5putnick @5putnick
Planet Earth Joined October 2013-
Tweets174
-
Followers74
-
Following934
-
Likes4K
🚨 BrEaKiNg: Splunk, a security product, has zero authentication in its built-in database service and accepts any credentials, according to the security researchers who just dropped a full pre-auth RCE chain for Splunk Enterprise (CVE-2026-20253, CVSS 9.8). Splunk Enterprise on AWS is vulnerable out of the box.
🚨 BREAKING: More than 400 Arch Linux User Repository packages have been compromised with infostealer malware and a rootkit. Attacker posed as a trusted maintainer and "adopted" orphaned packages. Arch maintainers are purging infected packages now. Audit your AUR installs.
This looks accurate 😂😀
🚨 A single stray "!" in the #Linux kernel's firewall code (nftables). That one character let any normal logged-in user become root, and step out of the container. The fix? One line. And the exploit (CVE-2026-23111) to abuse it just went public. Read: thehackernews.com/2026/06/one-ch…
‼️🚨 BREAKING: Another researcher skipped coordinated disclosure entirely and dropped a critical 1-click GitHub token theft in public because he doesn't want to deal with MSRC. In his own words: "I really don't want to deal with MSRC on VSCode bugs." The bug: just clicking a link can hand an attacker a GitHub token that reads AND writes to all your repos, including private ones. It lives in github[.]dev, GitHub's browser-based VSCode editor, which passes the browser an OAuth token that isn't scoped to a single repo. That token can touch everything you can. Researcher Ammar Askar found that VSCode's sandboxed "webviews" leak keyboard events to the main editor. A malicious repo opened via one link can simulate keystrokes, install a local extension that skips VSCode's publisher-trust check, and exfiltrate your token. He published a working proof-of-concept. He says when he reports github[.]dev bugs, GitHub tells him they're out of scope and to go report to MSRC, and a prior VSCode bug he reported was silently fixed with no credit. One commenter summed up the mood: "MSRC has turned into Feedback Hub."
📢 CFP for #BSidesMaribor is STILL OPEN! You’ve got 5 more days to submit your: 🎤 Talks 🛠️ Workshops 🔬 Research 💡 Case studies Whether you’re a first-time speaker or experienced researcher - we want to hear from you. 👉bsidesmaribor.si #CallForPapers #SecurityBSides
ssh-keysign-pwn is the fourth local-root Linux kernel disclosure in roughly two weeks. (But who's counting?) AlmaLinux 9 and 10 are both vulnerable. AlmaLinux 8 is not exploitable with the current public PoCs, but is getting the patch as well. Patched kernel versions are available for testing now: almalinux.org/blog/2026-05-1…
Security things from the last few days: - CopyFail (linux pwn'd) - CopyFail 2/Dirty Frag - 13 advisories in Next.js - Over 70 CVEs addressed in MacOS 26.5 - ~50 CVEs addressed in iOS 26.5 - YellowKey (Windows Bitlocker pwn'd entirely) - GreenPlasma (Windows privilege escalation) - CVE-2026-21510 and CVE-2026-21513 confirmed to be used by Russia for Windows RCE - CVE-2026-32202 separately confirmed to be used by Russia for sensitive document access - Mini-Shai Hulud (over 300 JS and Python packages compromised via GitHub Action cache poisoning) - Google confirms they have identified AI-powered exploitation of zero days in an unidentified "open-source, web-based system administration too" - Canvas (popular LMS used in most schools) pwn'd entirely - PAN-OS (palo alto networks) pwn'd with a 9.3 severity CVE-2026-0300 Are you scared yet?
🚨 A third Linux kernel local-root flaw has been disclosed: Fragnesia. 🚨 Like Copy Fail & Dirty Frag, Fragnesia gives root on all major distributions. Every supported AlmaLinux release is affected. Help us test the patched kernels: almalinux.org/blog/2026-05-1…
@theo AI was busy tracking down all those bugs
The official JDownloader site (.org) was compromised. Attackers modified the alternative download page and replaced the Windows .exe installers as well as the Linux shell installer. The tampered Windows files lack valid digital signatures, display fake publisher names such as Zipline LLC, The Water Team, or Peace Team, and are flagged by Windows Defender and SmartScreen as malicious. The Linux shell installer now contains harmful code. What remains safe: >macOS installers >The main JDownloader.jar file >All existing app updates (running installations are unaffected) >Third-party packages such as Flatpak, Winget, or Snap (these use external hosting and unchanged manifests) The JDownloader developers have publicly confirmed the breach on Reddit and are working to restore the site. Do not download any Windows .exe or Linux shell files directly from jdownloader. org until they post an official all-clear. If you downloaded and ran a recent installer from the site in the past few days, run a full system scan with your antivirus and monitor for unusual activity.
