Riccardo @ReturnRei
Infosec, compsci, definitely not “cyber”. *nix boxes (Darwin and Linux) 🐧 🍎日本語少しOK returnrei.jp パリ Joined January 2019-
Tweets656
-
Followers93
-
Following731
-
Likes4K
3週間日本を旅行します。 ITセキュリティ関係の方で、おすすめの場所やイベントがあれば教えてください! タイミングが合えばぜひお会いしたいです。東京から別府まで旅をします。
New macOS LPE, bypassing the fix for the 3rd time. Or 4th? Something like that. This also showcases the O_RESOLVE_BENEATH bypass in production. Since this is a double-race, this is a lucky run, usually it takes 2-3 minutes, but that's pretty acceptable to me. Writeup comes as usual: when the bug is fixed and I have no further bypasses to report.
Looks like iOS remote kernel debugging is working well with Binary Ninja and a virtual iPhone running iOS 26.3
For anyone dealing with RASP protected apps, frida-strace is now your first step. Trace the syscalls, find what the app checks, hook those specific functions, bypass. No more guessing. Frida 17.8.0+, kernel 6.1+ required. #Frida #MobileSecurity #AppSec
Frida 17.8.0 dropped with frida-strace syscall tracing on Android & iOS, no jailbreak. Thank you @fridadotre #Frida #MobileSecurity #AppSec
My captured Coruna sample has got a lot further. It now loads everything from decrypted payload so you can freely replace dylibs for experiment. Safari-based TrollStore installer covering all supported versions is gonna be so real. However this poses a risk for jailbreak users who may get infected by visiting malicious sites. github.com/khanhduytran0/…
@Helthydriver @matteyeux IIRC after the file ending in min.js I only have DNS requests and I don’t have any HTTP req for show/details.html I’ll look into the pcap again and might DM you if that’s ok
Lets talk about the privilege escalation from Coruna chain (iOS 16.6). As seen in the console after the infection, the power management daemon attempts to establish an internet connection. By this point, the PE has already been executed.
@Helthydriver @matteyeux Thanks, unfortunately I haven’t captured anything after the initial powerd payload
@Nadsec11 > a single throwaway domain is cheaper to burn and harder to fingerprint behaviorally than a DGA Stage 1 are delivered on MANY domains and there’s lots of DGA down the line..
pwndbgをCLionから便利に使うためのプラグインを作っている コンテキストとかヒープの状態の履歴を簡単に遡れたりしてpwn/revに大変便利、GUIアプリも意外と悪くない github.com/Yu212/clion-pw…
You've never been more right to doubt your MacOS antivirus software 😥 Our latest research by @Coiffeur0x90 shows how Intego can be abused for Local Privilege Escalation Yes, the antivirus. Yes, as root. blog.quarkslab.com/intego_lpe_mac…
@ochanmogumogu Hmm, PATHとSHELLの変数をチェックしてください 多分差異がある可能性があります
@ZeeJailbreak Pls don’t use Jgoyd as a source, he only publishes AI slop
We (me + @theevilbit) have a website for the macOS Vulnerability Research Training now, in case you are interested: macosvuln.training
Starting 2026 with a new blog! I've really been enjoying my Windows on ARM machine - so my post is about interrupts for WoA. This includes x64/ARM differences, virtual interrupts, Hyper-V's synthetic controller, and Secure Kernel interrupts/intercepts connormcgarr.github.io/windows-arm64-…
Get your macOS 26.2 xnu Library, CodeQL DB (and compile_commands.json) here! 👩🔬 github.com/blacktop/darwi…
By far the most comprehensive guide for virtual machines, literallyy. -great for understanding low level concepts -it's kind of very detailed guide the whole thing is soo structured and anyone can understand vm.
