Pit @suidpit
human, chaotic good | master-of-none expert | security researcher @ Shielder deda.lol Spira Joined May 2018-
Tweets97
-
Followers314
-
Following886
-
Likes101
🚨 New Open Source Audit Alert! 🚨 Shielder, with @OSTIFofficial & @CloudNativeFdn, audited @karmada_io: 🔍 6 issues found (1 high, 1 medium, 2 low, 2 info) ✔️ Most fixed, others planned. 🗣️ to @suidpit and @Th3Zer0 Full details in the blog post! shielder.com/blog/2025/01/k…
Cheers -- here in beautiful Bali 🏖️ for #theSAS2024 conference! If you happen to be here, please reach out and let's have a chat 🍻
@smaury92 10/10 would help resurrecting ancient techniques again
sudo iptables -A ESCALATION -s shielder -j ACCEPT
For the weekend, we gift you with not one, but TWO ways to escalate `sudo iptables` (+ a couple other boring preconditions) into a r00t shell - read how @smaury92 and @suidpit managed to climb your friendly neighborhood 🔥wall! shielder.com/blog/2024/09/a…
lua interpreters something something fakeobj addrof something something wasm something deda.lol/posts/2024-09-…
🍎 With many #macOS security mechanisms at work, one might wonder how malware manages to bypass them. Get ready for a deep dive into macOS security architecture and novel evasion techniques during Pietro Tirenna's (@suidpit) talk at #TheSAS2024. 🚀 Secure your seat: kas.pr/6pyu
During a recent engagement @Mindlaess_ hacked his way through @vtigercrm which led to discover a privilege escalation and a SQL injection. Learn more in the dedicated advisories: - CVE-2024-42994 #sqli shielder.com/advisories/vti… - CVE-2024-42995 #privesc shielder.com/advisories/vti…
dojo-yeswehack.com/challenge/play… not all strings are made equal
Back in December 2023 our researchers @Th3Zer0 @suidpit and @Mindlaess_ performed an audit sponsored by @awscloud and facilitated by @OSTIFofficial on boost. It resulted in 7 findings and 15 new fuzzers. The report is now public, check the details here: shielder.com/blog/2024/05/b…
Exciting news! We've just released a new blog post on mobile app security, where @suidpit and @Th3Zer0 used their intent-fu to discover vulnerabilities (CVE-2024-26131, CVE-2024-26132) in @element_hq, a @matrixdotorg client for Android. #writeup #CVE shielder.com/blog/2024/04/e…
We recently partnered with @OSTIFofficial to perform a security audit sponsored by @awscloud on @brefphp. The audit resulted in 5 findings promptly addresses by @matthieunapoli. The report is now public, check the details here: shielder.com/blog/2024/03/b…
Excellent writeup showing how to track down vulnerabilities in firmwares starting from CVEs through patch diffing Credits @suidpit and @Th3Zer0 shielder.com/blog/2024/01/h… #embedded #infosec #asus
And that's a wrap! Exceptional reports from exceptional #hackers 🥳 More content from @nullcon and #bugbountytips coming up ⏭️. Cheers to the amazing exploits 🎉 and to many more like these events to come. #HackWithIntigriti @Nestle
Hey hackers - attending @nullcon? Pop to say hi and talk about AppSec and VR! You can find @smaury92 @Th3Zer0 @suidpit @not4nhacker around 🖖🏿
We're announcing our second flagship "Hunting Zero-Days in Embedded Devices" training this year at @cybersaiyanIT, in Rome, 24-27th September!! 4 days of PWNING 💻 romhack.io/training/2024/… Contact us for limited offer discount codes, only 4 u, as our Valentine's gift ❤️❤️❤️
