Doc Dave @forensicdave
IR, Forensics, Security, MTB'ing! Australia Joined September 2009-
Tweets315
-
Followers585
-
Following999
-
Likes90
Patrick (@patrickwardle/(double-you.io)/@objective_see) closed out the biggest and best #OBTS yet! Deep diving into dynlib hijacking - does it haunt macOS 26 like a ghost from OSX years past, or has Apple finally buried it for good? 👻🪦 TL;DR - It's back baby!😎😱
Tara linkedin.com/in/tara-gould-… from @Darktrace - showed #OBTS how malware devs make simple mistakes! Tara unpacked the rise and messy fall of Cthulhu Stealer — a macOS credential thief undone by greed, bad opsec, and even an exit scam!
Matthais (@helthydriver)/iVerify(@IsMyPhoneHacked)/Dreams of (security.apple.com/research-devic…) - spoke at #OBTS about Hunting iOS malware - flipping the script using Malware Simulation - building fake spyware to reveal real forensic clues! Also an interesting site mythicalbeasts.dfrlab.org
Koh (@tsunek0h)/FFRI talked at #OBTS about reversing Xprotect Remediator, uncovering Swift-based detection logic, OCR-powered malware spotting 🤯, and Apple’s hidden threat intel (hello, TriangleDB (securelist.com/triangledb-tri… ). Koh has excellent slides - i.blackhat.com/BH-USA-25/Pres…
Marie (linkedin.com/in/marie-fisch…) encouraged everyone at #OBTS to enable Apple’s Lockdown Mode - her talk reverse-engineers how it *really* works on OSX 26 - what’s locked, what’s not! Great research building on @blacktop__'s from 2023 at @0x41con. 🔒🍏
Gregor Carmesin (linkedin.com/in/gregor-carm…) from TU Darmstadt showed #OBTS how you can ‘de-mangle’ the magic of Swift’s type metadata, descriptors and naming to make binary analysis actually readable again! #reverseengineer
Christine @x71n3 and JBO (@yo_yo_yo_jbo ) (& Alexia Wilson) from @Microsoft showed #OBTS how Spotlight just got too bright. 😬 They found a macOS TCC bypass (#CVE-2025-31199) that abuses Spotlight to get your private data - locally and remotely - and showed how to detect!
Sal (@malwarezoo) from @jamf gave an excellent talk at #OBTS of how Apple tracks and revokes malicious apps. But Revoked doesn’t always mean Vanquished! Sal found a Gatekeeper/CDHash weakness that brings blocked apps back to life — no re-signing required. #CVE-2025-43296
Kicking off Day 3 of #OBTS - LiveStreaming at youtube.com/@objectiveseef… Reminder that the exit event is at the Hotel Melia main pool at 1800!
Zhi Zhou (@codecolorist), whilst pursuing his side-passion of Filmmaking, told #OBTS how he discovered that Apple’s Compressor (part of Final Cut Pro) was harboring an unauthenticated 0-click RCE! It is still vulnerable - keep yer ‘shields up’ until Apple fully fixes!
Olivia (@OliviaGalluccii) from @datadoghq entertained #OBTS, showing us how macOS logs everything, diving into ULS, ESF, and TCC.db to hunt threats like Atomic Stealer & XCSSET, and using tools like Consolation3, eslogger, Mac Monitor to catch evil!
Think SUID exploits are dead? Pawel (github.com/GrosQuildu) from @trailofbits showed #OBTS how he cleverly chained four bugs in mDNSResponder/traceroute6/libinfo to get root on macOS (CVE-2025-31222, CVE-2025-30440, CVE-2025-24195) and more
Brandon (@PartyD0lphin) from @crowdstrike talked about many improvements and features in his most awesome opensource tool (Mac Monitor) - ( aka Procmon for OSX ) - & even pushed out version 2 in real-time at #OBTS! Check it out if you haven’t already! github.com/Brandon7CC/mac…
At #OBTS, Wojciech (@_r3ggi) from @SecuRingPL cleverly exposed different flaws in macOS location services, side-channels, leaky apps, and how attackers can track you without zero-days — and gave tips on how defenders can fight back.
At #OBTS, Rousana (@sha17883) from @crowdstrike proposed a new behavior-based approach to classifying grayware — using traits like deception, persistence, monetization, consent, and payload activity — useful for more nuanced, actionable detection!