23時間かけて、自作 TCP/IP スタックでウェブサーバーできました!!!!!!!! キリ番踏み逃げ禁止です!!!!!!!!! youtube.com/watch?v=LDfq0Q… #ch789
[RELEASE] Part two is out! Callback chaining with tail calls and proxy frames to build semi-artificial call stacks and maybe annoy a few detection rules. Nothing ground breaking, but maybe somebody can pick up an idea or two. Enjoy😉 klezvirus.github.io/posts/Callback…
init @initzeroex
0 Followers 130 Following
Chris Michael Monagha... @Chris_duh
123 Followers 1K Following
chamaaaa @pppp46497
344 Followers 321 Following Security researcher (PhD D2) | Crypto CTFer @ full_weak_engineer & @_PwnSec_ | CB student staff ’24–’25
kanon @_k4non
916 Followers 423 Following CTFer(crypto) w/@ProjectSEKAIctf & @BunkyoWesterns | 幾度夢に見た航路 戻らない旅だとしても!
john doesh @doesh_john65688
9 Followers 776 Following
Jeyanthan @jeynthan
21 Followers 271 Following
Iyed Mejri @t0m7r00z
245 Followers 455 Following Security Research Apprentice @RandoriSec, InfoSec Student @ecole2600, && CTF Player w/ @ProjectSEKAIctf
Olivia Gallucci ✨ @OliviaGalluccii
6K Followers 899 Following macOS Internals | #FOSS Advocate | Opinions ≠ Employer | @intelligentCTF @oghealthfitness | RIT | Security @ Datadog - Prev. Apple, SECUINFRA, US Govt
shimotan @shimosec
1K Followers 926 Following Security Engineer / Threat Intelligence / OSINT / Incident Response / CSIRT / SOC / CISSP / ゆるっとセキュリティブログやってます🇯🇵予備自補(サイバー)
Julio @juliocesarfort
2K Followers 3K Following I'm not cut from the same mold, I don't read from the same old story. South American in Eastern Europe. Opinions are mine.
UMA(ゆーま) @UMA_yumaSec
730 Followers 1K Following sec/PQC | 脅威分析 | 応用情報 | CODE BLUE24,25学スタ | JANOG56若者支援 | 日常版@uma_yuma08
Tony Gorez @tonygo_
1K Followers 606 Following offensive security researcher | iOS - macOS | build Bare runtime at @holepunch_to
NXVZBGBFBEN @NXVZBGBFBEN
2K Followers 6K Following
jaybird1291 @jaybird1291
259 Followers 580 Following Cybersecurity student at École2600 🇫🇷 - Focused on DFIR and Apple systems security - Learning Japanese on my own/日本語は独学で学んでいて、まだまだ初心者なので、間違いがあればご容赦ください🙇🏻♂️
Satoe⌇GMO Flatt Sec... @flatt_mitsu
189 Followers 322 Following GMO Flatt Security PR広報 / エンジニアの背中を預かる為の広報。 ※投稿内容はあくまで個人の見解であり、所属する企業の公式見解を示すものではありません。
st98 @st98_
3K Followers 2K Following CTF(team: @BunkyoWesterns🐈, @zer0pts🐣, @TeamHarekaze⚓)が楽しくて好き。Web問ばかり解いています。
penthium2 @penthium2
1K Followers 1K Following Ph'nglui mglw'nqfh Viperr R'lyeh wgah'nagl fhtagn. Membre fondateur de BZHack https://t.co/clP3lRlTqy
Jordan Rodgers @bhd_rodgers
27 Followers 559 Following 🛡️ Black Hat Defense | Free Penetration Test | Your Asset 💻 Specializing in cybersecurity solutions to outsmart black hat hackers.
Simon @progswiftly
65 Followers 2K Following
M.H @meran_hu
13 Followers 55 Following CIS student at @IMSIU_edu_sa | Co-founder of itecan | member of @TarmeezClub
Giovanni ‘Sug4r’ ... @Sug4r7
2K Followers 5K Following Tsurugi Linux founder & core developer - Italian ambassador and staff of old back|track Linux project (now Kali Linux) - #DFIR #OSINT #CTI
Oussama SALAHOUELHADJ @iOSalah
5 Followers 28 Following
パリのエイジ�... @Eiji_dal_1974
1K Followers 629 Following パリ🇫🇷のエイジ52歳 🇫🇷パリ在住28年|神戸生まれのユーチューバー🇯🇵 パリとローマの生活🇫🇷🇮🇹 インド🇮🇳とメキシコ🇲🇽の旅 気の向くままに発信