‼️🚨 One of the world's largest Certificate Authorities, DigiCert, was compromised by a malicious screensaver file sent through a customer support chat. Their antivirus blocked the malware four times. The agent kept clicking. The fifth try got through. 27 code signing certificates were stolen and used to sign malware. DigiCert ultimately revoked 60 certificates. Per DigiCert's incident report, filed in Mozilla's CA compliance tracker as Bug 2033170, here is how it unfolded: April 2: an attacker contacted a DigiCert helpdesk agent through the company's customer support chat channel, posing as a customer. The lure was a zip file pitched as a screenshot. Inside the zip was a .scr file. On Windows, .scr files are executables, and this one carried a malicious payload. Opening a file a customer sent through the official support channel is what an agent is supposed to do. Support staff are the one role designed to accept files from strangers. DigiCert's endpoint security blocked four infection attempts. On the fifth, the support analyst's machine was infected. DigiCert detected the infection, ran an investigation, and concluded the incident was contained. Eleven days later, an external researcher tipped DigiCert off about misuse of DigiCert-issued code signing certificates in the wild. That tip led to the discovery of a second compromised machine, belonging to a different support analyst, infected through the same vector. The EDR on that machine had not been functioning correctly, so the original investigation missed it. The second machine gave the attacker access to DigiCert's internal support portal. That portal lets support staff reach limited views of customer accounts, including initialization codes for ordered but not-yet-issued code signing certificates. Combining a stolen initialization code with an approved order let the attacker pull a real, validly issued code signing certificate. They did this 27 times. DigiCert's own list of what went wrong: - File-type filtering on the customer support chat channel did not catch the .scr - EDR coverage was inconsistent and incomplete, creating a blind spot - Initialization codes for code signing certificates were not adequately protected DigiCert says it got lucky. An outside researcher found the malware abuse before DigiCert did. Without that tip, the second machine and the active certificate theft might still be running today.
The day a blind man sees. The first thing he throws away is the stick that has helped him all his life
❗️🚨 Microsoft Edge keeps every saved password in process memory as cleartext from the moment it launches. Microsoft's responsed when reported: "by design." All of them. Including credentials for sites you won't open this session. Researcher @L1v1ng0ffTh3L4N tested every major Chromium browser. Edge is the only one that behaves this way. Chrome decrypts credentials on demand, and App-Bound Encryption locks the keys to an authenticated Chrome process so other processes can't reuse them. In Chrome, plaintext surfaces only during autofill or when a password is viewed, making memory scraping far less useful. What makes this extra weird is that Edge still demands re-authentication before revealing those passwords in its Password Manager UI, while the same browser process already holds every one of them in plaintext. In shared environments, this turns into a credential harvest. On a terminal server, an attacker with admin rights can read the memory of every logged-on user process. In the published PoC video, a compromised admin account lifts stored credentials from two other logged-on (and even disconnected) users with Edge running. Microsoft's official response when notified: "by design." The finding was disclosed April 29 at BigBiteOfTech by PaloAltoNtwks Norway, alongside a small educational tool that lets anyone verify the cleartext storage for themselves.
