Sam Curry @samwcyo
Hacker, bug bounty hunter. Run a blog to better explain web application security. samcurry.net Omaha, NE Joined January 2017-
Tweets3K
-
Followers76K
-
Following939
-
Likes7K
my first blog post since starting at @HuntressLabs just dropped! 🔥 @stuartjash and I take a look at the recently discovered macOS #LightSpy variant and highlight some of the major differences between it and the iOS version!🍎 huntress.com/blog/lightspy-…
"My husband’s LexisNexis report had a breakdown of the 203 trips we had taken in the car since Jan, including the distance, the start and end times, and how often we hard-braked or accelerated rapidly...GM’s spokeswoman [said] this data collection happened only to people who…
“Every time a block is broken in Minecraft versions Beta 1.8 through 1.12.2, the precise coordinates of the dropped item can reveal another player's location.” github.com/spawnmason/ran…
Introducing Caido Nerd Sniper🌠 Now, you can nerd snipe your friends directly from Caido using a workflow, with built-in credential sanitisation! This triggers a Discord webhook provided by your friend (victim) @CaidoIO #bugbounty #caido #bugbountytips
We published a blog by @ryotkak regarding the command injection that exists in many programming languages, which is partially patched as of now. Despite the high severity, conditions for a successful attack are limited. Please check it for more details. flatt.tech/research/posts…
We published a new blog by @ryotkak. Check it out! Bypassing DOMPurify with good old XML flatt.tech/research/posts…
Under Section 1201 of the Digital Millennium Copyright Act, these snitch-chips are "an effective means of access control" which means that anyone who helps you bypass them faces a $500,000 fine and a five-year prison sentence for a first offense. 19/
After 2.5 weeks, @frodo3301 has had his innocence proven in the fictional murder of Lena for the Find My Killer puzzle ARG by the following detectives: @jtobcat, @bbuerhaus, @i_v_a_k_i, @_LeFevre_ , @PogoB, @mattmcquaig, and zomperzon The depth of this puzzle significantly…
I can't believe so many people are sleeping on this research: code-white.com/blog/leaking-o… Code White again smashes it out of the park with their meticulous knowledge of software stacks. I have so much respect for them publishing this. Nice work, @mwulftange!
RE: APEX / ALGS / EAC Remote Code Execution 👋 I wrote undectable cheats for online games for challenge and sport for many, many years. I know enough to know that no one has the answers, but I'd like to call out some things you may have glazed over, and put them in context. 🧵
Security researchers found flaws in Saflok hotel keycard locks, used on 3 million doors in 13,000 properties worldwide, that can be used to open them in seconds. The lockmaker Dormakaba has been working on a fix but told them only 36% of locks are updated. wired.com/story/saflok-h…
Huge thanks to @davidbombal for covering the past car hacking research from @_specters_ @bbuerhaus @xEHLE_ @iangcarroll @sshell_ @infosec_au and I. David and his team put in a ton of effort to research this and asked some great questions. More than happy to share the fun stories.
Huge thanks to @davidbombal for covering the past car hacking research from @_specters_ @bbuerhaus @xEHLE_ @iangcarroll @sshell_ @infosec_au and I. David and his team put in a ton of effort to research this and asked some great questions. More than happy to share the fun stories.
Our security research team took a deeper look into FortiGate. In this post we detail the steps we took to identify the patched vulnerability and produce a working exploit. Read the research here: assetnote.io/resources/rese…
These security software vendors with easily identifiable and critical bugs in their products have no business being in our industry. These vulnerabilities would absolutely be identified by a qualified security auditor if these vendors actually cared about securing their products.
Are CSP's getting in the way of scoring that Bug Bounty you have been working on? 😫 Lucky for you, our research team (@PortSwiggerRes) has released some new techniques using Form Hijacking to bypass that protection and get you hacking again; enjoy! portswigger.net/research/using…
@NahamSec Its a creative field, which confuses some people. Imagine a band not making an album to not give other bands an "advantage". Typically by the time a hacker writes a post, they've extracted the value they can/want out of it, and now they're trying to inspire, advance the art, etc.
