Openwall @Openwall

Infosec focused free software, research, publications, community activities @oss_security. Tweets are announcements. Please direct questions to @solardiz. openwall.com Joined June 2010

Tweets

384
Followers

7K
Following

14
Likes

5

Open Source Security mailing list @oss_security

2 months ago

April 2026 was the busiest month for oss-security in 11 years. 311 messages posted. We surpassed the XZ backdoor spike of March-April 2024. We last had 300+ in April 2015 when we still had CVE assignment via the list. Now we're back without that incentive. openwall.com/lists/oss-secu…

Openwall @Openwall

2 months ago

Linux Kernel Runtime Guard @lkrg_org 1.0.1 by @Adam_pi3 @solardiz @kerneltoast et al. is out, adds support for Linux 6.19 and 7.0, contains hardening changes and bug fixes openwall.com/lists/announce…

Openwall @Openwall

4 months ago

passwdqc 2.1.0 is out, adding built-in common passwords list. We effectively include top 100k of HIBPv8 overlap with RockYou, optimized and compressed to under 200 KB embedded in program binary. None of JtR password.lst 1.8 million are accepted by default. openwall.com/lists/announce…

Openwall @Openwall

3 years ago

passwdqc 2.0.3 releases for Unix-like and Windows systems are out, with many minor additions and changes. Leaked password filter files updated to HIBP v8, encoding the 847+ million unique passwords (from billions of accounts) in a 3.5 GB file. openwall.com/lists/announce…

Security BSidesLjubljana @BSidesLjubljana

4 months ago

Sponsor spotlight: @Openwall The people behind John the Ripper and decades of open-source security work. If anyone understands community-driven security, it's them. Thank you for backing #BSidesLjubljana. #InfoSec #Cybersecurity #Openwall

BSidesLjubljana tweet picture

NULLCON @nullcon

7 months ago

At #NullconBerlin2025, @solardiz unpacked how Linux Kernel Runtime Guard (LKRG) 1.0 brings real-time integrity checking & exploit detection to the Linux kernel, even across different versions & edge-case environments. Watch Now: youtu.be/9hQULqxFdBs?si… #LKRG #LinuxSecurity

Solar Designer @solardiz

8 months ago

What should @Openwall's simpler vulnerability scoring system (CVSS alternative) be called? Note that we already have OVE openwall.com/ove/ as a CVE alternative, but unfortunately the OVSS acronym already has a bit of use in CS/AI for "open-vocabulary semantic segmentation".

Hash Suite @HashSuite

8 months ago

Hash Suite 4.0 (Windows) adds support for custom Python scripts as key-provider, updated wordlists to download, better high-resolution support, and should have fewer antivirus false positives. hashsuite.openwall.net/download

Openwall @Openwall

9 months ago

We've just published the slides of @solardiz's @nullcon Berlin 2025 talk "Linux Kernel Runtime Guard (LKRG) 1.0" openwall.com/lists/announce… #LKRG #nullconBerlin2025 #nullcon

Openwall tweet picture

ISMG Network News @ISMG_News

9 months ago

Strengthening Linux Security With Kernel Runtime Guard 🎯 #Linux security remains a pressing concern as vulnerabilities continue to expose critical systems. @solardiz, founder of @Openwall, and senior principal security engineer at CIQ, said Linux Kernel Runtime Guard's, or LKRG, 1.0 release brought major improvements in testing and code cleanup. Watch his full interview with @aseemjakhar: inforisktoday.com/strengthening-… #ISMGNews #ISMGStudio #cybersecurity #NullconBerlin2025 @nullcon

Openwall @Openwall

10 months ago

Linux Kernel Runtime Guard @lkrg_org 1.0.0 by @Adam_pi3 @solardiz @kerneltoast et al. is out, adds support for Linux 6.13+ (tested to 6.17-rc4), forward-edge CFI (Intel CET IBT, KCFI), ..., reduces performance overhead, shrinks the codebase by ~2500 lines. openwall.com/lists/announce…

CIQ @CtrlIQ

10 months ago

Heading to Nullcon Berlin 2025? @solardiz will share his LKRG expertise by taking an in-depth look at kernel hardening challenges and what it takes to protect systems in the real world. nullcon.net/berlin-2025/sp… #NullconBerlin2025 #LinuxSecurity #RLC_H

NULLCON @nullcon

11 months ago

At #NullconBerlin2025, @solardiz will walk us through the journey from LKRG’s edgy debut to its 1.0 release – complete with real-world attacks, trade-offs, nasty bugs, & some honest truths about kernel hardening. Know More: nullcon.net/berlin-2025/sp… #LKRG #LinuxSecurity

nullcon tweet picture

Openwall @Openwall

a year ago

End of an era: our CVSweb service turned 21 today, and was promptly retired. Our anoncvs was similarly shut down at the age of 21 two years ago, quietly.

