Codean @CodeanIO
Ethical hackers rock and we think they do not get enough love (tool wise). So we are creating a tool for security analysts, by security analysts! about.codean.io Remote, Netherlands Joined April 2021-
Tweets67
-
Followers418
-
Following174
-
Likes69
We’ve just published a blog post with the full write-up for this issue, so be sure to check it out! codeanlabs.com/2026/06/cve-20…
We looked into Kdenlive and find out that opening someone else's project was not the best idea, since it could lead to Remote Code Execution. The vulnerability (CVE-2026-45184) has been patched in version 26.04.1, make sure to update and remember: do not trust FFmpeg parameters!
We looked into Kdenlive and find out that opening someone else's project was not the best idea, since it could lead to Remote Code Execution. The vulnerability (CVE-2026-45184) has been patched in version 26.04.1, make sure to update and remember: do not trust FFmpeg parameters!
We took a good look into GNOME and general Linux desktop security. Our first findings are now public, including a full Flatpak sandbox escape. More coming soon :) github.com/flatpak/flatpa…
Two of our Codean Labs colleagues evaluated OpenPGP.js and identified a signature spoofing vulnerability. Writeup includes a PoC where we demonstrate the vulnerability by spoofing a message by the Dutch government's Cyber Security Center! codeanlabs.com/blog/research/…
It's been four years already! Here’s to four more years of making the world more secure! linkedin.com/feed/update/ur…
At Codean Labs, our mission is to make the world more secure — and what better way than to secure fundamental open source projects? We identified CVE-2025-47934, a critical vulnerability in OpenPGP.js to spoof signatures, see github.com/openpgpjs/open… github.com/openpgpjs/open…
Codean Labs' @b0n0b0__ and @Doyensec's @drw0if discovered CVE-2025-32464, a heap-buffer overflow in HAProxy. Read our write-up here: codeanlabs.com/blog/research/…
We discovered CVE-2024-12425 & CVE-2024-12426 which allow attackers to write files & extract sensitive data. Check our blog post for the impact & how to protect yourself. linkedin.com/feed/update/ur…
We spent a lot of effort on improving the security of Ghostscript and this is our third and final blog post about everything we found. Enjoy the read! linkedin.com/feed/update/ur…
We just reached over 1,000 commits on Codean 🎉 Just a few thousand more and I am sure Codean will be done by then 😉
We are finally catching up on some basic capabilities everyone expects, but are still darn hard to get right! Finally, landed on SCIP and SCIP indexers to have code intelligence that also enables us to create unique and cool features in the future. Stay tuned for more!
Another day another high impact #CVE-2024-29511 on #Ghostscript ≤ 10.02.1. it leads to an arbitrary file read/write (under certain conditions) outside of the -dSAFER sandbox. You can find all details about this #vulnerability on our blogpost. codeanlabs.com/blog/research/…
We found #CVE-2024-29510, a format string vulnerability in Ghostscript ≤ 10.03.0. It enables attackers to gain Remote Code Execution (#RCE) while also bypassing all sandbox protections. It has significant impact so please update Ghostscript! codeanlabs.com/blog/research/…
A public service announcement about #CVE-2024-4367 that we found in one of our pentests at Codean Labs. Make sure to update your #Firefox version to 126 and for #developers to update your PDF.js dependency. You can read our blog post for all details. linkedin.com/feed/update/ur…
We found a vulnerability in Mozilla’s PDF.js (CVE-2024-4367 and CVE-2024-34342 via react-pdf) resulting in arbitrary JavaScript execution when opening a malicious PDF. This results in XSS on many web- and even desktop apps. Blog post coming soon! linkedin.com/feed/update/ur…
Our Capture The Flag events are designed around the accessibility to the source code of all vulnerable targets. What's even more fun is that the whole CTF is played from within Codean! I guess we should host another public CTF sometime soon™! linkedin.com/feed/update/ur…
We are looking for design partners! "Yeah, yeah, yeah... just another sales tactic." Well yes, you are not wrong, we obviously do need to make money. That said, we believe we can create a win, win, win! Sounds interesting? Let us know! linkedin.com/feed/update/ur…
Did you know that we publicly discuss features and the architecture of Codean?! Join our Discord at discord.gg/nVDwK8fbH7 and let us know what you want from a tool like Codean!