Intigriti @intigriti
155K Followers 644 Following Global Bug Bounty & VDP Platform. 🌐: https://t.co/fgCupJckrW ▶️: https://t.co/lRfCzZBgb7 👾: https://t.co/Inf7N9VQIlBen Sadeghipour @NahamSec
197K Followers 1K Following Cofounder @hackinghub_io, Advisor @Trick3st @CaidoIO. I hack companies and make content about it. Bug Bounty Village & #NahamCon organizer. ex @hacker0x01🇮🇷The XSS Rat - Uncle R.. @theXSSrat
128K Followers 888 Following Alone we survive, together we prosper. Are you with me? https://t.co/AfnDsVhqqAJason Haddix @Jhaddix
146K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. @arcanuminfosec 18 years hacking + sec leadership. ex:BuddoBot-Ubisoft-Bugcrowd-Fortify-HP-Redspin-Citrix.bugcrowd @Bugcrowd
160K Followers 6K Following The leading provider of crowdsourced cybersecurity solutions purpose-built to secure the digitally connected world...Unleash Ingenuity™Joseph Thacker @rez0__
49K Followers 865 Following the promptfather. christian. hacker. hobby jogger. principal ai engineer @appomnisecurity.hakluke @hakluke
88K Followers 2K Following Hacker, bounties, entrepreneur. I help cybersecurity companies produce amazing content for their blogs and socials. Founder of: @haksecio and @hacker_contentCorben Leo @hacker_
68K Followers 659 Following I hack stuff (legally) | Jesus follower | Co-founder @boringmattressKatie Paxton-Fear @InsiderPhD
82K Followers 2K Following Dr, apparently. Creator @traceableai, Lecturer & Hacker. #BugBounty hunter & #infosec YouTuber. APIs & Interlinked OffSec, PhD in AI+Sec @hacknotcrime. she/herAbhishek Meena - {�.. @RadhaSec
31K Followers 230 Following COO at @Vulncure | 🖊️ Tester | 🪲 Hunter HOF - Google 🤝 Sharing Knowledge with infosec community 📬 Inbox Whenever Need HelpSTÖK ✌️ @stokfredrik
126K Followers 1K Following Hi.. im that hacker / creative that your friends told you about. Creative Director & Hacks all the things at @truesecNathaniel @nnwakelam
38K Followers 1K FollowingInfoSec Community @InfoSecComm
38K Followers 637 Following Largest InfoSec publication with 30k+ followers and 1M+ monthly views. 3rd edition of @IWcon_ happening in December 2023!Hussein Daher @HusseiN98D
43K Followers 151 Following Entrepreneur, Hacker 🇱🇧🇨🇮 @WebImmunify 27th/270000 BugCrowd Hacking Platformshubs @infosec_au
50K Followers 2K Following Co-founder, security researcher. Building an attack surface management platform, @assetnoteFarah Hawa @Farah_Hawaa
44K Followers 840 Following security analyst @fbsecurity | part-time bug hunter | content creator | she/her | views = mineJulien | MrTuxracer �.. @MrTuxracer
30K Followers 417 Following Freelancer | Full-time #BugBounty | @Hacker0x01 H1-Elite & $1,500,000 Hacker | ❤️ IDA Propayloadartist @payloadartist
34K Followers 288 Following Tweeting about Application Security, Hacking, & Cybersecurity • Helped secure organizations like Google • Opinions are my ownHamza Khaled @__0sussy0
2 Followers 303 Following410ys @410ys
0 Followers 25 Followingshantanu sawantbhosal.. @shantan93308960
0 Followers 27 FollowingThanks Always @iTimonPumbaa
0 Followers 368 FollowingTruong Le Van @HSw_109
0 Followers 46 Followingbombomhunter @bonibomhunter
0 Followers 130 Following Researcher not LPG 🧯| @Defcon Speaker | Bug Bounty HunterTom englund @EnglundTom
51 Followers 64 FollowingMohammad Zeeshan @iZishanAnsari
