Mondello @Zalina_InTech
0 Followers 22 Following Executive recruiter | IT, Product & AI | Building strong tech teams across Europe | Italy 🇮🇹
Amber Evelyn @amber_evel1787
1 Followers 161 Following Recruiting webshell engineers to penetrate websites, with a monthly salary of up to $100,000. If interested, please contact https://t.co/DU0wwrgH4x
Muriuki @muriuki_kw
130 Followers 2K Following
ONSEC Team @OnsecCyberDaily
46 Followers 668 Following In-depth penetration tests, white-box and black-box security audits. We find critical vulnerabilities after usual pentests in 95% cases
yeshuibo @yeshuibo
109 Followers 6K Following
t e d @squirrelcide
5 Followers 465 Following
Radiated Monday 🏴�... @RadiatedMonday
1K Followers 288 Following IT-специалист/Байкер из Питера. Книги, мотоциклы, ЗОЖ и пьянство🥃 Люблю готовить
User @user2020_1
14 Followers 143 Following
Haidar @haider_kabibo
1K Followers 87 Following Wine tester at Kaspersky :) Personal account. Does not reflect my employer
Azor @PendingPrime
17 Followers 515 Following Information and hardware sink. Malware analysis enthusiast. CTF addict.
Ahmed Helmy @AhmedEgcert
157 Followers 933 Following
Pavel Taratynov @pavel_tr
5 Followers 12 Following
Abdullah Alrasheed @abdullah_rush
169 Followers 248 Following
John Smith @JohnSmi25499643
14 Followers 802 Following
JackJia @JackJia1987
0 Followers 34 Following
vladmurat @vladmurat
0 Followers 15 Following
Justas Z @Justas_Z
12 Followers 416 Following Principal Integrations Engineer at Darktrace. I spend my time improving defenders’ tooling. Former IR, GCIH.
winterknife 🌻 @_winterknife_
5K Followers 5K Following low-level developer with a focus on 𝙸𝚗𝚝𝚎𝚕 𝚡𝟾𝟼 ISA devices running 𝚆𝚒𝚗𝚍𝚘𝚠𝚜 | R&D @BHinfoSecurity | https://t.co/lyJL0y7qRZ
BalCCon @BalCC0n
3K Followers 2K Following Balkan Computer Congress, September 19th-21st 2025 Milky Way
Giancarlo Morales @Gianca_mo
5 Followers 163 Following Ingeniero electrónico y de telecomunicaciones
Stefan Karg @thecyberstefan
77 Followers 366 Following Team lead rail security. Security for safety matters in a world developing towards sustainable transportation. This is my private account.
Blue. @leileis20
0 Followers 4K Following
ph7ntom @ph7ntom
4 Followers 105 Following
KurSh @KurShf
45 Followers 2K Following
Dave @spadave15
63 Followers 2K Following
john @Andrey_Doe
3 Followers 51 Following
Trusted Token @TrustedToken
164 Followers 7K Following
Marcin Dudek @dudekmar
2K Followers 447 Following Head of @CERT_Polska, ICS/OT Security Researcher, @Info_CCI Poland Coordinator, @BEERISAC 131
cooldudevimal @cooldudevimal
415 Followers 6K Following இறை மறுப்பாளன். பௌத்தம், பகுத்தறிவு போற்றும் பெரியாரின் பேரன், ஓஷோவின் மாணவன்.
status @AllRoadNearRome
3 Followers 176 Following
eyesackmeerkat @eyesackmeerkat
6 Followers 304 Following
karan agarwal @karanagarwal14
11 Followers 168 Following
Reza Zamiri @d3c0der
2K Followers 2K Following Everybody gangster, till the code executes remotely | Computer science @Saar_Uni
kateo 🌻 @vajkat
4K Followers 1K Following Christian | I like #computers, #automation, #SCADA, #ICS, and #CTFs | Network Connectivity| Neutral Good Cleric | Member of #misec | #ENFJ.
pek0 @pek0
3 Followers 1K Following
CsGee @csgee
2 Followers 45 Following
Fedordzen @fedordzen
126 Followers 3K Following
dragosr @dragosr
23K Followers 9K Following Stop, Think, Pwn! (see also @[email protected], https://t.co/BjclXYWQ9R for alternate)
Florian Hansemann @CyberWarship
88K Followers 46 Following Father, Founder @HanseSecure, Pentesting, Student, ExploitDev, Redteaming, InfoSec & CyberCyber; -- Mastodon: https://t.co/KFSKYUN98M
DirectoryRanger @DirectoryRanger
37K Followers 102 Following This account assembles and disseminates information related to Active Directory and Windows security.
Binni Shah @binitamshah
141K Followers 165 Following Linux Evangelist, Malwares, Security enthusiast ,Investor,World Economy, Finance,Contrarian , Philanthropist , Reformist , Sigma female [email protected]
Alisa Esage Шевч�... @alisaesage
41K Followers 99 Following Independent hacker and researcher, owner of Zero Day Engineering @zerodayalpha
lcamtuf @lcamtuf
40K Followers 499 Following Substack: https://t.co/yFvmNisGW3 Homepage: https://t.co/iFAXZxCO5H
Dirk-jan @_dirkjan
30K Followers 206 Following Hacker at @OutsiderSec. Researches AD and Azure (AD) security. Likes to play around with Python and write tools that make work easier.
