Jonny @tr4px
💻📱🦠 malware sandbox engineering // malware analysis // threat intel // detection engineering // data science // artificial intel // machine learning Switzerland Joined January 2012-
Tweets257
-
Followers94
-
Following580
-
Likes875
🚨 Python "WSUS exploit" or malware trap? 🐍 Joe Reverser found a fake exploit-generation script hiding obfuscated marshal payloads that launch download chains for Windows 🪟 and macOS 🍎. Observed: ⚙️ Go reflective loader 🍎 MAC Stealer 🌐 py-installer[.]com lookalike infra 🔐 Encrypted staging 🧠 In-memory execution 🎯 Likely targeting security researchers, exploit collectors, and malware analysts. buff.ly/t94b7kI #ThreatIntel #MalwareAnalysis #CyberSecurity
🚀 Introducing what is likely the first MCP (Model Context Protocol) server to feature dynamic and static malware analysis! 🔍 Explore it here: buff.ly/KX3FRI0 🧠 Powered by Joe Sandbox #CyberSecurity #MalwareAnalysis #AI #ModelContextProtocol #DFIR #ThreatIntel
[Level Up] Discover Joe Sandbox AI – a groundbreaking plugin leveraging Joe Sandbox and #GenAI to revolutionize #phishing detection! Explore it here: buff.ly/4hSv9BH
According to @GovCERT_CH , an unknown threat actor has sent out postal letters (yes, *postal* letters ✉️) to recipients in Switzerland that pretend to originate from @meteoschweiz, luring the recipient into downloading and installing a rogue App 🔥🕵️♂️ The QR code in the letter leads to a malicious App that impersonating the "AlertSwiss" App of the federal administration. However, the App in fact is a version of Coper (aka Octo2) #malware, infecting mobile phones running Android 📱🤖 Payload delivery URL: 🌐 urlhaus.abuse.ch/url/3290212/ Malware sample: 📄 bazaar.abuse.ch/sample/4928c56… Coper botnet C2: 🔥 threatfox.abuse.ch/ioc/1344824/ ➡ ncsc.admin.ch/ncsc/en/home/a…
Joe Sandbox now supports malware detonation on Linux Ubuntu 22.04 LTS. Wondering how this looks like? Take part in a report tour showing a #DinodasRAT detonation: buff.ly/4aT4xfE #malware #dfir #infosec #linux
@objective_see Also neat to see that RansomWhere? (objective-see.org/products/ranso…), can generically detect & thwart it:
Check out the Joe Sandbox macOS #Apple Silicon #ARM 64-bit analyzer support.
Joe Sandbox #macOS ARM64 Apple Silicon support is out! You can now analyze malware natively on Ventura. Wondering how this looks like? Take part in a report tour showing a #LockBit #ransomware: joesecurity.org/reports/report… #malware #dfir #infosec #mac
Joe Sandbox #macOS ARM64 Apple Silicon support is out! You can now analyze malware natively on Ventura. Wondering how this looks like? Take part in a report tour showing a #LockBit #ransomware: joesecurity.org/reports/report… #malware #dfir #infosec #mac
Joe Sandbox now analyzes #malware on Android 12 Snow Cone 🍧🍧🍧 - like this recent S.O.V.A banking trojan: joesandbox.com/analysis/68631…
#ESETresearch #BREAKING A signed Mac executable disguised as a job description for Coinbase was uploaded to VirusTotal from Brazil 🇧🇷. This is an instance of Operation In(ter)ception by #Lazarus for Mac. @pkalnai @dbreitenbacher 1/7
New #TeamTnT Variant started mining #Raptoreum (RTM) cryptocurrency Report: buff.ly/3ve47hs VERSION=22.06 C2 : 128.199.240[.]129 Miner pool : asia.flockpool[.]com:5555 WALLET=RDd3ynknNaWV5zs8qP3mR4uWJVmNGLyqWR #cryptominer #TeamTnT
1/ Linux #Hardening and #ThreatHunting The screenshot below is from Microsoft [1] - using XorDdos as an example, we can learn a lot about Linux forensics and hardening. 🧵 #CyberSecurity
New blog post: hardware accelerated virtual machines on a jailbroken iPhone 12 / iOS 14.1 worthdoingbadly.com/hv/ ... it's not practical (VMs are limited to 900MB of RAM), but shows iPhone's untapped potential. Here's Fedora 36 in a modified @UTMapp with hardware virtualization:
New malware for Windows Subsystem for Linux steals browser auth cookies - @Ionut_Ilascu bleepingcomputer.com/news/security/…
We are hiring! You know PsSetCreateProcessNotifyRoutine and are a king in the Windows kernel? Then join our team as a Windows Kernel Developer! More details: joesecurity.org/resources/Kern… #NowHiring #JobSearch
#BPFDoor is an evasive piece of Linux malware recently disclosed by @GossiTheDog. The backdoor employs anti-forensics and can bypass firewalls to hide traffic. In this article we do a technical breakdown of how it works and how to find it on your systems. sandflysecurity.com/blog/bpfdoor-a…
Titirore @Titiroreb8BCj
9 Followers 254 Following
State of Statecraft C... @what_is_sos
395 Followers 525 Following 🎖️State-Sponsored Threats Conference 🗓️ October 22, 2026 - Brussels, Belgium #what_is_sos
timlake @timlake252160
1 Followers 2K Following
Kağan IŞILDAK @kaganisildak
4K Followers 2K Following co-founder @malwation @threatzone_ :: [email protected] building holistic platforms to analyze malware