신명진 @magan2160
14 Followers 191 Following
Tomasz @Tomasz833415
197 Followers 4K Following
ElleuchX1 @ElleuchX1
635 Followers 440 Following Hacker by day, big napper by night | CTFs w/ @ProjectSEKAIctf | Research @RewriteLab |OSCP | https://t.co/dpFxMnjdft
test domain @User2Micro
703 Followers 5K Following
daisy @daisyydaisy_
26 Followers 291 Following CTF player / pwn @fibonhack | Comp Eng undergrad @ University of Pisa
Emmanuel Benavides @scythecybersec
0 Followers 7 Following
kasser @xqd
260 Followers 2K Following
Pas @is_exzettabyte
0 Followers 119 Following
Aleksei Kulaev @flat_z
13K Followers 1K Following Console hacker, former Kaspersky Team Lead of Exploits & Network Threat Detection, security researcher. For tips (thx!): https://t.co/VxJMiawFpP
pfiatde @pfiatde
2K Followers 1K Following "Every machine is a smoke Machine if you operate it wrong enough" RedTeamer by day, sleeping at night! https://t.co/ZcTfWHeGZO
Allele Security Intel... @alleleintel
1K Followers 2K Following Allele Security Intelligence is an independent company specializing in Information Security research.
Chris Isaias @_call_gate
144 Followers 3K Following Penetration Testing & Reverse Engineering. . . Phd(c), Msc (RHL), NATO, ESDC & RIPE fellow, IEEE snr, FIRST liaison, CISSP, CRTO, PNPT
CaV @cybercharlesav
23 Followers 2K Following
M @M_entreprenuerr
0 Followers 69 Following Cyber security professional, Ethical hacker/Penetration Tester, Red Team Specialist
9MF @n1neMF
81 Followers 5K Following
Catrina @Irnone412600
83 Followers 2K Following A woman with a voice is, by definition, a strong woman.
marias @marias697616410
2 Followers 253 Following
Satoooon @Satoooon1024
1K Followers 986 Following CTF(Web) w/@thehackerscrew1 | seccamp'21-C | Mastodon: https://t.co/n78LO4cTLe Tweets are my own opinions.
hamaccount @hamaccount
16 Followers 2K Following
Abdullah Asif @AbdullahAsifVir
359 Followers 2K Following #Cybersecurity #WebApplications #CloudArchitect. Retweet not endorsement.
rouk @rouksec
0 Followers 93 Following
my car @camry19870501
4 Followers 42 Following
Ismail Arabi @IsmailArabi18
73 Followers 2K Following
Joshua Henry @jhenry0110
55 Followers 1K Following Jesus Follower and Disciple🙌🏿,Biblical Scholar🙏🏿, Computer & I.T. Guy⌨️📱🖥, Software Engineer, Cybersecurity Enthusiast and Hacker
Ahmed Alahdl @alahdl_ahm20179
3 Followers 59 Following
lee1981 @lee1981b
519 Followers 3K Following Learning Cyber-Security, Bug bounty hunting, Ethical hacking & Malware Analysis 😀
Jawad Saqib @jawadsaqib_
239 Followers 2K Following PNPT | CEH | Cyber Security enthusiast, Pentester, Web Developer, Python + Bash ❤️ Author at https://t.co/pVa55H5BHZ
Ameer Hamza @0xhamza
212 Followers 4K Following I have Diverse Interests: Interested in Global Politics Specific to Great Power Rivalry, Middle East, South Asia and OBOR. Interested in Information Security.
Zwink @_zwink
429 Followers 174 Following
Luca Palumbo @Luca_Palumbo_
37 Followers 119 Following CTF player / Reverse Engineer @fibonhack | Computer Science MSc student @unipisa | BSc in Physics |
nick0ve @nick0ve
396 Followers 405 Following Computer Engineering @unipisa | CTF @fibonhack @aboutblankets | Blockchain Security @osec_io
Sambam4mba @he31707900
17 Followers 2K Following Bor3d hacker of iot devices, security researcher? Security Breacher!
Ashish Kunwar @D0rkerDevil
13K Followers 6K Following ex @Microsoft | Vulnerability Research | ios/mac research 🙂
Nis_sec @BugBugproofmind
62 Followers 1K Following cybersecurity guy | Breaking things so others can sleep better | Bug Hunter | Scope sniper #SecurityResearcher
Hussein Muhaisen @husseinmuhaisen
2K Followers 4K Following Computer Security Researcher @OrbitCurveSec, @(PagedOut_zine), @(GuidedHacking).