OMG, our "Cookie Crumbles" paper got into the Top-10 Web Hacking Techniques of 2023 by @PortSwiggerRes! Have a look at the paper if you haven't yet usenix.org/conference/use… and check the other outstanding finalists! Thank you ❤️
The results are in! We're proud to announce the Top 10 Web Hacking Techniques of 2023! portswigger.net/research/top-1…
Hip, hip, hooray! It's been 10 years of AppSec Ezine! Big shoutout to all who have been supportive along the journey and to the security community that made this project possible. Cheers 🥂 520th Edition: pathonproject.com/zb/?6ba3505270… Repo: github.com/Simpsonpt/AppS… #AppSec #Security
Ever wondered how to binary diff router firmwares to write n-day exploits? Learn how @Th3Zer0 and @suidpit combined unblob, binexport, ghidra, Qiling, and an Asus router to write an exploit for CVE-2023-39238. The outcome was unexpected ... 1/7 shielder.com/blog/2024/01/h…
Leonardo Porpora | @n... @n0sign4l
230 Followers 1K FollowingPetr Stuchlík @stuchl4n3k
125 Followers 185 Following I do the nifty network stuff. Tweeting in Java, Go, TS and Python. Security enthusiast. Collector of PCB pretties. Dev at NetrixOne. 🔑 0xADAB0057
Pierluigi Paganini - ... @securityaffairs
38K Followers 5K Following Founder of Security Affairs, CYBHORUS, and Cybaze. Director of the Cybersecurity Observatory at Unipegaso, Ethical Hacker, Security Evangelist, Security Analyst
twis @Twis65640Twis
1 Followers 523 Following
test domain @User2Micro
703 Followers 5K Following
karasuma @karasuma__2
4 Followers 444 Following
wa @Truths
3K Followers 2K Following
Sambam4mba @he31707900
17 Followers 2K Following Bor3d hacker of iot devices, security researcher? Security Breacher!
Victor Donald @donaldvictorrr
5 Followers 937 Following
Francesco Di Viesto @Frank_Di_Viesto
5 Followers 902 Following
Thomas Rinsma @thomasrinsma
1K Followers 348 Following Looking for strange loops and weird machines. Lead security analyst @CodeanIO.
DK @0xdarkking_
11 Followers 876 Following
Dwerfea @Dwerfea6528080
20 Followers 544 Following
Pamela Perez @PamelaPere74426
2 Followers 168 Following Recruiting web shell engineers to penetrate websites, with a monthly salary of up to $100,000. If interested, please contact https://t.co/vAEmZrHlwv
Gamal @_abdelnasser_
409 Followers 3K Following
$V @SteveVanasche77
195 Followers 2K Following
比个心 @vbigthing
51 Followers 4K Following
eARLY wITHDRAWL @shrug_off
607 Followers 2K Following kangaroo hacker scripkiddyoperator fake bot, just cuz :-/ buy #bitcoin
Franco Farnedi @ffarnedi
751 Followers 3K Following Preferisco essere in disaccordo con persone intelligenti che condividere opinioni con persone stupide.
Akash Kumar @0x1ak4sh
387 Followers 2K Following 🛡️HacktheBox & TryHackMe 🖥️ 🕵️♂️ Red Team Explorer 🛠️ 🔍 Currently diving into CPTS certification 🌐
Kubrin Georgiy @GeorgiyKubrin
4 Followers 686 Following
Ben @ben_leb
893 Followers 5K Following (bio)tech enthusiast, science lover, ci/cd/infrastructure/network/security, ... ‽
vit@void @vit_void
31 Followers 2K Following
OSTIF Official @OSTIFofficial
2K Followers 801 Following Non-profit org that connects open-source projects with security resources. We are the Open Source Technology Improvement Fund.
Gangetik Prophet🕊�... @0xojaxwi
74 Followers 2K Following Old-school OS & Offensive Security REsearcher | ⚡Kernel Pwner⚡
Luan de Mattos @luan_demattos
155 Followers 1K Following Cybersecurity Analyst | Reverse Engineering and Malware Analysis Enthusiast. Tweets are my own.