30K Followers 728 Following IT professional | Cyber Security | Networking | Blockchain Technology | Follow me for insights into the world of AI.Ashish Kumar @0x526f6f744b
1 Followers 199 Following Machine Learning | Kaggle Contributer | CTF PlayerElectronicsseeker @libertarian108
6 Followers 912 FollowingAmir shah @AmirShah_Koala
5 Followers 49 Following 20 y/o Security Researcher | CS Sophomore | rookie bug hunter | CEO of KoalaSEC | TheGeeKkaren riveros @karenriverosk00
22 Followers 678 FollowingMichael Dunn | Off Ze.. @OffZeroCyber
210 Followers 774 Following Just a guy that has a passion for tailoring cybersecurity solutions for individuals, startups and small businesses. Lets do more with less and get off zero.Ashish Rohra @AshishRohr238
0 Followers 32 FollowingAhmed Ahmed @rwxguru
1 Followers 39 Followingkr0nx @kr0nx5
2 Followers 40 FollowingOmar Hany @OmarHan81059358
9 Followers 38 Following Faculty of computer science&information systems.Rodrigo Rios 🇧🇷 @Rodrigofrj
25 Followers 481 Following O sábio nunca diz tudo o que pensa, mas pensa sempre tudo o que diz. Aristóteles.VV@ffle$ @_VVaffles
2 Followers 15 FollowingQuillan Black @Eileenfidelis_4
0 Followers 113 Following 8 Year Day Trader / Car Enthusiast: @CueBanks ALL SOCIALSdig8italX @dig8italX
136 Followers 2K Following dig8italX, the leading artificial intelligence firm that specializes in creating customized AI solutions for businesses.Software Developer @dmkavanagh
2K Followers 6K Following Software Developer for 44+ years currently involved in Java, AppSec, Rancher, Storm, AWS, Kubernetes, Kafka, Cryptography, BA, BSCS, MSCS, GoTerps!, Go Joe!Cecile @ce_seal
3 Followers 257 Followingjack tom @xiaodisec1
40 Followers 92 Followingambassador @amb645540
0 Followers 974 FollowingObags @obags_o
70 Followers 345 Following Security Researcher ll Computer Engineer ll Developer ll Tech lover⚙️Rutik @Rutikpa
5 Followers 0 Followingعلاء شماسي @LaShmasy35771
39 Followers 296 FollowingObama of African @Ukpokwu170778
507 Followers 4K Following Am a critic, researcher and a pedagogy. financial and home builder. please don't hate me.hai qing li @haiqingli889452
5 Followers 130 FollowingHassan khalifa @khalifaa140
422 Followers 3K Following Domain Investor owner https://t.co/V9PpzZmtCB https://t.co/08rnRWWRok / https://t.co/EIEc7RwYa1 / https://t.co/gTHFrHOMK8 / https://t.co/jgTEog0zCq / https://t.co/LBJGzYDHlLRetro-X @RetroX0007
0 Followers 14 FollowingBitPir8 @zoldfor
33 Followers 155 Following Digital corsair navigating the neon sea of data. Music in my ears & tech at my fingertips. Mapping the uncharted territories of the web.sparrow geee @yahyageee
718 Followers 4K Following I focus on my goals as you focus on me👉#HTML #CSS #javascript💻self learning 👉united fans👉🏽kwakwasiyya💯#informatics kazaure👉🏽#Bsc in IT.👉dkhir📿🤲Lucky Luke @lucky0x01
5 Followers 29 FollowingIntigriti @intigriti
155K Followers 644 Following Global Bug Bounty & VDP Platform. 🌐: https://t.co/fgCupJckrW ▶️: https://t.co/lRfCzZBgb7 👾: https://t.co/Inf7N9VQIlBen Sadeghipour @NahamSec
197K Followers 1K Following Cofounder @hackinghub_io, Advisor @Trick3st @CaidoIO. I hack companies and make content about it. Bug Bounty Village & #NahamCon organizer. ex @hacker0x01🇮🇷Jason Haddix @Jhaddix
146K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. @arcanuminfosec 18 years hacking + sec leadership. ex:BuddoBot-Ubisoft-Bugcrowd-Fortify-HP-Redspin-Citrix.bugcrowd @Bugcrowd
