Arris Huijgen @bitsadmin
Windows Offensive Security Enthusiast 🤠 Blog: https://t.co/CAwdjs2rKS GitHub: https://t.co/YG2YOxfosm bitsadmin.com Amsterdam, The Netherlands Joined March 2016-
Tweets240
-
Followers2K
-
Following107
-
Likes266
Malware authors often hide their tracks using COM, but our latest guide provides the roadmap you need to decode those cryptic vtable calls and finally see exactly what’s happening under the hood: cs.co/6014BDgbFs
Wrote a new blog about caveats with tools detecting(or mis detecting) relay exploit primitives against http(ESC8) and MSSQL endpoints. Kept noticing issues in tools reporting the absence or presence of vulns that I thought others may have noticed too abdulmhsblog.com/posts/pitfalls…
I just added @ExploitDB as additional source of exploits to #WESNG's collector making "Windows Exploit Suggester - Next Generation" even more comprehensive for identifying unpatched vulnerabilities and exploiting those. Happy hacking! 😎 github.com/bitsadmin/wesng
Small updated to DRSAT just pushed that will also allow Group Policy Editor and Certificate Authority / Templates MMC snap-ins work over a TCP only SOCKS connection. github.com/CCob/DRSAT
Many more examples are in the CHEATSHEET at github.com/bitsadmin/nopo… or use the Get-Help/man command followed by the cmdlet, e.g. man iwr. Regularly new cmdlets are added in NoPowerShell's DEV branch so keep an eye there to get the latest and greatest! 🔥 github.com/bitsadmin/nopo…
Because the last release of #NoPowerShell was 2 years ago and to celebrate the repo has 999 stars, I just merged DEV ➡️ MASTER and published Release 1.50 containing over 60 offensive cmdlets! 🥳 github.com/bitsadmin/nopo… See examples of some of the cmdlets below 👇
@malmoeb Interesting! Back in 2020 I wrote a blog on how to remotely over WMI create a shadow copy of SAM or NTDS.dit and use the @GMT syntax to download it over SMB. See details here: blog.bitsadmin.com/extracting-cre…
🚀 We just released my research on BadSuccessor - a new unpatched Active Directory privilege escalation vulnerability It allows compromising any user in AD, it works with the default config, and.. Microsoft currently won't fix it 🤷♂️ Read Here - akamai.com/blog/security-…
What if you skipped VirtualAlloc, skipped WriteProcessMemory and still got code execution? We explored process injection using nothing but thread context. Full write-up + PoCs: blog.fndsec.net/2025/05/16/the…
Blogpost from my colleague about what’s still possible with recently published COM/DCOM toolings, Cross Session Activation and Kerberos relaying 🔥 r-tec.net/r-tec-blog-win…
ProxyBlob is alive ! We’ve open-sourced our stealthy reverse SOCKS proxy over Azure Blob Storage that can help you operate in restricted environments 🔒 🌐 github.com/quarkslab/prox… Blog post for more details right below ⬇️
Look at those cute little blobs in your internal network. They look harmless, but how about the one carrying SOCKS? It's ProxyBlob, a reverse proxy over Azure. Check out @_atsika's article on how it came to exist after an assumed breach mission ⤵️ 👉 blog.quarkslab.com/proxyblobing-i…
Cool, novel, lateral movement technique by @william_knows by dropping a .dll file on a remote host obtaining code execution! 💡
.NET GAC and NIC hijacking for lateral movement: williamknowles.io/net-gac-and-ni…
I just published a blog post where I try to explain and demystify Kerberos relay attacks. I hope it’s a good and comprehensive starting point for anyone looking to learn more about this topic. ➡️decoder.cloud/2025/04/24/fro…
The S is for Security. How to use WinRMS as a solid NTLM relay target, and why it’s less secure than WinRM over HTTP. By @Defte_ Writeup: sensepost.com/blog/2025/is-t… PR to impacket: github.com/fortra/impacke… Demo: youtu.be/3mG2Ouu3Umk
John Hammond @_JohnHammond
321K Followers 3K Following Cybersecurity Researcher @HuntressLabs Just Hacking Training @JustHackingHQ w/ @ethicalhacker https://t.co/UtsNJiyQtS && https://t.co/narO3sz7y6
SwiftOnSecurity @SwiftOnSecurity
411K Followers 9K Following computer security person. former helpdesk.
Marc Smeets @MarcOverIP
5K Followers 517 Following Does a thing or two with red teaming @OutflankNL | part time race and drift car instructor
Cas van Cooten @chvancooten
10K Followers 670 Following @Offensys Co-Founder || Benevolently malicious offensive security enthusiast || OffSec Developer & Malware Linguist
n00py @n00py1
14K Followers 968 Following Retweeter of InfoSec/Offsec/Pentest/Red Team. Occasional blogger/Independent security research.