Openwall @Openwall

5 years ago

All of our projects previously maintained in CVS are now in Git (yes, older ones with commit histories for ~20 years) and under the Openwall organization on GitHub. There are a total of 22 Git repositories now. openwall.com/lists/announce… github.com/openwall

CIQ @CtrlIQ

a year ago

🔒 Enhancing LKRG: A Step Toward Stronger Security. CIQ's own Sultan Alsawaf recently contributed impactful updates to the LKRG project, fixing longstanding bugs & making it stronger & more stable than ever. Learn more here 🔗 hubs.li/Q03jDBsj0 #HPC #IT #LKRG #OpenSource #Linux

CtrlIQ tweet picture

kmkz @kmkz_security

a year ago

#MITRE #CVE is great (dead?), but @Openwall 's #OVE has been a system for vuln. tracking-ID since 2016 ! Ex: #Exim CVE-2019-13917 also has OVE ID: OVE-20190718-0006 I used both for tracking vulnerabilities since 2k16. Time to give #OVE more visibility: openwall.com/ove/

Solar Designer @solardiz

a year ago

I'm happy to build upon and extend the ideas and approaches we had tested and proven, and expertise gained building @Openwall's security enhanced Linux distribution, now for @CtrlIQ's wider audience and in a modern context.

CIQ @CtrlIQ

a year ago

📣 Exciting news from CIQ! 📣 Announcing Rocky Linux from CIQ - Hardened! Read the press release: hubs.li/Q03blcsv0 #RLCHardened #RLC #RockyLinux #CIQ #SysAdmin #ProductLaunch

solardiz tweet picture

Solar Designer @solardiz

a year ago

Interview with @Adam_pi3 and me about LKRG, in English adwersarz.pl/polish-it-secu… and Polish

Adwersarz.pl @adwersarz_pl

a year ago

Czas na wywiad! Rozmawiamy z @Adam_pi3 i @solardiz o LKRG (Linux Runtime Kernel Guard), które może znacznie utrudnić zhackowanie Linuxa. Co słychać i jak przebiega rozwój projektu, czy ktoś próbował skutecznie obejść LKRG? Zapraszamy do lektury! adwersarz.pl/polskie-projek…

Openwall @Openwall

2 years ago

Linux Kernel Runtime Guard @lkrg_org 0.9.9 by @Adam_pi3 et al. is out, adds support for Linux 6.11+, 6.10.10+, 5.10.220+, CentOS Stream 9 (upcoming RHEL 9.5). openwall.com/lists/announce… Updated packages for Rocky Linux 9.4 and 8.10 being released sig-security.rocky.page/packages/lkrg/ @rocky_linux

Craig Rowland - Agentless Linux Security @CraigHRowland

2 years ago

We sponsored the porting of the yescrypt Linux password hash algorithm to Go as an open source project. Read more below. This is now part of our agentless password auditor feature on Linux as well.

Openwall @Openwall

2 years ago

Announcing yescrypt-go, our pure Go reimplementation of yescrypt key derivation function (KDF) and password hashing scheme. Builds upon @dchest's Go scrypt, with yescrypt support added by @solardiz. Sponsored by @SandflySecurity. openwall.com/lists/announce… x.com/SandflySecurit…

Openwall @Openwall

2 years ago

Announcing yescrypt-go, our pure Go reimplementation of yescrypt key derivation function (KDF) and password hashing scheme. Builds upon @dchest's Go scrypt, with yescrypt support added by @solardiz. Sponsored by @SandflySecurity. openwall.com/lists/announce… x.com/SandflySecurit…

Sandfly Security @SandflySecurity

2 years ago

Sandfly 5.1.1 features yescrypt support for our agentless Linux password auditor, new detection modules for debugger activity, and an important performance fix for the database. Read more about these new features below: sandflysecurity.com/about-us/news/…

Solar Designer @solardiz

2 years ago

Updated my @offensive_con keynote talk slides page to include links to our other related presentations openwall.com/presentations/…

solardiz tweet picture

Openwall @Openwall

2 years ago

Just published slides of @solardiz's @offensive_con keynote talk "Password cracking: past, present, future" openwall.com/lists/announce…

Head of Threat & Vulnerability Mgmt @ Henkel AG & Co. KGaA
https://t.co/NC1orlKZLB

Posting content that I find interesting.