‼️🚨 BREAKING: An AI found a Linux kernel zero-day that roots every distribution since 2017. The exploit fits in 732 bytes of Python. Patch your kernel ASAP. The vulnerability is CVE-2026-31431, nicknamed "Copy Fail," disclosed today by Theori. It has been sitting quietly in the Linux kernel for nine years. Most Linux privilege-escalation bugs are picky. They need a precise timing window (a "race"), or specific kernel addresses leaked from somewhere, or careful tuning per distribution. Copy Fail needs none of that. It is a straight-line logic mistake that works on the first try, every time, on every mainstream Linux box. The attacker just needs a normal user account on the machine. From there, the script asks the kernel to do some encryption work, abuses how that work is wired up, and ends up writing 4 bytes into a memory area called the "page cache" (Linux's high-speed copy of files in RAM). Those 4 bytes can be aimed at any program the system trusts, like /usr/bin/su, the shortcut to becoming root. Result: the next time anyone runs that program, it lets the attacker in as root. What should worry most: the corruption never touches the file on disk. It only exists in Linux's in-memory copy of that file. If you imaged the hard drive afterwards, the on-disk file would match the official package hash exactly. Reboot the machine, or just put it under memory pressure (any normal system load that needs the RAM), and the cached copy reloads fresh from disk. Containers do not help either. The page cache is shared across the whole host, so a process inside a container can use this bug to compromise the underlying server and reach into other tenants. The original sin was a 2017 "in-place optimization" in a kernel crypto module called algif_aead. It was meant to make encryption slightly faster. The change broke a critical safety assumption, and nobody noticed for nine years. That bug then rode every kernel update from 2017 to today. This vulnerability affects the following: 🔴 Shared servers (dev boxes, jump hosts, build servers): any user becomes root 🔴 Kubernetes and container clusters: one compromised pod escapes to the host 🔴 CI runners (GitHub Actions, GitLab, Jenkins): a malicious pull request becomes root on the runner 🔴 Cloud platforms running user code (notebooks, agent sandboxes, serverless functions): a tenant becomes host root Timeline: 🔴 March 23, 2026: reported to the Linux kernel security team 🔴 April 1: patch committed to mainline (commit a664bf3d603d) 🔴 April 22: CVE assigned 🔴 April 29: public disclosure Mitigation: update your kernel to a build that includes mainline commit a664bf3d603d. If you cannot patch immediately, turn off the vulnerable module: echo "install algif_aead /bin/false" > /etc/modprobe.d/disable-algif.conf rmmod algif_aead 2>/dev/null || true For environments that run untrusted code (containers, sandboxes, CI runners), block access to the kernel's AF_ALG crypto interface entirely, even after patching. Almost nothing legitimate needs it, and blocking it shuts the door on this whole class of bug...
Google has a pirate enemy. He's one guy. His name is Raymond Hill. He built uBlock Origin. The world's best ad blocker. 63K stars. GPL-3.0. He literally refuses every dollar you try to send him. Then Google did the unthinkable. July 24, 2025. Manifest V2 disabled everywhere. The full uBlock Origin stopped working on Chrome. The world's biggest ad company nuked the world's biggest ad blocker on its own browser. They called it "security." Coincidence. Here's the wildest part: Raymond didn't fold. Latest release: March 11, 2026. Still alive on Firefox. Still alive on Edge. Still alive on Brave. Still GPL-3.0. Still refusing every dollar. One developer vs. the trillion-dollar ad empire. But DO NOT install it. We should all keep Google richer. 100% Open Source. (Link in the comments)
A Rust dev just killed Headless Chrome. It's called Obscura. The open-source headless browser purpose-built for AI agents and scrapers at scale. Chrome vs Obscura: - Memory: 200MB+ → 30MB - Binary: 300MB+ → 70MB - Page load: 500ms → 85ms - Startup: 2s → Instant - Anti-detect: None → Built-in Single binary. No Node, no Chrome, no dependencies. Stealth mode is brutal: → Per-session fingerprint randomization (GPU, canvas, audio, battery) → 3,520 tracker domains blocked by default → navigator.webdriver masked to match real Chrome → Native function masking so detectors can't sniff it out Drop-in replacement for Puppeteer and Playwright over CDP. Zero code changes. If you run agents or serious scraping at scale, this repo prints money. 100% Opensource.
North Korean Lazarus Group has weaponized this exact class of Microsoft-signed kernel driver. It is sitting on MILLIONS of Windows PCs right now. It gives any local process full control from the deepest level of Windows. 5 lines of code. Zero validation. Your antivirus can’t stop what runs below the OS.