DebugPrivilege @DebugPrivilege
41K Followers 2K Following Not active anymore on X. Problem solver with a passion for troubleshooting complex issues.
an0n @an0n_r0
14K Followers 731 Following CRT(E|O|L) | OSCP | @RingZer0_CTF 1st (for 2yrs) | HackTheBox Top10 | RPISEC MBE | Flare-On completer | GoogleCTF writeup winner | SSD research | Math MSc |🇭🇺
Olaf Hartong @olafhartong
17K Followers 979 Following @FalconForceTeam | researcher with a camera | Microsoft MVP | Snow man role model
sn🥶vvcr💥sh @snovvcrash
12K Followers 495 Following Sr. Penetration Tester / Red Team Operator @ptswarm :: Author of the Pentester’s Promiscuous Notebook :: He/him :: Tweets’re my pwn 🐣
Swissky @pentest_swissky
22K Followers 1K Following RedTeam | Pentest Author of PayloadsAllTheThings & SSRFmap https://t.co/w1ZLRqoafG
Red @Dankolai
137 Followers 1K Following I am on all levels including physical a Cisco Phone | @_DC818_ | I like computers and the internet.
Openflaw @Openflaw0
15 Followers 2K Following
eycuifkvkv @fhiiyyf
1 Followers 236 Following
Yahya MA @YMoularad
2 Followers 379 Following
0xZox @ZiadHossam74
2 Followers 366 Following
twis @Twis65640Twis
1 Followers 523 Following
Onkar Kolekar @Onkar_1604
1 Followers 53 Following
Mouad معاذ Abouha... @_m00dy_
605 Followers 831 Following Security Reseacher/ Hacking is my motto , Marathon/Trailrunner/Climbing On my way to be a Fakir ... (#rev13 on freenode, a_m00dy_ on Instagram )
JACK D @Jackz_cn
18 Followers 37 Following Embedded systems Enthusiastic. Movie buff .ON MY REDEMPTION PHASE ⭐ 🙌🏻
azar-hackon @azar_hackon
68 Followers 1K Following shell:~$ Ethical Hacker; Pentester; C|EH & C|HFI red teamer
Geng Yang @geng_zast
48 Followers 535 Following Co-founder & CEO @zast_ai 50% Builder 🛠️ & 50% Breaker 💥| Building the immunity system for code | AI-Powered Vuln Research | Zero False Positives. 📍Bellevue
Lalit_m3c4 @Lalitbhosale6
54 Followers 1K Following Lets H4ck | Pentest | Research | Bounty | CTFs | Researcher 🄱🄴🄻🄸🄴🅅🄴 🄺🄰🅁🄼🄰
cm @ninebrainer
34 Followers 304 Following
nihil obstat @nckl_nihil
0 Followers 72 Following
SATAN @vlog_Mill
2K Followers 2K Following Philosophy . Thoughts . Perspective . web🧙 #cultfreedom #lifethingyeah 🃏Fc 🦅 Chelsea 💙The reply guy 🤡 no security, there’s only vulnerabilities, mass com🎤
B1@d3R00T @TFluffyPenguin
2 Followers 202 Following
Nick Duckett @NickDuckett1
82 Followers 1K Following CCNP Security & GIAC GPEN | GCFA | GNFA | GPYC | GPCS
VDThe @vincentdthe
89 Followers 588 Following Aspiring average IT user…I misuse tools for grown Cyber Security operators. Lurker and beer operator @APTortellini
leco @_lec0_
48 Followers 291 Following
Aitor Gonzalez @Vassily_Dark
116 Followers 421 Following
grape867 @grape6707
2 Followers 199 Following
Bl4ckM1rror @Bl4ckM1rror
50 Followers 456 Following Sometimes friend of ntdll, only when is unhooked | Red Team Operator | Malware Developer | Windows Infernals
dexter @dexter79331247
1 Followers 2K Following
Ankit Bharathan @noob_pikachu
240 Followers 1K Following OSEP | OSCP | OSCE | ECPPTv2 | ECPTx | EWPTx | CRTP | CRTE | Crest CPSA and CRT | Security consultant | Bug bounty hunter | CTF player- htb
Lantern26 @Lantern261
2 Followers 81 Following
dem3nt0r 🇻🇳 @dem3nt0r_rwx
7 Followers 369 Following
Florin @florin47394
2 Followers 345 Following
Jérémy MIRRE @ifollownogod
440 Followers 5K Following French West Indies | Offensive Security @Verizon | Red Team, Purple & DevSecOps | Proud Staff @defcon11333
n @6673
0 Followers 731 Following
eth @KHL_ETHA
10 Followers 3K Following
raul @27A7C9BB84F668D
3 Followers 308 Following
UnorganizedStanza @generatedguise
52 Followers 1K Following
blue_agapanthus @BlackSPLT
1 Followers 261 Following
Florian Roth ⚡️ @cyb3rops
221K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Florian Hansemann @CyberWarship
88K Followers 46 Following Father, Founder @HanseSecure, Pentesting, Student, ExploitDev, Redteaming, InfoSec & CyberCyber; -- Mastodon: https://t.co/KFSKYUN98M
Adam Chester 🏴�... @_xpn_
39K Followers 546 Following Hacker for Hire at @SpecterOps | Blog at https://t.co/tjfTOlmau2 | Insta at https://t.co/PqR6CZQ48T
DirectoryRanger @DirectoryRanger
37K Followers 103 Following This account assembles and disseminates information related to Active Directory and Windows security.