Nicolas Krassas @Dinosn

157K Followers 768 Following Head of Threat & Vulnerability Mgmt @ Henkel AG & Co. KGaA https://t.co/NC1orlKZLB Posting content that I find interesting.

Co-Founder @MyHackerHouse 💾 | Cybersecurity & Web3 🌐 | Author of Hands-on Hacking (ISBN 9781119561453) 📖 | Offensive Lua 💻 | ✝️

hacker.house @hackerfantastic

106K Followers 5K Following Co-Founder @MyHackerHouse 💾 | Cybersecurity & Web3 🌐 | Author of Hands-on Hacking (ISBN 9781119561453) 📖 | Offensive Lua 💻 | ✝️

Web hacker and Burp Suite Pro trainer
Refer to https://t.co/D5tRH7U2hg for trainings
Follow @MasteringBurp for free tips and tricks

Nicolas Grégoire @Agarri_FR

28K Followers 628 Following Web hacker and Burp Suite Pro trainer Refer to https://t.co/D5tRH7U2hg for trainings Follow @MasteringBurp for free tips and tricks

Bourbon Offensive Security Services | BOSS

kmkz @kmkz_security

20K Followers 2K Following Bourbon Offensive Security Services | BOSS

Stop, Think, Pwn! (see also @dragosr@chaos.social, https://t.co/BjclXYWQ9R for alternate)

dragosr @dragosr

23K Followers 9K Following Stop, Think, Pwn! (see also @[email protected], https://t.co/BjclXYWQ9R for alternate)

Internet Hacker. Founder of @vigilant_labs. Previously, co-founder of Azimuth Security (now L3Harris Trenchant)

mdowd @mdowd

33K Followers 754 Following Internet Hacker. Founder of @vigilant_labs. Previously, co-founder of Azimuth Security (now L3Harris Trenchant)

Offensive security company. Dojo of many ninjas. Red teaming, reverse engineering, vuln research, dev of security tools and incident response.

Synacktiv @Synacktiv

21K Followers 274 Following Offensive security company. Dojo of many ninjas. Red teaming, reverse engineering, vuln research, dev of security tools and incident response.

abdullrhman sh @gmrhom

172 Followers 1K Following A

heeae @heeaepuwt1

12 Followers 584 Following

Loren @lhs5064

18 Followers 498 Following

MassimoFarroni @FarroniMassimo

24 Followers 90 Following

Shmiffit @B2FIOUD

46 Followers 4K Following Liker

Red Hatter, PSE, Core Contributor @ OpenStack Manila, Hobby Teacher, Peace Lover and Growth-Harmony-Sustainability-evangelist

Goutham Pacha Ravi @gpacharavi

638 Followers 532 Following Red Hatter, PSE, Core Contributor @ OpenStack Manila, Hobby Teacher, Peace Lover and Growth-Harmony-Sustainability-evangelist

Firas alrefaei @Firasalrefaei

23 Followers 274 Following

Security Researcher, Reverse Engineer

Jonathan Brossard @endrazine

8K Followers 1K Following Security Researcher, Reverse Engineer

-MX @federation_j

0 Followers 9 Following

ketamine puppy, security researcher, rust dev

it/she/puppy 🏳️‍⚧️ 🦴

https://t.co/RrPNbrSKtF

june @x86pup

26 Followers 256 Following ketamine puppy, security researcher, rust dev it/she/puppy 🏳️‍⚧️ 🦴 https://t.co/RrPNbrSKtF

I'm just here to follow the drama on infosec Twitter. Sometimes there's a bit of actual security news, hacking info, or PoCs there.

🚀 @chilpaul

37 Followers 660 Following I'm just here to follow the drama on infosec Twitter. Sometimes there's a bit of actual security news, hacking info, or PoCs there.

jean delu @beeerid

4 Followers 29 Following

https://t.co/OWKt6ZgKyM

Munir Hossain @munirhossain_bd

35 Followers 145 Following https://t.co/OWKt6ZgKyM

Edwin Alfredo Saldana... @sedwin928

5 Followers 42 Following

Developement&Society in #Bakur,#Rojava,#Bashur,#Rojhilat
#RojavaRevolution
#DemocraticAutonomy
#DemocraticConfederalism
#Antifa
#JinJiyanAzadi
#IranRevolution

Rojava_Society @Rojava_Society

2K Followers 1K Following Developement&Society in #Bakur,#Rojava,#Bashur,#Rojhilat #RojavaRevolution #DemocraticAutonomy #DemocraticConfederalism #Antifa #JinJiyanAzadi #IranRevolution

Cloud security research • GCVE GNA 119
Independent vulnerability validation
Kubernetes / Azure / GCP / AWS
https://t.co/Wsrh2ypC9Z