The Dark One @Ahrimana
4K Followers 4K Following Photographer | Growth Marketing | Feminist | #EduTech | #InfoSec | Freedom fighter | @TildaCenter Cofounder | @PythonSerbia | Libertati viam facere
mikroglicerin @We3x_x
133 Followers 243 Following
overused @bashgrylls
829 Followers 1K Following Security guy with SysAdmin & DevOps background; MTB enthusiast @Ciklogen; Activist @cryptopartyrs, @hklbgd, @LiBRE_magazin, https://t.co/BChyfjy6qQ, https://t.co/lTIsiRXNZf
Heather Hill @HeatherH67712
2 Followers 175 Following Recruiting webshell engineers to penetrate websites, with a month ly salary of up to $100,000. If interested, please contact https://t.co/WwtT5PKr36
Goran_Mahovlic @GMahovlic
1K Followers 885 Following Interested in electronics/hacking/making/art/nature https://t.co/7KeWsyrIjQ Will post less or nothing here and move to https://t.co/uGH5r1uIVQ
Valter @o1kuda
39 Followers 201 Following infosec, networking, imunes, programming, diy, phd # opinions are my own
BlackBuntu @blackbuntuos
58 Followers 130 Following BlackBuntu is a distribution designed to be fast, easy to use, providing a minimal complete desktop cybersecurity and developer friendly environment.
Hiren's BootCD PE @hirensbootcd
2K Followers 2K Following
BSidesOsijek @BSidesOsijek
186 Followers 202 Following First BSides event in Osijek, Croatia - Sep 11, 2021 - Reserve your seat for free
Server-Tutorials @TutorialsServer
7 Followers 54 Following Tutorials, News, Guides, Tips and Tricks about Web Servers, Apache, Linux, Ubuntu, Security, Cpanel, MySQL, and many more.
Tonimir Kisasondi @kisasondi
1K Followers 1K Following Security Researcher and co-founder of @apaturasecurity a boutique infosec consultancy; @bsidesvarazdin ; OWASP Croatia ; PhD; AppSec, testing and architecture
Vedran Rodic ♥ @vrodic
1K Followers 6K Following Dad of 2. I love walkable places, coop, public transport and free (open source) software.
BSides Rijeka @BSidesRijeka
247 Followers 192 Following Community-oriented information security and cybersecurity conference in Rijeka, Croatia
TurkuSec ry @turkusec
2K Followers 988 Following Information Security Association of Turku Turun Tietoturva Yhdistys Join us on Mattermost: https://t.co/kLGcKz97Ij @[email protected]
Tilda @TildaCenter
799 Followers 610 Following Center for transfer of IT knowledge, development of Cloud technologies, connecting young experts in the region and collaboration with media and organizations
Cybernaut (^.~)☆ @Miss_Cybernaut
12K Followers 6K Following Political Pirate. Mostly harmless. --- Divison is a weapon used by elites, don't play along.
ReadByTweet_AF @ReadByTweet_AF
738 Followers 1K Following AESOP's FABLES are presented here as a continuous series of tweets. Automated Deployment of Unix http://t.co/ZxdoERZiLn AIX HPUX Solaris Linux
thesle3p @thesl3ep
927 Followers 2K Following I hack physical security and physical security accessories. Is the cousin of death
MAD Security @MADSecurityLLC
2K Followers 3K Following MAD Security is a premier provider of information and cybersecurity solutions that combine technology, managed security services, support, and training.
Tourism and Travel @Travel_TTT
15K Followers 11K Following
Maysara @maysarax
826 Followers 5K Following جميع تغريداتي منشورة تحت #رخصة_وقف_العامة |#openhardware |#OSHW |#raspberrypi|#linux |#opensource |#freesoftware|#arduino|#DIY| #startups| #لينكساوي
Routerpwn @Routerpwn
3K Followers 865 Following http://t.co/hXf6kGw5UD is a compilation of ready to run exploits, advisories, tools and online key generators for embedded devices.
somchai yai @yaimaksomchai
49 Followers 2K Following
rubyhunt @rubyhuntorg
71 Followers 202 Following Best articles, news, gems and videos about #ruby every day
coolgurl37 @mocahbrown36
109 Followers 737 Following
/dev/bolshevik/ @drug_trocki
161 Followers 477 Following High Tech, Low Life & Far-Left http://t.co/svw0zTM0Mh
ZET feed @ZETfeed
299 Followers 298 Following Agregirane vijesti - Izmjene u prometu i novosti iz Zagrebačkog Tramvaja kroz neslužbeni automatski feed organizirao OpenZagreb
Didier Stevens Labs @DSTLabs
827 Followers 550 Following I founded Didier Stevens Labs to expand and fund my research, providing training, development and research services focusing on technical IT security.