At #OBTS John McIntosh (@clearbluejar) from @clearseclabs demo’d his pipeline that uses AI, ipsw and ghidriff to auto-extract and diff Apple firmware — rapidly reveals real code changes behind Apple security fixes and to get actionable root-cause intel. Super clever stuff!
Callista Gratz talked about Apple’s “Private Cloud Compute” - it wants to run your AI prompts in the cloud — without seeing them. ☁️🤫 At #OBTS we were treated to a crash course in blind signatures, crypto “games,” & how Apple’s custom auth protocol tries to keep data private
Jonathan Levin (@Technologeeks) gave an intriguing talk at #OBTS on how Apple has turned XNU into a fortress — one acronym at a time. From KTRR → SPRR → TXM → exclaves → conclaves → TPRO (!) He unpacked how Apple's refactoring and locking down the Darwin kernel...and..more
Shanna Niggans 🦄 @fancy_4n6
4K Followers 2K Following Digital forensics & incident response #DFIR + #CTI | Horse and Dog mum | Co-host @ComfyConAU | @torincybergroup | RB/SCP for @BlackHatEvents & @BSidesMelbourne
ᴉpᴉǝH 🐐💕 @summer__heidi
14K Followers 2K Following security! personal account. views are that of rustic australian countryside. nothing is an endorsement. why do you hate fun? for educational purposes only.
Kylie McDevitt @kylieengineer
5K Followers 925 Following Founder & organiser of Au hackercon @BSidesCbr | Tech startup founder @infosectcbr | Network Engineering & Infosec Researcher
Gyle 🌻🇵🇭🇦... @GyledC
2K Followers 930 Following Geekette | Übernerd | Mental health hacker | DFIR/OSINTforGood practitioner | Foodie | Public speaker | Tweets are my own.
🦇 𝖊𝖒𝖕𝖗... @empressbat
2K Followers 4K Following multi-award winning #cybercrime specialist, public speaker, author, artist, Fellow of @AISA_National, Adj. Lecturer Crim, gamer, founder @demystifycyber 2018
Jeremy Kirk @Jeremy_Kirk
14K Followers 7K Following Threat intel @Okta. Personal account. Interests: AI, cyber threat intelligence, cybercrime, data breaches, OSINT.
Professor Cassandra C... @DrCassCross
3K Followers 704 Following Criminologist @CrimeJusticeQUT Associate Dean (Learning & Teaching) @QUT Researching all things #fraud. Chairperson @PCYCQueensland. @ChurchillTrust fellow 2011
Brodie @bman013
327 Followers 760 Following Cyber Sec Professional; Mentor; Founder of Division 5 Pty Ltd; Founder of BSides Brisbane; SecTalks Organiser; CrikeyCon Crew; Domain Hoarder; Dog Dad (x2);
Eric 'Pinky' Pinkerto... @ericpink
609 Followers 2K Following I don't have pearls of wisdom, just marbles of malcontent, I resolve to store them here, less I loose them! @[email protected]
Sila Blal @mrchapoo1
0 Followers 22 Following
JD Hawke @jd_hawke
302 Followers 4K Following
Costin Raiu @craiu
39K Followers 8K Following Cybersecurity researcher focused on threat intel & APTs. Breaking down attacks, hunting threats, and crafting YARA rules. Buddy @ Three Buddy Problem
Sambam4mba @he31707900
17 Followers 2K Following Bor3d hacker of iot devices, security researcher? Security Breacher!
Mohammed Ismail @IsmailMoha75151
0 Followers 94 Following
Vikram Hegde @vikhegde
5 Followers 215 Following
AISecHub @AISecHub
9K Followers 8K Following 🚀 AISecHub | AI & Cybersecurity | Securing AI systems, and sharing insights on emerging challenges | https://t.co/YeYtqq5tJC
Mysticzen @sakkaramaat
53 Followers 880 Following
Amy Davies @72tggz9d5j
22 Followers 494 Following
Amse Reindert @AmseReinde44712
0 Followers 48 Following
拓海 @takumi12345555
6 Followers 216 Following
Matt Woodruff @mattwoodruff
189 Followers 451 Following Father, Husband, Christian, former Apple/Jamf, overall Geek, Football Player (Not NFL), Runner, focuses on Apple solutions
gitdown @gitdown489064
2 Followers 662 Following
yeshuibo @yeshuibo
108 Followers 7K Following
amats211.ron @amats_211
102 Followers 1K Following
Obinna Igbe @obi_wanKenobe
65 Followers 517 Following Security Engineering | DFIR | PhD | AI/ML in Security
Ed @ifthenecho
472 Followers 1K Following Caffeine addict. Seasonal health nut. Aspiring world traveler. Crop dusting ninja. Signature move: Party Houdini.