Justin OLeary @olearysec

33 Followers 18 Following Cloud security research • GCVE GNA 119 Independent vulnerability validation Kubernetes / Azure / GCP / AWS https://t.co/Wsrh2ypC9Z

Chenghao Du @SerenityDCH

14 Followers 73 Following

Bi. Furry. Gamer. Anime lover. In Love with music :p slightly crazy and weird

Azrael Lee @AzzyTheRad

48 Followers 2K Following Bi. Furry. Gamer. Anime lover. In Love with music :p slightly crazy and weird

RH @h_ro60238

1 Followers 54 Following

Trey Tacon @ttacon

67 Followers 372 Following

ダニエル・カス... @devouredio

32 Followers 164 Following

鳥兒會從天空跌落，
四月有時亦會飄雪。

Kvar von Kaiser @KvarKaiser

78 Followers 3K Following 鳥兒會從天空跌落，四月有時亦會飄雪。

Founder@Pixelated Noise, Clojure consultancy. Visual art enthusiast. Cat guardian. https://t.co/5xrDbRM9sm

Stathis Sideris @stathissideris

739 Followers 2K Following Founder@Pixelated Noise, Clojure consultancy. Visual art enthusiast. Cat guardian. https://t.co/5xrDbRM9sm

Consultor informático,
Gamer y estudiante
de ciberseguridad.
Quilpué, Chile.
¡Vive la tecnología!

Leonardo Henríquez (... @leohenriqueza

3 Followers 145 Following Consultor informático, Gamer y estudiante de ciberseguridad. Quilpué, Chile. ¡Vive la tecnología!

sin99xx @sin99xx

925 Followers 579 Following "What we pay attention to is all we really have"

gk98 @98erKAG

44 Followers 2K Following

Miguel Oliveira @MiguelO30398366

4 Followers 42 Following

Savli kute @KuteSavli

0 Followers 3 Following

Consistency is the last refuge of the unimaginative.

Diurpaneus @pileat_thracia

238 Followers 844 Following Consistency is the last refuge of the unimaginative.

Fabio Zambrino @zambroid

51 Followers 465 Following IT engineer

Morten @realthemorten

5 Followers 555 Following

Jason McGoldrick @2pacmcg1

1 Followers 5 Following

curiouspocket @curiouspocket

0 Followers 472 Following

i'm am very sugoi (means cute in chinese)

Nemnem @Nemnemery

17 Followers 646 Following i'm am very sugoi (means cute in chinese)

i'm creative, persistent, unstable and kamikaze.

✉ email: extencil@segfault.net

Extencil @extencil

214 Followers 926 Following i'm creative, persistent, unstable and kamikaze. ✉ email: [email protected]

fábio @toupeira10

38 Followers 2K Following

Uriah Yager @UriahY

205 Followers 3K Following

Daniel Król @dkr_sh

33 Followers 190 Following Geek.

under construction 🏗

M0👾 @corvax00

69 Followers 490 Following under construction 🏗

Lauren B @LaurenB8505

48 Followers 2K Following readonly

Sam @Sam074056581428

3 Followers 15 Following

Incident response analyst, Interested in sharing Cyber threat hunting,Threat Intelligence, Malware analysis, Forensics artifacts, Red team blogs

Sathishds @sathishdatwit

178 Followers 2K Following Incident response analyst, Interested in sharing Cyber threat hunting,Threat Intelligence, Malware analysis, Forensics artifacts, Red team blogs

サバティカル(?)で内幸町界隈にいる研究者。専門はAIスパコン、ビッグデータ、ネコ。ABCIの人です。The views expressed here are mine alone and not those of my employer.

Hirotaka Ogawa @ogawa

700 Followers 385 Following サバティカル(?)で内幸町界隈にいる研究者。専門はAIスパコン、ビッグデータ、ネコ。ABCIの人です。The views expressed here are mine alone and not those of my employer.

Jonni Paloposki @JonniPaloposki

0 Followers 4K Following

virtual emotion || randomly thoughts

IrE R3g4rds @dwntRabbithole

23 Followers 563 Following virtual emotion || randomly thoughts

Adri Luna @aluncob

26 Followers 337 Following

X-ing personal stuffs

@sandalian @sandalian

2K Followers 3K Following X-ing personal stuffs

Enthusiastic human being... #rubydeveloper #rusthobbyist #golanghobbyist

blankfella 🦫🦀 @blankfella

223 Followers 320 Following Enthusiastic human being... #rubydeveloper #rusthobbyist #golanghobbyist

SRE @ searchstax - opinions my own

Wolfgang Kandek @wkandek

1K Followers 690 Following SRE @ searchstax - opinions my own

a @a50594841

0 Followers 4 Following

Cybersec Entrepreneur | Co-Founder: https://t.co/tullMYNfqo EXPLIoT Store | EXPLIoT Academy | IoT Auditor | Payatu | Nullcon | https://t.co/hJ6HlWBQIc | Null community

