Jaysus @JayInfoSec
Detection Engineer & False Positive Aficionado 🦸♂️🇨🇦 Joined August 2011-
Tweets438
-
Followers663
-
Following3K
-
Likes25K
@M_haggis I exported the entire S1 PowerQuery guides in markdown and fed it to claude....... detections actually worked after lol.
A lot of people ask me what they need to learn to keep up in AIxHacking: Right now you need to learn how to turn the monotonous part of your methodology into a repeatable agent, after that it’s scale and harness. Then it’s building skepticism into that system externally from you.
@SBousseaden For Elastic, I set up a CICD ingesting all Sigma LOLRMM rules convert to TOML as building block rules > with higher order rule for "first time observed LOLRMM rule" Am i doing this right 😅
You may joke and say we woefully undermarket stuff (and we do), but our team build this thing: docs.cloud.google.com/docs/security/…
Hot take: AI in the SOC is most useful when it’s… boring. 🧵
ATT&CK v19 is live! We've split Defense Evasion into Stealth and Defense Impairment, introduced Sub-Techniques to ICS ATT&CK, Detection Strategies to Mobile, and added some AI and Social Engineering to Enterprise. Check out all the details in our blog post medium.com/mitre-attack/a…
we dont hate rich people nearly enough
@jlabernathy "cloud kill data centers" hahahahahahahaha
Would any security team benefit from having a Certified Scrum Master ®
consulting in infosec is not meant to produce outcomes. you are just entertaining the circus while the clowns are hiding behind their empty suits.
I am so sick of companies posting "Remote" opportunities on @LinkedIn and then when you read the fine print it says "3 days in office mandatory" - why is there not a hybrid filter yet ????
I spent my normal whiskey/cigar break thinking and reading and counting how many configuration "switches" are available when you are a firm like Stryker. 36,000 to 45,000 config settings And that's before you count the permutations. You think a spreadsheet and a quarterly review covers it?
Research shows how Palo Alto Cortex XDR predefined BIOC behavioral rules can be decrypted and analyzed. By understanding rule logic and built-in exceptions, attackers can adapt techniques to evade detection and bypass behavioral protections. core-jmp.org/2026/03/decryp…
Taken from the Stryker Handala / Intune Detection Pack v2 "Check PIM role settings for Global Administrator, Intune Administrator, and Cloud Device Administrator. If you see only the "Require Azure MFA" checkbox and no Authentication Context configured, you have the same gap that enabled the Stryker wipe. Configure Authentication Context with FIDO2 or certificate-based auth today. Enable Intune Multi-Admin Approval for wipe, retire, and delete actions. Tenant Administration > Multi Admin Approval. Under 10 minutes. No additional licensing required. Deploy Rule 13 (bulk wipe threshold alert). Five wipes in 15 minutes from a single identity fires the alert. Wire it to a Logic App that calls revokeSignInSessions on the triggering account via Microsoft Graph. " link to Detection Pack v2 blog and direct download. Please share so others can lock down their InTune environments please threathunter.ai/blog/iran-hand…
The 3 AI SOCs I’ve demoed with this month all give me serious cause for concern. Traditional ML in a SIEM with UEBA should probably be leveraged before AI solutions. Following that, SOAR with AI sprinkled in where necessary, then more advanced AI measures. Also, security architecture evals for our own deployments has proven more difficult than I expected. Like Gall said in the 70s: complex systems are never built. They evolve from simpler ones.
they were right to take cigarette ads off tv, I would’ve smoked a pack a day if I saw this when I was 14
Me after 9 overpriced Guinness at the local Irish pub
Every AI Company : We're replacing your job with AI Me who already replaced my job with AI :
There’s an astronomical skill gap between good security people, and the rest. There’s no mid. Accounts you see posting their research here are absolutely cracked, it’s not the norm. When you go out and talk to security folks that don’t go to conferences, don’t read up on research, you realize- holy shit. They have no fucking clue. The majority of the cybersecurity work force is absolutely incompetent. It’s partly why vendors can come up with inane bullshit as marketing material and it works on many CISOs. If you’re reading this, you’re most likely 1000x the skill level of the average person. Like I cannot emphasize enough how low the bar is when the sample size is the entire industry.