Sarah Edwards 👩�... @iamevltwin
20K Followers 2K Following Apple 4N6 Nerd, Head of DFIR @IsMyPhoneHacked, Author/Instructor @sansforensics FOR518 Mac/iOS DFIR. Opinions are mine. RT ≠ Endorse
Tara 👽 @tarag0uld
90 Followers 294 Following
Lazare @ixalle
20 Followers 664 Following
ripon dash @riponbk11
5 Followers 239 Following
yin @0x08048000
1 Followers 224 Following
Chris Michael Monagha... @Chris_duh
123 Followers 1K Following
geed atlantis @AtlantisGe41488
1 Followers 24 Following
ʕ•̫͡•ʕ•̫͡... @r_ajmi
683 Followers 2K Following ʕ•̫͡•ʕ•̫͡•ʔ•̫͡•ʔ•̫͡•ʕ•̫͡•ʔ•̫͡•ʕ•̫͡•ʕ•̫͡•ʔ•̫͡•ʔ•̫͡•ʕ•̫͡•ʔ•̫͡•ʔ
Scott Bauer @ScottyBauer1
3K Followers 743 Following I find 0 days. Android/Linux Kernel/Crap written in C. Will trade 0 days for bottles of DRC
Riccardo @ReturnRei
93 Followers 731 Following Infosec, compsci, definitely not “cyber”. *nix boxes (Darwin and Linux) 🐧 🍎日本語少しOK
Rodrigo Branco @bsdaemon
13K Followers 4K Following Chief Architect, Security Research of BigTech Advisor of Grsecurity. BYOS Commitee Member of OffensiveCon, Langsec, DistrictCon, Secdev
M Vetta @MVetta1
45 Followers 955 Following
William Arnold @wmarnold88
0 Followers 987 Following
Kirk Bradley @KirkBradd
82 Followers 4K Following
christine 🌸💐�... @x71n3
1K Followers 894 Following 'Don't miss opportunities because you think that ideas aren't important unless they're complicated. Simple ideas are often the most powerful.' -Patrick Winston
vx-underground @vxunderground
440K Followers 363 Following The largest collection of malware source code, samples, and papers on the internet. Password: infected
Shanna Niggans 🦄 @fancy_4n6
4K Followers 2K Following Digital forensics & incident response #DFIR + #CTI | Horse and Dog mum | Co-host @ComfyConAU | @torincybergroup | RB/SCP for @BlackHatEvents & @BSidesMelbourne
Silvio Cesare @silviocesare
11K Followers 1K Following CTO of @infosectcbr. Co-founder of @bsidescbr. Still hacking.
Shane Huntley @ShaneHuntley
17K Followers 1K Following Security / tech guy. Google Threat Intelligence Group but tweets are my own.
ᴉpᴉǝH 🐐💕 @summer__heidi
14K Followers 2K Following security! personal account. views are that of rustic australian countryside. nothing is an endorsement. why do you hate fun? for educational purposes only.
SwiftOnSecurity @SwiftOnSecurity
411K Followers 9K Following computer security person. former helpdesk.
Florian Roth ⚡️ @cyb3rops
221K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
Jake Williams @MalwareJake
150K Followers 2K Following Breaker of software | VP R&D @hunterstrategy | CTI/DFIR | @ians_security faculty | Bookings: jake at malwarejake dot com | GSE #150 | He/him
Kylie McDevitt @kylieengineer
5K Followers 925 Following Founder & organiser of Au hackercon @BSidesCbr | Tech startup founder @infosectcbr | Network Engineering & Infosec Researcher
Gyle 🌻🇵🇭🇦... @GyledC
2K Followers 930 Following Geekette | Übernerd | Mental health hacker | DFIR/OSINTforGood practitioner | Foodie | Public speaker | Tweets are my own.