CUC 2024 @CARNET_CUC
1K Followers 628 Following 26. CARNET-ova konferencija za korisnike #CARNET_CUC online - 9. i 10. 4. / Rovinj - 18. i 19. 4.
lolitta @punslolitta931
37 Followers 400 Following No te enamores de una mujer bonita; enamorate de una mujer inteligente, ella sabra como ponerse bonita.
Advanced Security @advanced_sec
12K Followers 6K Following The Cybersecurity Learning Network - World class, interactive learning, designed to make you better at your job. By top industry experts. COMING SOON
ProjectX Infosec @ProjectxInfosec
2K Followers 3K Following Tweets about #Information #Security, #Tech Tips, #Hacker News, #Tools, #Cyber Warfare, Cyber Security and other Information #Technology Facts
Roka Security @RokaSecurity
970 Followers 849 Following A computer security company offering products and services to secure your organization's infrastructure.
Truth and Thoughts @TruthandThough1
211 Followers 1K Following Only tweeting my thoughts and beliefs. Making my way and trying to figure it all out.
HackAmsterdam @XakepNL
114 Followers 166 Following HackAmsterdam - Xakep.nl - Official Holland / Netherlands Chapter of http://t.co/oYEzToQcor @hackmiami
Diverto security @Divertosecurity
144 Followers 196 Following proven enabler of Information and Cyber Security
BROWNTOPINK @browntopink
42K Followers 1K Following 3Dart -Journey into the soul, where art and emotions collide. https://t.co/oiQHwF9pJL.
World of Statistics @stats_feed
5.1M Followers 397 Following There are three kinds of lies: lies, damned lies, and statistics. @Kalshi partner.
Mustakrakish Forever @antibotter011
6K Followers 3K Following OSINT | Conflict intelligence | GLORIA FORTIS MILES! Samo jako protiv SNS robova!
The Dark One @Ahrimana
4K Followers 4K Following Photographer | Growth Marketing | Feminist | #EduTech | #InfoSec | Freedom fighter | @TildaCenter Cofounder | @PythonSerbia | Libertati viam facere
/ XNL -н4cĸ3r (and ... @xnl_h4ck3r
10K Followers 987 Following Aspiring Bug Bounty Hunter & dev of tools: GAP, xnLinkFinder, waymore, urless, XnlReveal, knoxnl, xnldorker 🤘 RTFM🧐... always... PLEASE!
YesWeHack ⠵ @yeswehack
42K Followers 3K Following Offensive Security & Exposure Management Platform 🎯 https://t.co/57gODBqAMx 👾 https://t.co/ICc6RyihIX 💡 https://t.co/KNYxhkL2p1
🔥Cyber Security Ne... @CyberSparta
2K Followers 1 Following Cyber Security News (CSN) - Part AI / Part Human - All Cyber! Providing You With The Latest Cyber Security News 24/7/365. #cybernews #hackingnews #cyber
Cybersecurity @ NIST @NISTcyber
99K Followers 522 Following Official handle covering all things cybersecurity at NIST
CyberDefenders®™ @CyberDefenders
22K Followers 3 Following CyberDefenders™ is a training platform for #SOC analysts to learn, validate & advance #BlueTeam/#DFIR skills. Join community @https://cyberdefenders.org/discord
GBHackers on Security @gbhackers_news
11K Followers 2K Following Globally Trusted Cybersecurity & Hacking News Platform. Get Daily Live updates on #Breakingnews #Hackingnews #Investigation #CyberAttack #Breach #Malware
Antidepressant Conten... @depressionlesss
389K Followers 6K Following
AlmaLinux @AlmaLinux
12K Followers 218 Following An Open Source, free, community-owned, RHEL-compatible #Linux OS. Focused on stability. Desktop, SBC’s, hyperscale, cloud - use it where you need it!
IT Guy @T3chFalcon
41K Followers 520 Following Privacy Researcher. Check out my Articles 🥺. Founder @PhishCore - Human risk intelligence & Phishing simulation platform.
PortSwigger @PortSwigger
107K Followers 23 Following We are a leading provider of software and learning on web security. We make @Burp_Suite and @WebSecAcademy.