World of Engineering @engineers_feed
3.5M Followers 68 Following The most fun way to learn something new everyday.
Chetan Nayak (Brute R... @NinjaParanoid
32K Followers 0 Following Dark Vortex Founder/Brute Ratel Author
Jared Atkinson @jaredcatkinson
10K Followers 2K Following | CTO @specterops | Host @dcpthepodcast | Ex PowerShell MVP | USAF Vet | FC Bayern Supporter | Language Learner 🇳🇴 🇮🇹 🇧🇷 |
Cas van Cooten @chvancooten
10K Followers 670 Following @Offensys Co-Founder || Benevolently malicious offensive security enthusiast || OffSec Developer & Malware Linguist
Alex_S @A1ex_S
72 Followers 221 Following
Ahmed Helmy @AhmedEgcert
157 Followers 933 Following
Abdullah Alrasheed @abdullah_rush
169 Followers 248 Following
Chirag Savla @chiragsavla94
3K Followers 5K Following With Knowledge We Know the Words.. But... With experience We Know their Meaning ! #HOF #Microsoft #BigBasket
Fermat's Library @fermatslibrary
791K Followers 4 Following A platform for illuminating academic papers. We annotate and share a paper every week. Save, annotate and share papers with anyone: https://t.co/0o2Pls3jmo
Andrea Fioraldi @andreafioraldi
3K Followers 587 Following Cyber Response Italian Supercazzola Technology Officer at @mhackeroni Inc. Writing your favourite fuzz testing tools with @aflplusplus. Security researcher at
Spiros Fraganastasis @m3g9tr0n
14K Followers 2K Following Team @hashcat! Eternal n00b and knowledge seeker! Age is just a number and motivation is the fuel! Whatever you do in your life, do not forget to be humble.
Costin Raiu @craiu
39K Followers 8K Following Cybersecurity researcher focused on threat intel & APTs. Breaking down attacks, hunting threats, and crafting YARA rules. Buddy @ Three Buddy Problem
h0mbre @h0mbre_
16K Followers 661 Following # Exploit Reliability Engineer # Developing a full-system snapshot fuzzer: https://t.co/mfVXhwoGYD # Avi: https://t.co/3fsQfVprCf
Emmanuel Fleury @perr0r
492 Followers 269 Following I have no special talents, I am only passionately curious.
Valery Serkin @SerkinValery
108 Followers 445 Following
Clément Labro @itm4n
7K Followers 164 Following Pentest & Windows security research (I stopped using this account in December 2022) ➡ Mastodon: @[email protected]
Alex Korotin @0xc0rs
21 Followers 24 Following
Kai Schuricht @kai_schuricht
70 Followers 351 Following Project Manager Cybersecurity @code blue| | Tweets are my own.
Ayman Shaaban @AymanShaaban
258 Followers 368 Following Head of Incident Response unit, META || Kaspersky
Sébastien Dudek 📡 @FlUxIuS
4K Followers 2K Following 📡 Hacking radio signals for a living. Creator of https://t.co/lgZI6A1wt1. Hunting vulns in telecoms & exotic coms. BlackHat, SSTIC, https://t.co/Rwf0XF5kY4. Founder @PentHertz 🇫🇷🇵🇱
Robert Swiecki @robertswiecki
4K Followers 363 Following [email protected] Homepage: https://t.co/PazJLbef0l
Vulncode-DB @vulncodedb
560 Followers 0 Following News and updates regarding the vulnerable code database Vulncode-DB.
Stefan Viehböck @sviehb
1K Followers 421 Following information security at @sec_consult opinions are my own.
Elad Shamir @elad_shamir
5K Followers 27 Following
(0deD!G.gER @c0deDiGgER
471 Followers 82 Following Cryptography enthusiast. Web applications security researcher at Kaspersky Lab.
ATT&CK @MITREattack
117K Followers 515 Following MITRE ATT&CK® - A knowledge base for describing the behavior of adversaries. Replying/Following/Re-tweeting ≠ endorsement. @ https://t.co/wt46ArkZVt
/r/redteamsec @r_redteamsec
9K Followers 3 Following /r/redteamsec - bot operated by @domchell Discord - https://t.co/2dP3tTjq75
Dmitry @d_skljar
26 Followers 29 Following
Enno Rey @Enno_Insinuator
7K Followers 2K Following Old-school network security person. Founded https://t.co/jnQuHO036k & @WEareTROOPERS. Occasionally blogging at https://t.co/67lpbmCajA
idatips @idatips
4K Followers 3 Following Tips and tricks for everyone's favorite disassembler. Account not run by Hex-Rays.
Alexey Reutov @AlexeyReutov
7 Followers 21 Following
RET2 Systems @ret2systems
12K Followers 1 Following We strive to reimagine vulnerability research, program analysis, and security education as it exists today. An @RPISEC corporation.
Sergey Puzankov @xigins
99 Followers 133 Following
Alexander Popov @a13xp0p0v
7K Followers 378 Following Linux Kernel Developer / Security Researcher / Free Software Maintainer. Admin of @linkersec. This is my personal account.
Antón Shipulin 🌐 @shipulin_anton
3K Followers 174 Following OT/ICS Security Fan, Industrial Cybersecurity Evangelist @NozomiNetworks, @Info_CCI Middle East Coordinator, @BEERISAC coin #050, CISSP, CSSA, NNCEYou might like