How it feels right now
Florian Roth ⚡️ @cyb3rops
221K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Andrew Northern 𓅓 @ex_raritas
5K Followers 1K Following 🔮 Principal Researcher at Censys ARC 🔮 | formerly Proofpoint | Knowledge Piñata 🪅 | Attack Chain Connoisseur | Aspiring Stoic
EvilMog® @mog.evil.a... @Evil_Mog
18K Followers 2K Following Hacker, Team Hashcat, Bishop of the Church of Wifi, Uber Badge Collector. Views != Employers. Not a Ph.D, Recycled Memes,
Blue Team News @blueteamsec1
56K Followers 9K Following The cybersecurity home for the latest #BlueTeam, #DFIR, and #ThreatHunting news and tools.
Nick Carr @ItsReallyNick
38K Followers 3K Following Tech Director / Threat Intelligence at Microsoft. Previously, Director of Incident Response & Intel Research at Mandiant. Former Chief Technical Analyst at CISA
cyberAlert.com.pl @CyberAlert_
5 Followers 65 Following Łukasz Wiącek | Cyber Security Expert Rozbieram ataki, przez które tracisz miliony. LockBit, MuddyWater, CastleRAT. 👇 link https://t.co/BPCYgXQDcS
Eric Freeman @eric_m_freeman
72 Followers 622 Following I’m in security. I used to cook professionally. I am clearly a masochist because of my career choices. Desperately trying to avoid the perma-underclass.
Fusion Intelligence C... @stealthmole_int
125K Followers 11K Following StealthMole : #Criminal #Intelligence #Profiling #Investigation Platform, #OSINT #DarkWeb #DeepWeb #Leaked #DataBreach #Terror #Drugs #Cryptoassets #Ransomware
John Capobianco @John_Capobianco
22K Followers 7K Following Head of AI and DevRel | Itential | Distinguished Speaker | Award Winning Author | Open Source | Educator | Google Developer Expert | formerly Cisco
Andy Swift @SwiftSecur1
1K Followers 294 Following Security Research | Red Team | Penetration Testing | Reversing | DFIR | CEO of SwiftyNet Firewalls | Views are my own.
EZ @IAMERICAbooted
3K Followers 2K Following Like = Tuning the algorithm. Janitor at Contoso & Fabrikam. Posts don't represent my employer(s).
Zack Korman @ZackKorman
14K Followers 2K Following Cofounder @ Embroidery. Building AI cybersecurity stuff.
Ewerton @ewerton_af
70 Followers 457 Following
Epic Lord of the Ring... @epiclotrmemes
2K Followers 2K Following
Mark Steward Young @WallStSentimant
240 Followers 4K Following Investor Sentimentologist, Founder of https://t.co/CdjwXBDHjw, trader, and technical analyst.
Shina Mashiro @ShiinaaM
389 Followers 4K Following
Fyodor Loginoff @TheLittleEndian
15 Followers 416 Following The one, the zero. Master hacker of all the things. 🥸 I send green texts sometimes.
Mario Valeri @MarioValeri12
3 Followers 45 Following
Grzegorz Tworek @0gtweet
38K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
Surso @Surso_0fvyA
96 Followers 3K Following
Quester (Jeff) @jkayden37
4K Followers 4K Following Fully Support 1A & 2A | RISE (Relax, Imbibe, Share, Enjoy) | Retired Military | Patriot | No DMs Please |🚫Investing🚫Porn🚫Giving Money
Nissiez @NissiezTXY
54 Followers 929 Following
Mabel @Teashoo0G8ZzuH
29 Followers 607 Following
Leytan @Leytan6TP
64 Followers 1K Following
Gueso @GuesoBMO1T
41 Followers 1K Following
Traci Munoz @TraciMunoz67118
109 Followers 3K Following
NL @NLx64
130 Followers 3K Following Detection Engineer | Exploring AI in defensive security (^^)
Zayd @Zee_TakinOva
4 Followers 220 Following
Ruben Groenewoud @RFGroenewoud
729 Followers 320 Following A security research engineer at @Elastic focusing mainly on Linux behavior-, signature- and ML-based detection engineering. Github: https://t.co/KKlA2KIRvR
Pierre Magdy @1D3T3CT
2 Followers 460 Following
Arno De Wever @de_wever58415
0 Followers 58 Following
Peter Clark @sarsaeroth
69 Followers 817 Following Cybersecurity researcher at Sandia, PhD student at Iowa State. Threat intelligence researcher learning about offensive security. They/them.