Justin Gardner @Rhynorater
37K Followers 2K Following Christian | Full-time Bug Bounty Hunter | Host of @ctbbpodcast | Advisor @CaidoIO | 4x LHE MVH | 🗣️ English, 日本語 | ♥️ @mariahchan_ ♥️
Publer @publer
75K Followers 180 Following Your ultimate social media management platform 💚 Plan, Schedule, Collaborate, Analyse & Report Explore Publer for free: https://t.co/7mwhUROkS5
Erik Ploegmakers @ploeg
1K Followers 734 Following I am CEO @ https://t.co/en9hJ4xoak previously Zerocopter/Fox-IT. I listen to and play music. I read comics. I'm a lawyer and a lousy hacker but I'm trying.
Paul @PaulBakkerNL
237 Followers 333 Following Grey hairs for (tech) Entrepreneurs | @pingpingio | Realistically paranoid | Likes solving complex problems
BSides Munich @BSidesMunich
1K Followers 449 Following BSidesMunich - Security Conference in Munich https://t.co/yxqy2qBPZX
Eric Luteijn @eluteijn
1K Followers 2K Following Uitgever ITchannelPRO. Dagelijk met IT en telecom-nieuws bezig: The Digital Workspace, Security-, Datacenter-, VoIP en UC&C- en IoT topics voor het channel.
ITchannelPRO @ITchannelPRO_NL
35 Followers 19 Following ITchannelPRO is hét kennisplatform voor de circa 8.000 Telecom en IT-business partners en geldt als de primaire informatiebron in het IT-kanaal in Nederland.
out of memory is on B... @oom_rl
594 Followers 695 Following normalize truth! used to run a nuclear reactor underwater. ++ https://t.co/k2p36kfDtR (THIS ONE) @[email protected]
Sebastian @sebastian_paul
941 Followers 1K Following Interested in all things Security, Security Governance and AppSec. Occasional conference speaker. Opinions are my own, and not afraid to change them.
OWASP Netherlands @owasp_NL
1K Followers 63 Following The Open Web Application Security Project (OWASP) is a worldwide free and open community focused on improving the security of application software.
hextree.io @hextreeio
8K Followers 2 Following 🌱 Grow your cybersecurity skills with concise and well-edited video courses - in early-access, sign-up now! Created by @LiveOverflow and @ghidraninja.
Chantal 🔮 @MiFare_lady
2K Followers 1K Following Co-founder @wicca_NL for Women in Infosec | #WICCON | DC3120 | 🎙@ngrynerds | Partner in Cybercrime of @vm00z | SSDGM 🖤 | (she/her)
HackerHotel @HotelHacker
1K Followers 328 Following Hacker Hotel provides a luxurious hacking experience. For hackers and makers, with workshops and lectures at all skill levels!
Pieter Jansen @pitrpitr
650 Followers 531 Following hacker - tweets are personal - former founder of https://t.co/h26ZSLvBmE (acquired), now SVP Cyber Innovation @Darktrace
Anis_Boss @AnisBoss_
188 Followers 234 Following Interested in Cyber Security | REV, PWN | CTF Player at @the3000org | (1.01)^365== 37.8 | https://t.co/6cf6Hdg6MV
b0n0b0 @b0n0b0__
102 Followers 152 Following CTF player @fibonhack Security Analyst and Researcher @CodeanIO
TryHackMe @tryhackme
306K Followers 84 Following An online platform that makes it easy to break into and upskill in cyber security, all through your browser.