OogWay @way_oog
28 Followers 877 Following Threat Intelligence + OSINT + Anti Cybercrime from 🇻🇳 #Nodarkcornersforcybercriminals
@bingohotdog@infosec.... @bingohotdog
81 Followers 163 Following fighting malicious traffic by moonlight 🌙. she/her.
urlDNA.io @urldna
271 Followers 102 Following The DNA test for websites - https://t.co/W61MnDQBt1 🧬Discover hidden information in websites
Raj @rajkumar_sankar
0 Followers 23 Following
nanjin002 @nanjin00272827
12 Followers 4K Following
Tairthewl @TairthewlO44yn
14 Followers 1K Following
LABScon 2026 @labscon_io
2K Followers 1K Following September 16-19, 2026 (Scottsdale, Arizona) CFP is open https://t.co/6chC6yVk37
John Doe @craftbossa
2K Followers 1K Following https://t.co/Dbh5ZxpQ0nとawabar Kobe をつくった人です。 https://t.co/Dbh5ZxpQ0n → @hackbarkobe awabar Kobe → @awabar_kobe
Luca @luca03752
161 Followers 396 Following Security Analyst & Incident Responder @swisscom_de @swisscom_csirt | interested in cyber security and technologies | tweets reflect my own opinions
Hans Rudolf Hänni @which_ch
8 Followers 94 Following
crawler_cookie_0 @crawler_cookie0
21 Followers 4K Following
Harp6X @harp6x
443 Followers 4K Following Trying to build a life I won't need a vacation from. Travel • Mountains • Creation • Reflection
Oluwatosin Emmanuel A... @tosetech
6 Followers 3K Following Tech consultant | Cyber analyst | Digital forensics investigator | CISO | Software quality assurance engineer | #TechExpert #CyberSecurity #DigitalForensics
Nithin Rajagopalan @NithinRajagopa2
3 Followers 216 Following
Skim Who @skimwho
11 Followers 438 Following
1t 1s N0b0dyh 🏴... @1t1sNobody
483 Followers 3K Following Sometimes I tweet something! Fighting and studying #malware in the other time
helloworld/ @hellodebug8
251 Followers 6K Following
Marc R @Seifreed
18K Followers 3K Following 🌍 Geopolitics & Cyber Intel | 🧠 Reverse Engineering Pro | 🔎 Geostrategy Analyst | 💻 Combatting Cybercrime & APT | 🚀 All tweets are my own!
Luke @Lofmir
254 Followers 1K Following
malhunter @malhunter4
0 Followers 224 Following
Karol Piątek @karolpiateknet
7 Followers 62 Following Senior iOS developer with mobile security experience
Calum Hall @_calumhall
979 Followers 343 Following Co-Founder of Phorion 🔍| Threat Detection and Response Manager at GitHub 👨💻| macOS researcher 🍎 | BlackHat speaker 2021 📢 Opinions are my own
emdel @emd3l
3K Followers 952 Following Researcher - Italian, Hackademic, Malware, Automation - Opinions are my own.
Florian Badertscher @Mr__Flo
229 Followers 910 Following Bug bounty, vulnerabilities, innovation, entrepreneurship - CTO @bugbounty_ch | mountaineering, paragliding, climbing, running | tweets are my own
Lee, Hosub @spyrr83
5 Followers 77 Following
Anmol Maurya @luftatako
84 Followers 696 Following Security Researcher @PaloAltoNtwks rwx~malware ex-@crowdstrike
Freesia Captain @Freesia_cAptaIn
31 Followers 781 Following Mixer of Programming Language & Reverse Engineering🤹♀️
SurajWavhal @SurajWavhal
378 Followers 5K Following #MalwareResearcher #InformationSecurityResearcher #Cybersecurity #ThreatIntelligence #ThreatHunting #SOC
Prasad Dhakad @prasad_dhakad
24 Followers 391 Following Malware analyst, Threat hunting, Detection writing
SpaceX @SpaceX
41.9M Followers 123 Following SpaceX designs, manufactures and launches the world’s most advanced rockets and spacecraft
Stadt Bern @Bern_Stadt
12K Followers 208 Following Offizieller Twitter-Account der Stadt Bern. Zu Bürozeiten bedient. Telefonzentrale: 031 321 61 11 Netiquette: https://t.co/igJHHfSNmt.