𝚂𝚑𝚊𝚗𝚗�... @shanmcf
1K Followers 2K Following Product marketing at @IntezerLabs. SecOps, AI, automation, startups. Prev journalist; @Techstars hackstar; @CarbideSecure. Be excellent to each other 🌈🖤
Dmitry Alimov @dmitryalimov
35K Followers 37K Following Tech VC and entrepreneur. Curious. Investing and building in AI. Built companies in media and tech. Founder @frontiervc. Learned things @Harvard, @Stanford
Margaux Wallace @MargauxWal19214
2 Followers 136 Following
Hunt.io @Huntio
6K Followers 937 Following https://t.co/9I6nRUiFjm is a service that provides threat intelligence data about observed network scanning and cyber attacks.
Andreas Bråthen @andtux
4 Followers 671 Following
Melat Heguia @melatheguia
0 Followers 293 Following
Phantom Radar 🦉 @phantmradar
1K Followers 833 Following Independent cyber threat intelligence project. Operated by individual researcher. Not affiliated to any entity.
Grenouille JJ @AxelJollis
0 Followers 71 Following
vx-underground @vxunderground
440K Followers 363 Following The largest collection of malware source code, samples, and papers on the internet. Password: infected
4n6lady @4n6lady
62K Followers 660 Following #DFIR & #BlueTeam | IR & Threat Detection | #OSINT enthusiast | waiting for HL3 | AWS CIRT - my views are my own
Dave Kennedy @HackingDave
231K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Pod. God + Family/Hacker/CSO/USMC/Intel/Fitness. Make the world a better place.
Florian Roth ⚡️ @cyb3rops
221K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
chompie @chompie1337
89K Followers 1K Following hacker, exploit developer/weird machine mechanic head of X-Force Offensive Research (XOR) @IBM
mRr3b00t @UK_Daniel_Card
123K Followers 8K Following Department of Cyber WAR. Member of the Counter Spider Collective. Wielder of AI to defend in Cyber Space. Ralph Vibe Specialist. VibeOps Operator!
Chris Sanders 🔎 �... @chrissanders88
35K Followers 487 Following Ed.D. | Founder @networkdefense @RuralTechFund | Former @Mandiant, DoD | Author: Intrusion Detection Honeypots, Practical Packet Analysis, Applied NSM
Mick Douglas 🇺🇦... @bettersafetynet
32K Followers 574 Following Consultant for InfoSec Innovations | @SANSInstitute Principal Instructor | @IANS_Security Faculty | I like information security. How about you?
gabsmashh @gabsmashh
109K Followers 3K Following security strategist | 2L JD Candidate | NYU alum | UMGC adjunct professor | DVC-YR USCG AUX
Justin Elze @HackingLZ
71K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
meg west @cybersecmeg
155K Followers 924 Following Tweets about #dogs & travel & fitness & cybersecurity, oh my! Opinions are my own. 📧: [email protected]
Jake Williams @MalwareJake
150K Followers 2K Following Breaker of software | VP R&D @hunterstrategy | CTI/DFIR | @ians_security faculty | Bookings: jake at malwarejake dot com | GSE #150 | He/him
DebugPrivilege @DebugPrivilege
41K Followers 2K Following Not active anymore on X. Problem solver with a passion for troubleshooting complex issues.
Mehmet Ergene @Cyb3rMonk
14K Followers 454 Following Learn Threat Hunting, Detection Engineering, DFIR, and KQL https://t.co/uAlYlXIXot @BluRavenSec Microsoft Security MVP #ThreatHunting #DataScience
SwiftOnSecurity @SwiftOnSecurity
411K Followers 9K Following computer security person. former helpdesk.
MalwareHunterTeam @malwrhunterteam
254K Followers 37 Following Official MHT Twitter account. Check out ID Ransomware (created by @demonslay335). More photos & gifs, less malware.
Van @Wanna_VanTa
4K Followers 391 Following Research & Discovery Lead @Mandiant @googlecloud Specialties: researching adversary tradecraft, hardstuck masters TFT, and losing sneaker raffles.
Stephan Berger @malmoeb
29K Followers 1K Following Head of Investigations @InfoGuardAG https://t.co/A5lnFAu7eX
Katie Nickels @likethecoins
55K Followers 3K Following Director of Intel at @redcanary. SANS Certified Instructor for FOR578: CTI. Senior Fellow at @CyberStatecraft. She/her. Mastodon: @[email protected]
Nous Research @NousResearch
224K Followers 27 Following A bunch of nerds making progress toward open source AI https://t.co/vrD0aDJeto
Honcho @honchodotdev
6K Followers 13 Following Continual learning for stateful agents. SOTA & pareto dominant—accuracy, speed, cost, efficiency. Memory that reasons. Built by @plasticlabs.