Intigriti @intigriti
211K Followers 668 Following Bug bounty & VDP platform trusted by the world’s largest organisations! 🌍
Hacking Articles @hackinarticles
299K Followers 480 Following House of Pentesters Join us: https://t.co/Y6XOlSOA92
CyberSecurity Tools @cyberdian_tools
13K Followers 4 Following Daily tools news digest of breaking news in the #CyberSecurity, design by @cyberdian, IT Consulting firm. We Tweet in 🇫🇷 & 🇺🇸 #InfoSec #TousSecNum
rizemon @rizemon
126 Followers 502 Following Working | 🇸🇬 University graduate | OSEP | OSWE | OSCP | BSCP @[email protected]
Giorgio Dell'Immagine @g_dellimmagine
106 Followers 514 Following Cryptography @zksecurityXYZ - CTFs @fibonhack
Aleandro @drw0if
286 Followers 910 Following Computer science student @ UniPI - ctf player with fibonhack, r00tstici - Security Engineer @ Doyensec
Luca Palumbo @Luca_Palumbo_
37 Followers 119 Following CTF player / Reverse Engineer @fibonhack | Computer Science MSc student @unipisa | BSc in Physics |
Marcel van de Kolk @de_kolk
74 Followers 688 Following #Privacy #Security #Informatiebeveiliging #GSXR
Oscar Koeroo @okoeroo
4K Followers 1K Following High-performance security, Concern CISO MinVWS, Kobayashi Maru, #OpCyberpaint, Daddy^2, Husband, Hacker, Creative.
Jan Ellermann @JanEllermann
543 Followers 762 Following
Forum INCYBER - EUROP... @INCYBER_Europe
19K Followers 2K Following #INCYBERForum (FIC) #1 🇪🇺 Event on #Cybersecurity 🗓️ March 9-11, 2027
Albert @AlbertSYN_ACK
9 Followers 194 FollowingAll about CTF @CTFtime
19K Followers 55 Following
Jarkko Vesiluoma @jvesiluoma
2K Followers 2K Following White hat hacker, Team ROT. Bug bounty hunter. Owner of Redtest-Security. Co-founder @HajySec + @rotcofi. OSCP/OSCE/OSWE. Opinions expressed are mine.
Thomas Malmberg @tsmalmbe
461 Followers 1K Following Tweets about infosec, travelling, racing, Springsteen - various whining in finnish.
putsi @putsi
3K Followers 3K Following White hat hacking in Team ROT. Also, hacker-for-hire & bug bounty hunter -- https://t.co/5sHK3CHtdm
Paul Shomo - Security... @ShomoBits
1K Followers 1K Following Security Researcher | EnCase Author | VxWorks Kernel Developer | Dark Reading | Applied Epistemologist
Mint Security @mintsecurityfi
219 Followers 25 Following Infosec Consultants in Finland. Also #veracode and #spamhaus and #alphasoc.
Reasonable_In🖊 @TranslationInLo
302 Followers 5K Following Billionaire bros, Anti - { Liberal, Feminist, Colonist, Communist, Sugardaddy, Protagonist, Capitalist, Socialist} Group of 34 guys using same acc😂bonito sor
sudi @sudhanshur705
6K Followers 814 Following If there's non zero chance, the effort is infinite, anything is possible
Burp Suite @Burp_Suite
138K Followers 14 Following Burp Suite is the leading software for web security testing.
PortSwigger @PortSwigger
107K Followers 23 Following We are a leading provider of software and learning on web security. We make @Burp_Suite and @WebSecAcademy.
PortSwigger Research @PortSwiggerRes
121K Followers 7 Following Web security research from the team at @PortSwigger
Lionfishcybersecurity @LionfishCyber
2K Followers 2K Following Lionfish Cyber Security is the next evolution of cyber security for small to mid-sized businesses.
ONE Conference @OneConferenceNL
2K Followers 484 Following The ONE Conference is Europe’s prime cybersecurity event. To stay updated, follow us on LinkedIn https://t.co/keQbPvAeqJ
axi0mX @axi0mX
60K Followers 3K Following Bootrom exploit philanthropist. Apple silicon hacker. iOS jailbreaker. Join us as we dance madly on the lip of the volcano.
Cristofaro Mune @pulsoid
2K Followers 786 Following In between Physics & Computing. Fault Injection, TEEs, IoT & anything else challenging my curiosity. Founder at Raelize (@raelizecom)



