Threat and Risk Intel... @ecrime_ch
6K Followers 137 Following #Cyber Intelligence and Risk Services Free ransomware news RSS feed: https://t.co/iBk7bRcO3b #ransomware #monitoring #threat
State of Statecraft C... @what_is_sos
395 Followers 525 Following 🎖️State-Sponsored Threats Conference 🗓️ October 22, 2026 - Brussels, Belgium #what_is_sos
Binding Hook @bindinghook
792 Followers 733 Following Expert commentary on emerging tech and security. Send us your article ideas at [email protected]. Project from @VirtualRoutes
HaxRob @haxrob
15K Followers 458 Following I enjoy breaking things. Telco / mobile and IoT security. Surfing the information super highway one keystroke at a time.
Threat.Zone | Holisti... @threatzone_
625 Followers 1 Following Holistic Malware Analysis Platform https://t.co/6eMPHH3Dho Developed by @malwation
Malwation @malwation
1K Followers 3 Following Malware Analysis Solutions @threatzone_ → https://t.co/j39q28ZDqw: https://t.co/wUVNwSLUh7 → HookMesh: https://t.co/sxf1qitU4m
Kağan IŞILDAK @kaganisildak
4K Followers 2K Following co-founder @malwation @threatzone_ :: [email protected] building holistic platforms to analyze malware
Moonlock Lab @moonlock_lab
2K Followers 79 Following Malware research lab @moonlock_com Assembled by @macpaw to detect and study cybersecurity threats.
Cado @CadoSecurity
943 Followers 150 Following Cado Security is the provider of the first investigation and response automation platform focused on revolutionizing incident response for the hybrid world
elie @eliebakouch
20K Followers 4K Following training llm @PrimeIntellect (prev: @huggingface) anon feedback: https://t.co/JmMh7Sg3mL
ThreatCat.ch @threatcat_ch
767 Followers 9 Following https://t.co/O6yx9lhxus consists of a bunch of experienced Cyber Threat Analysts and Incident Responders who have been working together for many years.
The Rundown AI @TheRundownAI
222K Followers 115 Following The world’s largest AI newsletter keeping 2,000,000+ readers ahead of the curve. Get the latest AI news and how to apply it in 5 minutes. By @rowancheung
Rowan Cheung @rowancheung
592K Followers 563 Following Founder of the world’s most read daily AI newsletter @therundownai. Sharing the latest developments in the world of artificial intelligence.
@bingohotdog@infosec.... @bingohotdog
81 Followers 163 Following fighting malicious traffic by moonlight 🌙. she/her.
The Zeek Network Secu... @Zeekurity
14K Followers 19 Following Zeek is an open-source network security monitor. Retweets are not endorsements. https://t.co/gJjutmzsi8. Also: https://t.co/T5ptypZeDp
ATT&CK @MITREattack
117K Followers 514 Following MITRE ATT&CK® - A knowledge base for describing the behavior of adversaries. Replying/Following/Re-tweeting ≠ endorsement. @ https://t.co/wt46ArkZVt
OISF @OISFoundation
5K Followers 158 Following The Open Information Security Foundation, a 501c(3) non-profit building @Suricata_IDS, the Next Generation Open Source IDS/IPS Engine.