160K Followers 6K Following The leading provider of crowdsourced cybersecurity solutions purpose-built to secure the digitally connected world...Unleash Ingenuity™Joseph Thacker @rez0__
49K Followers 865 Following the promptfather. christian. hacker. hobby jogger. principal ai engineer @appomnisecurity.hakluke @hakluke
88K Followers 2K Following Hacker, bounties, entrepreneur. I help cybersecurity companies produce amazing content for their blogs and socials. Founder of: @haksecio and @hacker_contentCorben Leo @hacker_
68K Followers 659 Following I hack stuff (legally) | Jesus follower | Co-founder @boringmattressKatie Paxton-Fear @InsiderPhD
82K Followers 2K Following Dr, apparently. Creator @traceableai, Lecturer & Hacker. #BugBounty hunter & #infosec YouTuber. APIs & Interlinked OffSec, PhD in AI+Sec @hacknotcrime. she/herSTÖK ✌️ @stokfredrik
126K Followers 1K Following Hi.. im that hacker / creative that your friends told you about. Creative Director & Hacks all the things at @truesecNathaniel @nnwakelam
38K Followers 1K FollowingInfoSec Community @InfoSecComm
38K Followers 637 Following Largest InfoSec publication with 30k+ followers and 1M+ monthly views. 3rd edition of @IWcon_ happening in December 2023!Hussein Daher @HusseiN98D
43K Followers 151 Following Entrepreneur, Hacker 🇱🇧🇨🇮 @WebImmunify 27th/270000 BugCrowd Hacking Platformshubs @infosec_au
50K Followers 2K Following Co-founder, security researcher. Building an attack surface management platform, @assetnoteFarah Hawa @Farah_Hawaa
44K Followers 840 Following security analyst @fbsecurity | part-time bug hunter | content creator | she/her | views = mineJulien | MrTuxracer �.. @MrTuxracer
30K Followers 417 Following Freelancer | Full-time #BugBounty | @Hacker0x01 H1-Elite & $1,500,000 Hacker | ❤️ IDA Propayloadartist @payloadartist
34K Followers 288 Following Tweeting about Application Security, Hacking, & Cybersecurity • Helped secure organizations like Google • Opinions are my ownMd Ismail Šojal @0x0SojalSec
22K Followers 4K Following Cyber_Security_Researchers || 0SINT || Digital Forensics System Analysis / incident Response II Pwn || GH0ST_3xP10iT || 0ld Accounts Suspended @0xSojalSec ||Yassine Aboukir 🐐 @Yassineaboukir
26K Followers 338 Following HackerOne Top 20, Pentest Lead, Ambassador, MVH Title and Hacker Advisory Board • Digital Nomad • Aspiring Athlete.Kashmir Hill @kashhill
262K Followers 2K Following Privacy pragmatist. @nytimes journalist. Author of YOUR FACE BELONGS TO US. Named after the Led Zeppelin song.Philippe Teuwen @doegox
4K Followers 1K Following If you can't root it you don't own it. doegox infosec exchangesecret club @the_secret_club
17K Followers 0 Following secret club is a not-for-profit reverse-engineering group; publishing new research on popular software. No ads, no cookies, just research.startup rat @startup_rat
912 Followers 0 Following memes & open source dealflow from Israel | DMs open to allGeneral Catalyst @generalcatalyst
78K Followers 2K Following We invest in powerful, positive change that endures.Ryan Emmons @ChairNectar
117 Followers 177 Following Hello, thanks for stopping by! This profile is my own, and my tweets don't represent my employer. https://t.co/D9PuJ9Ur9mHarley @infinitelogins
4K Followers 1K Following Hacker, Creator, Community Manager, Co-Founder of Bug Bounty Village at DEF CONomaru @omaru53684882