Quentin Texier 🦀 @g0h4n_0
537 Followers 366 Following Red Team Operator @randorisec https://t.co/93IVhoU5BR @safetechred
Phenol @Phenol__
932 Followers 742 Following Former chemistry student. @42born2code student. Reversing and pwning stuffs at @RandoriSec.
khalid alzoubi @khalid4alzoubi
14 Followers 573 Following “ يا حيُّ يا قيّوم بِرحمتِك أستغيث، أصلِح لي شأني كُلّه ولا تكِلني إلى نفسي طرفةَ عين
KSHITIJ PARMAR @SwitU7Ronald
49 Followers 54 Following
علي حيدر @aliali078011
0 Followers 67 Following
Michael @MasterMike88
11K Followers 1K Following Biggest moron on the platform (probably). iOS Jailbreaking stuff. Openly Autistic. Not a security researcher or developer. Side Account: @MasterOfMike88
jrx - Eventually Cons... @jrouaix
224 Followers 1K Following Software builder as a service, indie hacker @wymmo_com, crafter @RandoriSec, coder from father to daughter since 1337 ... https://t.co/wxCLmex4s5
uz.ra @Chr0miumCandy
264 Followers 50 Following Used to be an iOS Tweak dev (Aerial, Planetes, Nazuna etc.) Be a tester: https://t.co/oQ8WNmFkRp GitHub:https://t.co/pwpuDQv3tt
Satoki@Kn0wl3dg3 @satoki00
5K Followers 597 Following Webアプリケーションつんつん職人 / Cyber Security Engineer / Bug Hunter / 株式会社Ikotas Labs 代表取締役 https://t.co/j1rlBEMeXN / 一般社団法人BunkyoWesterns 代表理事
retr0 @retr0_
607 Followers 435 Following Sysadminotaur, XSS Sniper, 8-bit, Beer(s). Tweets are my own.
Iran in Ghana @IRAN_GHANA
17K Followers 158 Following Official Account for the Embassy of the Islamic Republic of Iran in Accra - Accredited to Togo and Liberia (Access to previous account @IRANinGHANA is lost)
Yuta Saito @kateinoigakukun
3K Followers 1K Following Compiler Toolchain Engineer @GoodnotesApp / Swift & Ruby committer working on WebAssembly support
sferrini @Simone_Ferrini
5K Followers 1K Following *OS Security Researcher & Director at @prdgmshift. Passionate about RE, fuzzing, hardware and low-level binary stuff. ʚଓ
razaborg @razaborg
464 Followers 938 Following Tweets are my own. Un jour j'irai vivre en théorie, parce qu'en théorie, tout se passe bien.
johnny @zeroxjf
4K Followers 172 Following iOS & MacOS Researcher (AI-Assisted) @trycua https://t.co/4vu4rvK5b5
chamaaaa @pppp46497
344 Followers 321 Following Security researcher (PhD D2) | Crypto CTFer @ full_weak_engineer & @_PwnSec_ | CB student staff ’24–’25
Dillon Franke @dillon_franke
2K Followers 432 Following Fuzzing, MacOS, vuln research @Google. Jesus Follower
arnaquemoisitupeux @arnaquemoistp
3K Followers 44 Following j'embête les brouteurs! ils me détestent, je les adore! Contact: [email protected] / [email protected] »
Nyxia🏳️⚧️ @cantstopnyxia
3K Followers 124 Following 18yo systems engineer • co founder of emexLabs • never bite into the hand that helped you (you know if I mean you)
Jeyanthan @jeynthan
21 Followers 271 Following
Iyed Mejri @t0m7r00z
245 Followers 455 Following Security Research Apprentice @RandoriSec, InfoSec Student @ecole2600, && CTF Player w/ @ProjectSEKAIctf
Today In Infosec @todayininfosec
40K Followers 1 Following Tweeting news from the world of information security that occurred or was announced on today's date in a previous year. Managed by @stevewerby.