urlDNA.io @urldna
271 Followers 102 Following The DNA test for websites - https://t.co/W61MnDQBt1 🧬Discover hidden information in websites
urlscan.io @urlscanio
14K Followers 136 Following A sandbox for websites - Find malicious websites and phishing - https://t.co/LfPJPBGXFV - https://t.co/XjI4zJaBBp - #threatintel #cybercrime #infosec #web #phishing
Phishing Catcher @CatcherPhishing
451 Followers 317 Following
Michael Koczwara @MichalKoczwara
25K Followers 2K Following Threat Researcher/Founder @Intel_Ops_io Threat Intelligence, Adversary Infrastructure Hunting, Curated TI Feed (Coming Soon) https://t.co/VQWaze6gaF
Csaba Fitzl @theevilbit
9K Followers 1K Following macOS Security -- Trail running 🏃 -- Mountains ⛰ -- Tolkien fan For mountain pictures, go to: https://t.co/Xf7KDW5fKu
Threat Insight @threatinsight
12K Followers 216 Following @Proofpoint's insights on targeted attacks and the security landscape. Follow us on Bluesky: https://t.co/8OVfhotdeP
RE//verse @REverseConf
4K Followers 30 Following A conference for all things in the reverse engineering universe... https://t.co/X54VHq2eD4
L0Psec @L0Psec
4K Followers 2K Following reverse engineer | arm64 :) | macOS/iOS | YouTube: https://t.co/VdHNCl0Qfl
𝙽𝙴𝚃𝚁𝙴�... @netresec
9K Followers 852 Following Creators of #NetworkMiner, #CapLoader, #PolarProxy, #FlowCarp and #RawCap. https://t.co/CZliuI7uGK https://t.co/vC5XlufvIJ
BSides Bern @BSides_Bern
146 Followers 63 Following Brought to you by BSides Switzerland (@BSidesHelvetia) We are @BSidesZurich cousin. Register to our newsletter at https://t.co/OUzUEoutQd #BSidesBE #StayTuned
CYBERWARCON @CYBERWARCON
6K Followers 569 Following #CYBERWARCON 2025 Registration and CFP are now open | 📧 Subscribe to receive updates at https://t.co/5lb0WvK6MJ
LABScon 2026 @labscon_io
2K Followers 1K Following September 16-19, 2026 (Scottsdale, Arizona) CFP is open https://t.co/6chC6yVk37
PIVOTcon @pivot_con
991 Followers 276 Following Threat Research Conference in Europe - Malaga, Spain - 6-8 May 2026. #StayTuned #ComingSoon #PIVOTcon #PIVOTcon25
Max Smeets @Maxwsmeets
5K Followers 1K Following @Virtualroutes @ETH_en @BindingHook. Author of NO SHORTCUTS (2022) & RANSOM WAR (2025)
Kris McConkey @smoothimpact
5K Followers 828 Following #threatintel and #dfir lead @ PwC. Blue team forever. Christian, husband, dad, coffee addict, bad photographer, awful cyclist. Tweets my own, not PwC's.
Costin Raiu @craiu
39K Followers 8K Following Cybersecurity researcher focused on threat intel & APTs. Breaking down attacks, hunting threats, and crafting YARA rules. Buddy @ Three Buddy Problem
BarryV @BarryV
973 Followers 647 Following Show me, don't tell me -- Opinions are my own and do not represent those of my employer
Jared Wilson @JWilsonSecurity
2K Followers 1K Following Mandiant Research and Discovery, Father, Husband, Trail Runner, Co-Founder CyberFriendsCircle
Rufus @rufusmbrown
1K Followers 308 Following @Mandiant / @GoogleCloud | Advanced Practices 🦅| @GeorgiaTech | opinions are my own
Konstantin Klinger @kk_onstantin
707 Followers 763 Following Detection Engineering | he/him | 🌱⚽️🏃♂️🚴♂️🏊♂️ | tweets are my own
Tom Hegel @TomHegel
7K Followers 859 Following @LabsSentinel Research Lead, Hunting nation-state threats @SentinelOne, bending intelligence tech to shape real-world outcomes with @ValidinLLC
Bernardo Quintero @bquintero
25K Followers 269 Following Founder of @virustotal 📖 INFECTED: https://t.co/RRguFlNWKR 📖 INFECTADO: https://t.co/WZ5C2U5ymR
rev.ng @_revng
5K Followers 4 Following Building the next generation decompiler. Binary analysis is a dish best served static.
Unit 42 @Unit42_Intel
69K Followers 81 Following The latest research and news from Unit 42, the Palo Alto Networks (@paloaltontwks) Threat Intelligence and Security Consulting Team covering incident response.
Alex Teixeira @ateixei
3K Followers 1K Following I design and build #SIEM content for a living. Editor at https://t.co/WIrKw7X1p5 #DetectionEngineering & Research, #ML #Stats x-Splunk
ET Labs @ET_Labs
6K Followers 217 Following ET Labs is the research team of Emerging Threats - Bionic threat intelligence specialists from Fantasia.
The DFIR Report @TheDFIRReport
67K Followers 0 Following Real Intrusions by Real Attackers, the Truth Behind the Intrusion
Kostas @Kostastsale
20K Followers 385 Following I like building things that solve real problems, working across cybersecurity, product, and research | 🇬🇷🇨🇦
Nasreddine Benchercha... @nas_bench
12K Followers 1K Following Detection @Splunk & @cisco | previously @nextronsystems | @sigma_hq & @magicswordio maintainer | Eternal LearnerYou might like