Polymarket @Polymarket
1.7M Followers 6K Following The World's Largest Prediction Market. Trade politics, news, crypto, culture, sports, tech, & more. Discord: https://t.co/tzKrbDfF3x
Marc Lou @marclou
357K Followers 1K Following ⭐️ https://t.co/MZc8tGa5LQ $27K/m 📈 https://t.co/3EDxln5U2Q $20K/m 🏴☠️ https://t.co/dr6UTvtYcO $20K/mo 🧑💻 https://t.co/Y30jsaI4oH $8K/m ⚡️ https://t.co/vatLDmiHKe $6K/m 🦐 https://t.co/d4zcSHnfYk $1K/m +28 https://t.co/4zCWHGJWRq
Socket @SocketSecurity
22K Followers 5K Following Socket is the #1 software supply chain security platform. Next-gen SCA + SBOM + 0-day prevention. LOVED BY DEVELOPERS. 👀 @npm_malware
Feross @feross
41K Followers 2K Following ⚡️ Founder + CEO @SocketSecurity (https://t.co/7g1opA7Tr8) • 🌲 Visiting lecturer @Stanford (https://t.co/yw9prxLiLe) • ❤️ Open source @WebTorrentApp + @StandardJS
Zakarth @Zakarth
45 Followers 214 Following
Austin Larsen @AustinLarsen_
2K Followers 1K Following Principal Analyst - Google Threat Intelligence Group Rapid response and investigations into significant cyber events.
BeyondTrust Phantom L... @btphantomlabs
309 Followers 44 Following Phantom Labs™ is driving innovation with cutting-edge threat research, vulnerability discovery, and real-world security insights.
ProjectDiscovery @pdiscoveryio
42K Followers 144 Following Real, exploitable vulnerabilities. No noise. Nuclei scans fast. Neo closes the loop. @pdnuclei × @neo_ai_engineer
ᴍɪᴄʜᴀʟɪs �... @Cyb3rMik3
4K Followers 3K Following Regional Threat Protection Tech Lead @Microsoft | Former Microsoft MVP | Father 👭/Husband👫/🍷&⌚️ enthousiast/Explorer ✈️ | Views my own.
Low Level @LowLevelTweets
52K Followers 1K Following i make computer do bad 🏴☠️ cybersecurity creator 🧙security researcher 📺 1M+ youtube Business: [email protected]
David Autor @davidautor
36K Followers 222 Following
Andrew McAfee 🇺�... @amcafee
80K Followers 828 Following Author of "The Geek Way" and "More from Less;" coauthor of "The Second Machine Age;" proponent of human and planetary flourishing.
Daron Acemoglu @DAcemogluMIT
364K Followers 330 Following Institute Professor @MIT, @MITEcon. Co-Director of @MITShapingWork. Author of Why Nations Fail, The Narrow Corridor, and Power & Progress.
Philippe Aghion @Ph_Aghion
26K Followers 138 Following Professor at College de France, INSEAD and LSE. 2025 Nobel Prize in Economics. Account managed by my students at @cdf1530 to share news, not opinions.
ClaudeDevs @ClaudeDevs
532K Followers 2 Following Official updates for developers building with @ClaudeAI
Cyber Detective💙�... @cyb_detective
61K Followers 3K Following Every day I write about #osint (Open Source Intelligence) tools and techniques. Also little bit about forensics and cybersecurity in general. Work in @netlas_io
Hacking Articles @hackinarticles
299K Followers 480 Following House of Pentesters Join us: https://t.co/Y6XOlSOA92
The XSS Rat - Proud X... @theXSSrat
166K Followers 1K Following Bug bounty profiles: https://t.co/3Uz5K130ah https://t.co/rzbqV5AmZ2 https://t.co/CDlzXdNvPB
Katelyn Bowden Ⓥ @medus4_cdc
29K Followers 7K Following I exist, but at what cost? privacy nerd, maker of cursed art, shitposter, hacking the planet for chaotic good. all nodes are equal.
svbl @svblxyz
11K Followers 2K Following 🇺🇦🌻 - My tweets represent your employers opinions. Most of this is false. I am making this up. I always tell the truth. Verified.