258 Followers 293 Following constantly trying to increase my dopamine level by solving impossible cryptopuzzles • omaru#4123John Hultquist @JohnHultquist
28K Followers 1K Following Chief Analyst, Mandiant Intelligence @Google. @CYBERWARCON and @SLEUTHCON founder. Johns Hopkins professor. Army vet.Ciarán Cotter @monkehack
3K Followers 420 Following 22-year-old Irish web hacker living in The Hague. Cork native. 🇮🇪 / 🇯🇵 https://t.co/7IvJ9Od3ZcManfred Paul @_manfp
5K Followers 279 Following Maths and cyber and stuff. Playing CTFs with @redrocket_ctf (and @Sauercl0ud). Pwn2Own Vancouver 2020..=2022, 2024. @[email protected]xssdoctor @xssdoctor
906 Followers 326 Following hacker and cardiologist… not necessarily in that orderCyburger @Cyburgerim
2K Followers 267 Following Cyber. M&A. Investments. Product. Nonsense. Also in English @CyburgerzzDaniel Cuthbert @dcuthbert
30K Followers 1K Following Documentary photographer, old creaky hacker. Co-author of @OWASP ASVS standard. Blackhat/Brucon Review Board & UK Government Cyber Security Advisory BoardDavid Bombal @davidbombal
142K Followers 621 Following YouTube: https://t.co/xGPVEj6ULN Discord: https://t.co/GZI30F45va Website: https://t.co/MpcS9ylBrVThom "F." Badinger @fdotOnline
3K Followers 2K Following A Decade in Esports. On-Camera and Off. Feral Druid. Seen on: @EsportsAwards @RocketLeague @ESPN @Brawlstars @RiotGames 💼: [email protected] 👥: @TheCSA𝖗𝖊𝖉𝖗𝖚�.. @redrum21e8
3K Followers 2K Following CHIEF OF LOVE AT REMILIA CORPORATION | 13⋖33 angel | bd @0xoogabooga | @0xLCL | Chief Retard @FU_STUDIOSsuzuha⚡️🌙 @dystopiabreaker
44K Followers 1K Following cypherpunk interested in zk, AI, XR, privacy techOpenSSF @openssf
5K Followers 21 Following Open Source Security Foundation (OpenSSF) https://t.co/uUpbn45dUo Together, we're securing the #opensource ecosystem #OSSsecurity https://t.co/adjLU8dJ9ykernelcon @_kernelcon_
2K Followers 74 Following https://t.co/SdwHu7zTbH check reg email for survey and ‘24 hoodie infoassume_breach @assume_breach
4K Followers 137 Following Why yall have so many calculators in your screenshots? | QAnon Red Team | Labeled Misinformation Propagandistϻг_ϻε @steventseeley
21K Followers 519 Following Hermetic Initiate. Exploring conscience and the nature of reality. I also hack things. @[email protected]Marc Newlin @marcnewlin
3K Followers 765 Following Hacker. Engineer. Burner. I'm a DARPA challenge junkie, and recently acquired a fourth pair of pants. #BlackLivesMatter.Karl (RIP ) @supersat
4K Followers 3K Following KY0LO. Recovering hackademic. He/Him. skeeting as https://t.co/WdQ4ecJPYr Backup in case everything goes to shit: @[email protected]Eva @evacide
184K Followers 1K Following Director of Cybersecurity @EFF / Co-founder of @stopstalkerware/ My tweets are my own, not my employers’ / I did a TED talk once /Derin Eryilmaz @deryilz
483 Followers 34 Following Student with hobby for security research who messes with Chromium and Javascript. 🇺🇸 🇹🇷LaurieWired @lauriewired
30K Followers 204 Following Reverse engineer specializing in cross-platform malware analysis with a focus on mobile threats.G O O S E @G0053me
787 Followers 497 Following Hunts bugs 🪲 and runs an online marketing & web agency 🧑🏻💻 Co-Founder @HackerHideoutPeckShield Inc. @peckshield
82K Followers 433 Following A blockchain security and data analytics company (telegram: https://t.co/x72dANZur3)Golden Steer Steakhou.. @goldensteerlv