Sarah Young @_sarahyo
10K Followers 1K Following Security & AI stuff @microsoft | Co-host of @AzureSecPod | Mother of shibes | Mostly dogs, carbs & security posts | Opinions mine
Troy Hunt @troyhunt
250K Followers 1K Following Creator of @haveibeenpwned. Microsoft Regional Director. Pluralsight author. Online security, technology and “The Cloud”. Australian.
Chris Sanders 🔎 �... @chrissanders88
35K Followers 487 Following Ed.D. | Founder @networkdefense @RuralTechFund | Former @Mandiant, DoD | Author: Intrusion Detection Honeypots, Practical Packet Analysis, Applied NSM
Luke Stephens (hakluk... @hakluke
100K Followers 2K Following Hacker, marketer. I manage socials and marketing for cybersecurity orgs. Founder of @hacker_content and @haksecio
“Alex” @mangopdf
16K Followers 572 Following australia's 𝑜𝑛𝑙𝑦 hacker ✌️• hacking stories: https://t.co/CpNtyQpk5V 📝 • @purpleconnz vibe technician 💜• they/them • DMs open 👀 • [email protected]
Katie Nickels @likethecoins
55K Followers 3K Following Director of Intel at @redcanary. SANS Certified Instructor for FOR578: CTI. Senior Fellow at @CyberStatecraft. She/her. Mastodon: @[email protected]
Thomas Roccia 🤘 @fr0gger_
35K Followers 2K Following AI Security x Threat Intel · Threat Researcher · Creator of #Unprotect & #NOVA · Malware Warlock · Python 🧡 · Prev @Microsoft @McAfee_Labs
@mikko @mikko
225K Followers 946 Following Researcher and a best-selling author. Keynote talks at RSA, Black Hat & DEF CON. TED Speaker. Chief Research Officer at Sensofusion.
cje @caseyjohnellis
29K Followers 5K Following human | troublemaker & troubleshooter | founder @bugcrowd @disclose_io, advisor | pioneer of #bugbounty as-a-service | opinions CC0 1.0 | #hacktheplanet
Unprompted AU @UnpromptedAU
602 Followers 0 Following https://t.co/YGo0O2YvDi - Security conference with an AI focus based in Sydney, Australia. Sister conference to Unprompted.
SEAL 911 @SEAL_911
4K Followers 16 Following A @_SEAL_Org initiative. Contact the SEAL 911 team: https://t.co/uOIGCrTOYt
mikey @0xmachos
2K Followers 758 Following Former @AbertayHackers Vice Gaffer. Purveyor of macOS security & rum. @warstudies postgrad Terrorism, Radicalisation & British intelligence.
Brett Shavers 🙄 @brettshavers
40K Followers 953 Following Fell off a cliff. Swam with sharks. Dined with hitmen. Hung out with crime bosses. Bought and sold a ton of drugs. How the heck am I still here? #DFIR #USMC 🚓
Chris Michael Monagha... @Chris_duh
123 Followers 1K Following
RussianPanda 🐼 �... @RussianPanda9xx
19K Followers 595 Following badass @HuntressLabs | Researcher @ https://t.co/vqtwIGbXlW | Malware Addict | Volunteer @TheDFIRReport | YouTube: https://t.co/N8bPp4P37z
Who said what? @g0njxa
6K Followers 100 Following ChatGPT says I'm a cyber researcher :) | donate 💸 to g0njxa.eth 💖 | Bad student, enthusiast, defo not an expert DMs are open, feel free to reach! 😼☂️🟣
Mikhail Sosonkin @hexlogic
903 Followers 628 Following Protecting Apple users from hackers https://t.co/hr07Ntapbl
1377 High-yield Nukes @buptsb
2K Followers 1K Following
Guy @TheSecGuy
4 Followers 518 Following
tsunekoh @tsunek0h
894 Followers 139 Following Security Researcher, macOS, Arm-based Windows, @[email protected]
Tony Gorez @tonygo_
1K Followers 606 Following offensive security researcher | iOS - macOS | build Bare runtime at @holepunch_to
Olivia Gallucci ✨ @OliviaGalluccii
6K Followers 899 Following macOS Internals | #FOSS Advocate | Opinions ≠ Employer | @intelligentCTF @oghealthfitness | RIT | Security @ Datadog - Prev. Apple, SECUINFRA, US Govt
Ryan Dowd @_rdowd
522 Followers 86 Following Principal @HuntressLabs | Former Detection & Response Principal @CrowdStrike | macOS Security Enthusiast
Brian Goldstein @DirtyNerdy
488 Followers 719 Following
J @locknload
1K Followers 4K Following Just another dude.. techno | 5G security | Private5G | SOAR | ICS/OT | RE | MDM/IIoT | NTN | 6G-IA | #trustbutverify 🖖🔊📶💜🖤🎶
J @Morpheus______
26K Followers 0 Following An author that can't sell his books on AMZN anymore. Evolving far beyond Darwin. And no longer here. d750ba1de8af276f1bb6044ba1f61db5 !