Web Security Academy @WebSecAcademy
141K Followers 36 Following Free web security training from @PortSwigger
DaVinci @BiancoDavinci
118K Followers 4K Following 𓀙 History, Art, Culture and Memes 𓀙 Art in Everything
Proton Drive @ProtonDrive
69K Followers 32 Following Backup, share, and edit your files with #E2E encrypted cloud storage from @ProtonPrivacy. 🔍 Open-source | 🧐 Audited | 🇨🇭Swiss | 🎁 5GB free
BSidesMaribor @BSidesMaribor
39 Followers 84 Following :-: #BSidesMaribor event official account :-:
_SiCk @encrypted_past
3K Followers 468 Following Meow. Probably the closest thing to an APT without breaking the law. Adapt or Die. SAUCE boss. VR, Kernel Exploits, Firmware Feline. Romans 1:27-29
The Astronomy Guy @astrooalert
32K Followers 7K Following “We are all of us stars, and we deserve to twinkle.” – Marilyn Monroe
pwn.ai @pwn_ai
8K Followers 1 Following Built to breach. Agentic hacking ecosystem in the works. Our pentest product is now live.
Flipper Devices @flipper_net
105K Followers 152 Following A portable multi-tool device in a toy-like body for pentesters and hardware geeks. Buy worldwide here ➡️ https://t.co/n09EKVnYgQ
Lennert @LennertWo
4K Followers 1K Following PhD Researcher @CosicBe | Hardware Security @[email protected]
AWS Security Digest @AwsSecDigest
2K Followers 13 Following 📥 Stay Up-to-Date on the latest AWS Security News with our Weekly Digest.
InfoSecMap @InfoSecMap
1K Followers 13 Following Mapping the InfoSec ecosystem ™ / Founded by @act1vand0 / Sponsored by @C13Security.
Physics & Astronomy Z... @zone_astronomy
275K Followers 9K Following Science Educational Website Welcome to the official page of Physics & Astronomy Zone. This page is primarily Dedicated to physics and astronomy lovers.
For all Curious @fascinatingonX
28K Followers 5K Following We are curious about the Universe, are you? ✨
Reverse Engineering a... @re_and_more
17K Followers 515 Following RE and More by Alexey Kleymenov (https://t.co/s1pWjL46AW). Private classes and group workshops in malware analysis and reverse engineering. #infosec #malware
Iceman @herrmann1001
14K Followers 1K Following RFID hacker, Proxmark, NFC & EMV | Magic moon beans | Four spaces instead of Tab | https://t.co/A6rzUPpPs6 https://t.co/dZD52FgCaL
Dr. Clown, PhD @DrClownPhD
334K Followers 3K Following 🎪 Join my circus and let's laugh at the world's current absurdities together! • Sponsored by @rainbetcom
Hugging Models @HuggingModels
54K Followers 30 Following We're sharing/showcasing best of @huggingface models. Follow to stay in loop. Promoting Open-Source models.
International Cyber D... @IntCyberDigest
183K Followers 293 Following Your weekly go-to cybersecurity newsletter, curated and commented on by our senior analysts.
Quiet Disclosure @QuietDisclose
409 Followers 354 Following Filtering the signal from the noise in the UAP/Disclosure space. Analyzing anomalies, sensors, and archives to find the truth behind the curtain. 🛸
European Space Agency @esa
1.9M Followers 1K Following We're the European Space Agency, keeping you posted on European space activities. Please see our Privacy Notice: https://t.co/UkkEqaKmlL
Robbert Leusink 🇳�... @robbertleusink
10K Followers 870 Following No one taught you the order that built the world you live in. I name it, examine it, and show you where it still survives.
Mitja Kolsek @mkolsek
4K Followers 776 Following CEO of ACROS Security; Co-founder of 0patch (https://t.co/XQ9EYMnQYX) Bluesky: https://t.co/HhsFBafHK0 Mastodon: @[email protected]
Earth & Space @earthspace2026
27K Followers 0 Following 🌍 Exploring Earth & the mysteries of space 🚀Daily facts, science, astronomy & cosmic discoveries ✨Knowledge of Earth & Space🌍🚀
Philosophy Monk @PhilosophyMonk
79K Followers 52 Following • Discipline • Consistency • Health • Wealth • Mindset • Growth • Fitness • Masculinity • Success • Goals DM- https://t.co/vqe2Fqsgv7
Sam Curry @samwcyo
101K Followers 1K Following
learn skills2.0 @_learnskills
167K Followers 55 Following Learn. Apply. Grow. Bite-sized skills for a better you. Dm for credit/removal.
