Aseem Jakhar @aseemjakhar

7K Followers 2K Following Cybersec Entrepreneur | Co-Founder: https://t.co/tullMYNfqo EXPLIoT Store | EXPLIoT Academy | IoT Auditor | Payatu | Nullcon | https://t.co/hJ6HlWBQIc | Null community

researcher @google; serial complexity unpacker;
https://t.co/Vl1seeNgYK

ex @ msft & aerospace

LaurieWired @lauriewired

156K Followers 293 Following researcher @google; serial complexity unpacker; https://t.co/Vl1seeNgYK ex @ msft & aerospace

Rocky Linux is a community-driven Enterprise Linux distro, for HPC, AltArch and beyond | 🦋 https://t.co/qJ610xRJC8 | 🐘 rockylinux@fosstodon.org

Rocky Linux @rocky_linux

19K Followers 132 Following Rocky Linux is a community-driven Enterprise Linux distro, for HPC, AltArch and beyond | 🦋 https://t.co/qJ610xRJC8 | 🐘 [email protected]

Sovereign AI starts with infrastructure.
Train, tune, and deploy on infrastructure you control.
Own your AI stack.

CIQ @CtrlIQ

953 Followers 266 Following Sovereign AI starts with infrastructure. Train, tune, and deploy on infrastructure you control. Own your AI stack.

Linux Kernel Runtime Guard

LKRG @lkrg_org

293 Followers 4 Following Linux Kernel Runtime Guard

This account is no longer active. Follow @awscloud for the latest updates from AWS.

AWS Marketplace @awsmarketplace

40K Followers 365 Following This account is no longer active. Follow @awscloud for the latest updates from AWS.

🔨 Building things
😈 @FreeBSD developer
🌶 #security engineer
💾 #storage engineer

Mariusz Zaborski @oshogbovx

918 Followers 671 Following 🔨 Building things 😈 @FreeBSD developer 🌶 #security engineer 💾 #storage engineer

Director of Offensive Security @NVIDIA, architecting @RISC_V, @LKRG_org Founder, @BlackHatEvents & @Defcon Speaker, #Phrack author, @PwnieAwards nominee

Adam 'pi3' Zabrocki @Adam_pi3

3K Followers 341 Following Director of Offensive Security @NVIDIA, architecting @RISC_V, @LKRG_org Founder, @BlackHatEvents & @Defcon Speaker, #Phrack author, @PwnieAwards nominee

musl libc microblog presence has moved to the fediverse. Find us at https://t.co/hGPfPaQbVz

musl libc is @musl@fo... @musllibc

1K Followers 2 Following musl libc microblog presence has moved to the fediverse. Find us at https://t.co/hGPfPaQbVz

Here for the 🍿 as it burns. Come along to the 'don if you want more than popcorn from me.

🦣 @dalias@hachyder... @RichFelker

3K Followers 449 Following Here for the 🍿 as it burns. Come along to the 'don if you want more than popcorn from me.

tlsify @tlsify

11 Followers 0 Following

Hash Suite is a program to audit security of password hashes

Hash Suite @HashSuite

334 Followers 0 Following Hash Suite is a program to audit security of password hashes

@Openwall founder, @oss_security maintainer, @lkrg_org co-author, @CtrlIQ Linux security engineer. RTs don't imply agreement with points of view.

Solar Designer @solardiz

13K Followers 1K Following @Openwall founder, @oss_security maintainer, @lkrg_org co-author, @CtrlIQ Linux security engineer. RTs don't imply agreement with points of view.

@Openwall oss-security mailing list thread summaries, currently maintained by @solardiz. Originally setup and maintained as an automated feed by @eugeneteo.

Open Source Security ... @oss_security

5K Followers 9 Following @Openwall oss-security mailing list thread summaries, currently maintained by @solardiz. Originally setup and maintained as an automated feed by @eugeneteo.

Trends for United States

Lamelo

Temporary

WNBA

Haitians

Hornets

Naz Reid

Bungie

Supreme Court

Charlotte

SCOTUS

Wolves

Marathon

Caitlin Clark

Minnesota

Monsanto

Roundup

Venezuela

Coby

Marie Harf

Rudy

You might like

Open Source Security ...

Exodus Intelligence

ς๏гєɭคภς0�...

@CrackMeIfYouCan