Jonathan Bar Or (JBO)... @yo_yo_yo_jbo
4K Followers 1K Following Hacker, security researcher at @Crowdstrike. Ex @Microsoft Defender. Linux, Windows, Android, MacOS, iOS, ChromeOS, bare metal. 日本語オーケーです👌
Karim @karimelmasry42
44 Followers 174 Following Pentester (maybe). Reverse engineer (perhaps). Obsessed with @Apple products
Spark @SparkDev_
41K Followers 682 Following iOS Security Researcher && Developer. https://t.co/b8pwmHdT67
VoidTea🪶🐾 @its_void_tea
31 Followers 490 Following
Carlos Mayorga @Sud0Chul0
536 Followers 7K Following System Administrator | Fortinet | Azure | Entra | #cybersecurity
︎ @0xocdsec
4K Followers 8K Following ︎ 🏴☠️ 🇪🇺 💚 🇺🇦 | computers & features | 💚 🏴☠️ party | 603,628 km² https://t.co/F5dgX7AEoL
Chalie @pwnipc
2K Followers 1K Following Offensive Android Security Researcher, ARM assembly addict, Exploit Dev? and a part time CTF player @fr334aks.
Diego Provinciani @dprovinciani
134 Followers 242 Following
Darktrace @Darktrace
18K Followers 1K Following Global leader in AI cybersecurity, securing organizations by learning from unique data in real time to detect and counter threats with precision and speed.
Jérémy MIRRE @ifollownogod
440 Followers 5K Following French West Indies | Offensive Security @Verizon | Red Team, Purple & DevSecOps | Proud Staff @defcon11333
MH @MorpheusH3x
658 Followers 4K Following baby reverser, @bleizack, @securinsa, student @ ESNA • CTF @ret2school_fr • @infosec.exchange
Ricardo L0gan @l0ganbr
1K Followers 753 Following 🌎🇧🇷Geek and Hacker | macOS Security Researcher | Offensive Security Professional | Most of time fight Jiu-Jitsu, Capoeira and Running. Opinions are my own!
codecolorist@infosec.... @CodeColorist
6K Followers 1K Following
Datadog, Inc. @datadoghq
51K Followers 58 Following Datadog is the monitoring and security platform for cloud applications
clearseclabs @clearseclabs
177 Followers 1 Following Clear Security, Training, and Solutions Check out website for latest course offerings.
clearbluejar @clearbluejar
2K Followers 446 Following Security Researcher | Founder @clearseclabs | Author of #ghidriff | Agentic #PatchDiffing | Stuck in a loop: Build • Reverse • Learn • Share
Technologeeks @Technologeeks
8K Followers 1 Following #iOS/#OSX, #Android/#Linux #Internals & #Security.Consulting. Training. Unique #debugging tools for #MacOS/#iOS.
Adyen @Adyen
22K Followers 588 Following Meet the financial technology platform helping the world’s leading businesses achieve their ambitions faster. Developer news: @adyendevs Support: https://t.co/bICltDvkfP
Yarden H @yarden_ha
256 Followers 297 Following
Cellebrite Labs @CellebriteLabs
962 Followers 9 Following Official updates from Cellebrite Labs' experts. We craft Cellebrite extraction capabilities and accelerate justice for law enforcement organizations.
xiu @osint_barbie
2K Followers 564 Following GOOD GIRLZ LUV THREAT INTEL&MAC MALWARE 🤟🏼 opinions and tweets are my own
Moonlock Lab @moonlock_lab
2K Followers 79 Following Malware research lab @moonlock_com Assembled by @macpaw to detect and study cybersecurity threats.
Moonlock by MacPaw @moonlock_com
562 Followers 12 Following Cybersecurity app @macpaw 🇺🇦 ⚡Powering the Malware Removal module @cleanmymac 🧪Our advanced analysis of malware threats @moonlock_lab
Trends for United States
You might like