2K Followers 155 Following Since 1958, The Golden Steer is Las Vegas' most iconic & longest-running steakhouse.Cory Doctorow NONCONS.. @doctorow
498K Followers 3K Following Author/activist/journalist. New novel: THE BEZZLE, a thriller of hi-tech fraud and the Shitty Tech Adoption Curve https://t.co/4ZExCQHv6q @[email protected]Cuba @Cuba1337
692 Followers 2K Following 🌴Living day by day🌴 | DF/IR🇪🇸🇮🇨🇺🇸 | Detection and Response Engineer | Tweets and views ≠ my employers| サイバーセキュリティNathan Jones @njcve_
1K Followers 2K Following Bishop Fox || GoogleVRP (UK): 5th || HackerOne UK Ambassadormatlac @matl4c
65 Followers 435 FollowingAwesome Google VRP Wr.. @gvrp_writeups
3K Followers 0 Following Automatically tweeting new writeups from the GitHub repository "awesome-google-vrp-writeups".The bug bounty industry is creating a promising new generation of craftspeople, farmers and B&B owners.
Got 10 reports (wrongfully) closed as duplicates of the same report overnight. Makes me wanna quit bug bounty and open a bed and breakfast 🥲
my first blog post since starting at @HuntressLabs just dropped! 🔥 @stuartjash and I take a look at the recently discovered macOS #LightSpy variant and highlight some of the major differences between it and the iOS version!🍎 huntress.com/blog/lightspy-…
@dnoiz1 Wish I could re-x or whatever the fuck you’re supposed to call it now
It's now a crutch that people use to get a job, do interviews, do schoolwork, etc. Can they ever go back to just doing the work without this assistance or do they become lazy and no longer have the ability to do research and think on their own without it? And will they need to?
It used to be there was integrity in doing your own work. But now if you do your own work you're at disadvantage against people who use ChatGPT and other algos to do the work for them, even if it's just foundational work. ChatGPT makes people seem smarter than they actually are
"My husband’s LexisNexis report had a breakdown of the 203 trips we had taken in the car since Jan, including the distance, the start and end times, and how often we hard-braked or accelerated rapidly...GM’s spokeswoman [said] this data collection happened only to people who…
if you say so 🤷♀️
@molly0xFFF You’d be anti FOSS 30 years ago. The “FOSS” community encouraged people to carry around CDs of Linux distributions and preach endlessly to anyone about how “the future” is FOSS. To organize and host “Linux install” parties. I got mauled for weeks by one preacher coworker.
A friend had me check strava today for my total miles ran. I've ran 2444 miles. That's almost 4000 km for the non-americans. That's crazy! I'm proud of that!
Had an amazing time in Singapore for @Hacker0x01 's #h165 event! Hats off to the talented @salesforce for hosting such a cool event at a cool location! Found some very cool bugs & hacked with some very cool hackers! (@Michael1026H1 , @shm0ul , @MtnBer , @0xacb , and more)
that’s cute. i raw dog jquery
And that's why I made a Minecraft hacking video series :) youtube.com/playlist?list=…
Proving once again that Minecraft exploits are fundamentally more interesting than the ones targeting software people actually care about (and definitely being better for civil society): github.com/spawnmason/ran…
You need to start thinking outside of the boxes... as in stop buying shitty appliances to solve your security problems.