Grzegorz Tworek @0gtweet
38K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
Dirk-jan @_dirkjan
30K Followers 207 Following Hacker at @OutsiderSec. Researches AD and Azure (AD) security. Likes to play around with Python and write tools that make work easier.
Marc Smeets @MarcOverIP
5K Followers 517 Following Does a thing or two with red teaming @OutflankNL | part time race and drift car instructor
Oliver Lyak @ly4k_
9K Followers 267 Following Yet another security researcher 🔦 Github: https://t.co/7WFOFz17KI
Dominic Chell 👻 @domchell
18K Followers 553 Following Just your friendly neighbourhood red teamer @MDSecLabs @nighthawk_c2 | Creator of /r/redteamsec | https://t.co/3k3EBAZqGd | https://t.co/KwO2OwDOkl
DebugPrivilege @DebugPrivilege
41K Followers 2K Following Not active anymore on X. Problem solver with a passion for troubleshooting complex issues.
b33f | 🇺🇦✊ @FuzzySec
33K Followers 1K Following 意志 / mobile research @ ▓▓▓▓▓ / Team 501 / ex IBM Capability Lead & FireEye TORE / I rewrite pointers and read memory / AI Psychoanalyst / Teaching @CalypsoLabs
Stephan Berger @malmoeb
29K Followers 1K Following Head of Investigations @InfoGuardAG https://t.co/A5lnFAu7eX
Will Dormann is on Ma... @wdormann
27K Followers 1K Following I play with vulnerabilities and exploits. I used to be here on Twitter but now I'm here: @[email protected] https://t.co/hXggdAVkSQ
x86matthew @x86matthew
23K Followers 207 Following system emulation / reverse-engineering / binary analysis. @the_secret_club
🥝🏳️🌈 Be... @gentilkiwi
62K Followers 291 Following A kiwi coding mimikatz & kekeo github: https://t.co/eS3LVgU6i0 Head of security services @banquedefrance Tweets are my own and not the views of my employer
Cn33liz @Cneelis
13K Followers 598 Following Red teamer @ Outflank. Passionate about networking and cybersecurity | father of two superheroes.
The Hacker News @TheHackersNews
1.7M Followers 2K Following The #1 trusted source for cybersecurity news, insights, and analysis — built for defenders and trusted by decision-makers.
watchTowr @watchtowrcyber
12K Followers 12 Following watchTowr enables organizations to get ahead of in-the-wild exploitation with Preemptive Exposure Management technology.
Mouad معاذ Abouha... @_m00dy_
605 Followers 831 Following Security Reseacher/ Hacking is my motto , Marathon/Trailrunner/Climbing On my way to be a Fakir ... (#rev13 on freenode, a_m00dy_ on Instagram )
Linux Handbook @LinuxHandbook
159K Followers 78 Following Learn to use Linux commands, SysAdmin tools, Self-hosting, Docker and other DevOps stuff with us.
Orange Cyberdefense's... @sensepost
9K Followers 317 Following Work like hell, Share all you know, Abide by your handshake, Have fun. - Dan Geer
Steve Borosh @rvrsh3ll
1K Followers 735 Following The future is not set. There is no fate, but what we make for ourselves. - John Connor
S4ntiagoP @s4ntiago_p
3K Followers 851 Following Infosecing at @MDSecLabs, ex @CoreSecurity CVEs: -1
John Frankel 🚶�... @john_frankel
23K Followers 2K Following Longtime tech investor. Early stage venture capitalist. builder. Love working with energetic entrepreneurs working to change the world.
Peter Winter-Smith @peterwintrsmith
6K Followers 3K Following Security researcher & implant developer @mdseclabs; developing SAST @wsastsupport; malware, code analysis, appsec, cryptography. Trying to follow Christ.