RussianPanda 🐼 �... @RussianPanda9xx
19K Followers 595 Following badass @HuntressLabs | Researcher @ https://t.co/vqtwIGbXlW | Malware Addict | Volunteer @TheDFIRReport | YouTube: https://t.co/N8bPp4P37z
Zero Day Engineering @zerodayalpha
11K Followers 1 Following State-of-the-art vulnerability research & exploit intelligence • @alisaesage @zerodaytraining
celeste coenomia, 3rd... @vmfunc
23K Followers 1K Following "fluffiest computer hacker" - Malwarebytes 💕@computerphile 💕 @asriel_dev 💕 @sargon_64_
Asuka Nakajima | 中�... @AsuNa_jp
11K Followers 991 Following Senior Security Research Engineer @Elastic / BlackHat USA & Asia Review Board / CTF for GIRLS / 著書『サイバー攻撃』/ サイバーセキュリティに関する総務大臣奨励賞 / My tweets are my own opinion
Rui Ueyama @rui314
56K Followers 342 Following 米国Googleでソフトウェアエンジニア & スタンフォード大学コンピュータサイエンス修士 → 自分の会社 → 東京大学コンピュータ科学博士課程(現在) Creator of LLVM lld and the mold linkers
Lizynz @Lizynz1
646 Followers 258 Following GitHub: https://t.co/CxGUAGNwrd / Repo: https://t.co/gLKCBkCK2x
Ark @arkark_
2K Followers 882 Following Into experimental/deprecated features | CTF player | ex-traP
Michael Reeves @IntegralPilot
958 Followers 57 Following Teenage security researcher & systems developer. CVE-2025-43539, making rustc_codegen_jvm, working on Asahi Linux https://t.co/0NPoFmrES7 🇦🇺
sudox @kmcnam1
24K Followers 4K Following CCIEx2 #50931 and stuff Opinions are my own & not my employer I give @UwU_Underground root access. Can't stop the psyop. Assume most posts are sarcastic
quarkslab @quarkslab
13K Followers 13 Following Securing every bit of your data https://t.co/hqdd8jMkYM https://t.co/GOXPtukIXE
Damien Cauquil @dcauquil
333 Followers 51 Following Hacker, gamer, happy dad - Personal account, tweets not (always) IT security related and mostly in French
shimotan @shimosec
1K Followers 926 Following Security Engineer / Threat Intelligence / OSINT / Incident Response / CSIRT / SOC / CISSP / ゆるっとセキュリティブログやってます🇯🇵予備自補(サイバー)
x86matthew @x86matthew
23K Followers 206 Following system emulation / reverse-engineering / binary analysis. @the_secret_club
asymmetric research @asymmetric_re
5K Followers 0 Following Enabling secure innovation. Join us: https://t.co/q0zD93M8Aa
john @nyan_satan
17K Followers 149 Following demonic beast from another era (with F20.0) | https://t.co/W7w9FmL4Fd
らん @ran350jp
684 Followers 1K Following 某F社 | 立命館 情報理工学研究科 | 登録セキスペ | Seccamp'24ネクスト | CODE BLUE'24学スタ | Sustainable Software Development | ずとまよ 将棋 麻雀 | ※発言は個人のもので、所属する団体や企業とは一切関係ありません
Paradigm Shift @prdgmshift
1K Followers 0 Following Premium European cybersecurity research provider, powered by a world-class team with a decade-long track record.
UMA(ゆーま) @UMA_yumaSec
730 Followers 1K Following sec/PQC | 脅威分析 | 応用情報 | CODE BLUE24,25学スタ | JANOG56若者支援 | 日常版@uma_yuma08
Taku_Taku_Taku @Taku3Tech
371 Followers 875 Following R・B4・SN | ごはん・温泉好き | #競プロ (茶) / #TRPG | #codeblue '25 学スタ
International Cyberse... @icctokyo2025
583 Followers 7 Following 2025年11月開催International Cybersecurity Challenge TOKYO 2025の公式アカウントです。 The official account of the ICC TOKYO 2025.We will share the latest updates. #icctokyo2025You might like