🇷🇴 cristi @CristiVlad25
55K Followers 616 Following
IntelTechniques @IntelTechniques
50K Followers 0 Following
Scott McGready 🐿�... @ScottMcGready
5K Followers 2K Following Maker, breaker, fixer, faker | Hacker, writer, keynote speaker | Mediocre engineer | As seen on TV | Musician | @hack_glasgow organiser
Aware Online @aware_online
12K Followers 709 Following Open Source Intelligence (OSINT) Training Center ★ Located in The Netherlands ★ https://t.co/QLk5FICGU6 ★
D:\unk.osint @thetechhouseuk
2K Followers 4K Following {your adjective} Yorkshireman. Reads books and learns things. Threat Intel bod. Likes OSINT and radios. Did some SANS courses once. Prefers animals to people.
Jeremy Kirk @Jeremy_Kirk
14K Followers 7K Following Threat intel @Okta. Personal account. Interests: AI, cyber threat intelligence, cybercrime, data breaches, OSINT.
Henry Shevlin @dioscuri
34K Followers 9K Following Philosopher & AI Ethicist @GoogleDeepMind · @LeverhulmeCFI @Cambridge_Uni | Consciousness, Machine Minds, AGI, Human-AI Relationships | All views my own
BlackRoomSec @blackroomsec
40K Followers 509 Following Hacker. Former CISO, Cybersecurity Lead for DA's Office. My book on cybersecurity compliance: https://t.co/luimEfAj83
MyDFIR @MyDFIR
4K Followers 155 Following I run a community showing you how to build practical hands-on skills to become a Cybersecurity SOC analyst. 👇
Ray Fernando @RayFernando1337
37K Followers 5K Following 12y ex-Apple • Building live with AI • Current Mission: 10% Body Fat
Last Week in Security... @lastweekinfosec
3K Followers 0 Following Automated tweets on the publication of the Last Week in Security blog.
Br3akp0int @tccontre18
2K Followers 953 Following tweets are my own😉 Threat Researcher - interested in: (R.E, Red/Blue/Purple Team, DFIR, ML, Kernel, Exploit Dev) - https://t.co/qJyB5lIuHj
Google Gemma @googlegemma
88K Followers 0 Following The official home of Google's Gemma. Lightweight, state-of-the-art open models by Google DeepMind, built on Gemini tech. What will you build? 🚀💻
Kat ⊷ the Poet Engi... @poetengineer__
85K Followers 380 Following artist, engineer, researcher. neuroscience, machine psyche. science & art, futuristic & ancient. fyi: i have never created a crypto coin and i never will.
Kamil (๑ت๑)ノ�... @KamStaszewski
875 Followers 99 Following math, defense tech, osint, programming, lifting weights and mild chaos
WhiskeyHacker @whiskeyhacker
4K Followers 2K Following Founder, https://t.co/BFCMRHVjmP and https://t.co/qaihcRLDOm Coast Guard Veteran & Honorary Chief Petty Officer
Gili Raanan // Cybers... @giliraanan
9K Followers 375 Following Cyberstarter. ex-partner @sequoia. Investor @wiz_io @cyera_io @island_io @fireblockshq @armissecurity @upwindsecurity
Andrew Lampinen @AndrewLampinen
12K Followers 2K Following Interested in cognition and artificial intelligence. MTS at @AnthropicAI. Previously @DeepMind, cognitive science @StanfordPsych. Tweets are mine.
Bilawal Sidhu @bilawalsidhu
107K Followers 6K Following Spatial intelligence. World models. Visual effects. Creator w/ 2.1M+ audience. Tech Curator @ TED. A16z Scout. Ex-Google PM (AR/VR & 3D Maps) https://t.co/fysPkbPoQ2
Newton Cheng @newton_cheng
2K Followers 258 Following Frontier Red Team at @AnthropicAI | Physics PhD from @UCBerkeley
Sam McIntire @arts_of_war
39K Followers 300 Following Historical Artist - Bringing the history of Western Civilization to life in thoroughly researched fine art oil paintings. Roman Empire - the Vikings - Medieval
Ron Paul Was Right @RonPaulWasR1ght
5K Followers 3K Following Husband, Father, Paleoconservative Mixed with Classical Liberal - Blackpilled & Turned Political Nihilist by the Pedo 🇮🇱 Owned UnipartyTrends for United States
You might like