Blaklis @Blaklis_
12K Followers 80 Following Security researcher - my researchs will be on https://t.co/2PnyCvqAIm Mostly inactive, soon replicated from BSKY.
Philip Elder @MPECSInc
3K Followers 415 Following Microsoft MVP '09-Present. We design & build HA solutions for on-premises, data centre, & hybrid. Workload Migration Specialists. Active Directory Security.
clearbluejar @clearbluejar
2K Followers 446 Following Security Researcher | Founder @clearseclabs | Author of #ghidriff | Agentic #PatchDiffing | Stuck in a loop: Build • Reverse • Learn • Share
Gi7w0rm @Gi7w0rm
19K Followers 822 Following Threat Intelligence Analyst | Projects: https://t.co/azRpNg9NJQ & https://t.co/SyvUfXpbmI | If I post false intel, contact me! Support me: https://t.co/5WgDqr0K8p 🇪🇺🇩🇪🇺🇦🌈
topotam @topotam77
5K Followers 686 Following All I know is that I know nothing. I like Windows, Active Directory and IoT/Hardware hacking. "Responsable mais pas coupable" de PetitPotam
TrainSec Academy - Wh... @TrainSec
958 Followers 85 Following Learn Windows Internals, Malware Analysis, Malware Development, Hardware Hacking & Code Development from @UrielKosayev, @zodiacon & @The_H1tchH1ker
BlueHat IL @BlueHatIL
6K Followers 534 Following
windbgtips @windbgtips
4K Followers 1 Following A collection of some tips & tricks for the world's best debugger
Marat Nigmatullin @_mnigma_
114 Followers 133 Following Hacking & Researching @falconforceteam | Ex-Unit 42
Cedric Van Bockhaven @c3c
978 Followers 354 Following
VbScrub @VbScrub
1K Followers 44 Following VB. Active Directory. HTB Machines. These are a few of my favourite things.
mr.d0x @mrd0x
45K Followers 300 Following Security researcher | Co-founder https://t.co/QxBlzp9A8w | https://t.co/zqMXQRZjQN | https://t.co/Fq7WSqTBva | https://t.co/eKezFcO6nd
Carsten @0xcsandker
2K Followers 179 Following Security enthusiast, Likes Windows Internals, AD & Entra — https://t.co/mVVbfkO7IO
Clément Labro @itm4n
7K Followers 164 Following Pentest & Windows security research (I stopped using this account in December 2022) ➡ Mastodon: @[email protected]
Harpreet Singh @TheCyb3rAlpha
121 Followers 272 Following Just another Researcher/Wannabe Red Teamer
Andrea P @decoder_it
9K Followers 322 Following Security Consultant @semperistech . Independent Security Researcher. Cyclist & Scubadiver. MSRC MVR 2022. "So di non sapere"
Antonio Cocomazzi @splinter_code
9K Followers 324 Following offensive security - windows internals | BlueSky: https://t.co/ytvJCoaF2c | Mastodon: https://t.co/hNIHa6L14d
Cobalt Strike @_CobaltStrike
6K Followers 34 Following Official account for Cobalt Strike. Benchmark red teaming tool known for its flexibility and powerful user community. Follow for new releases and other updates.
Forrest Orr @_ForrestOrr
5K Followers 529 Following Red Teamer, low level coding extremist and malware researcher. Windows exploit writer and bug hunter
Nightmare Eclipse @ChaoticEclipse0
13K Followers 578 Following
winterknife 🌻 @_winterknife_
5K Followers 5K Following low-level developer with a focus on 𝙸𝚗𝚝𝚎𝚕 𝚡𝟾𝟼 ISA devices running 𝚆𝚒𝚗𝚍𝚘𝚠𝚜 | R&D @BHinfoSecurity | https://t.co/lyJL0y7qRZ
spotheplanet @spotheplanet
12K Followers 152 Following Hacking the planet at https://t.co/ifUgKQucOt
Walied Assar @waleedassar
5K Followers 721 Following Reverse Engineer / Malware & Vulnerability Researcher / SOC Analyst / Pharmacist / Fisherman
CCob🏴�... @_EthicalChaos_
9K Followers 437 Following Ceri Coburn: Hacker | R̷u̷n̷n̷e̷r̷ DIYer| Vizsla Fanboy and a Little Welsh Bull apparently 🏴 Author of poorly coded tools: https://t.co/P6tT2qQksC
Matt Miller @epakskape
12K Followers 646 Following Killing bug classes and breaking exploits as part of @msftsecresponse. Adding more entropy to the Internet. https://t.co/J8GCGurGP3




