Janusz Niewiadomski @ph_nk
128 Followers 438 Following
Phishing Radar @PointerRadar
148 Followers 3K Following Linux | Ethical Hacker | Security Enthusiast | Python | Bug Hunter | sushi lover | 🍣 👾 🤖 🇨🇴
Mohsen Ahmadi @pwnslinger
792 Followers 4K Following Security Researcher, MS CS @ASU, @Shellphish, @riscure, @apple SEAR, @cisco; Entrepreneur @plugandplaytc 🇮🇷|🇺🇸
︎ @0xocdsec
4K Followers 8K Following ︎ 🏴☠️ 🇪🇺 💚 🇺🇦 | computers & features | 💚 🏴☠️ party | 603,628 km² https://t.co/F5dgX7AEoL
OSTIF Official @OSTIFofficial
2K Followers 801 Following Non-profit org that connects open-source projects with security resources. We are the Open Source Technology Improvement Fund.
solst/ICE of Astarte @IceSolst
31K Followers 2K Following Voidweaver @AstarteSecurity - Pentester turned seceng turned meeting canceller - meetup https://t.co/E4rlINC0U6 - conf tracker https://t.co/tReNhuhANF
aarya @gd3kr
13K Followers 1K Following three time hackernews survivor & alleged cybercriminal (almost sued by Universal)
Andy Nguyen @theflow0
69K Followers 445 Following The opinions stated here are my own, not those of my company.
Wyatt Walls @lefthanddraft
13K Followers 582 Following system: Tech, law, AI red-teaming assistant: |thinking| Posts of AI outputs do not imply endorsement (or belief) |/thinking|
Mohit Mishra @chessMan786
35K Followers 409 Following Author of https://t.co/07NIwlZY84 (Pre-Order) https://t.co/KqPhnwRQHD https://t.co/CJs1Dxg7jN https://t.co/ApMnKjaL0M https://t.co/FyktfjGPzF https://t.co/KwVc97PPp6 https://t.co/xuUOtxYkOc
Håvard Sørbø @hsorbo
328 Followers 21 Following mastodon: @[email protected] bsky: @hsorbo.bsky.social
Spinda 🐲🦊🏳�... @_spinda
320 Followers 56 Following please find me somewhere else. 【🐘 https://t.co/9lbJ052PsP】 【🦋 https://t.co/Fkx7zP9Yhl】
Gary @GaryOderNichts
2K Followers 41 Following Doing mostly Wii U related reverse engineering and security stuff. Fediverse: @[email protected] Bluesky: https://t.co/lNwHssfnzI
Paul Calcraft @paul_cal
6K Followers 5K Following AI is good & bad, actually. Tweeting about AI/ML methods, software dev, research, tech and society, social impact. 20yrs in tech, 10 in ML/AI, PhD in comp sci
h0mbre @h0mbre_
16K Followers 662 Following # Exploit Reliability Engineer # Developing a full-system snapshot fuzzer: https://t.co/mfVXhwoGYD # Avi: https://t.co/3fsQfVprCf
fail0verflow @fail0verflow
52K Followers 10 Following
Aleksei Kulaev @flat_z
13K Followers 1K Following Console hacker, former Kaspersky Team Lead of Exploits & Network Threat Detection, security researcher. For tips (thx!): https://t.co/VxJMiawFpP
Eugene Kaspersky @e_kaspersky
179K Followers 7K Following CEO of @Kaspersky. 30+ years in #cybersecurity. Views are my own
☠ Ragnar ☠ @gbergel
4K Followers 659 Following @8dot8 CoFounder & CEO, @info_CCI Coordinator, BoD in @Fnativodigital & @Whilolab, Cochair of the @ISC2 LAAC 📪https://t.co/Ru5FVy0OOk
HyperDbg @HyperDbg
4K Followers 2 Following We like hypnotizing computers. #HyperDbg https://t.co/FXulXKTGjp • https://t.co/u6lVGzQpCE • https://t.co/47t9Iyaigl
Daax @daaximus
12K Followers 407 Following reverse engineering • secure processor design • system emulation • µarch bugs @the_secret_club
Glitchbyte @0xglitchbyte
11K Followers 292 Following Infra engineer writing about software, tech culture, and Christianity.
hypr @hyprdude
3K Followers 856 Following vuln research+exploit dev | pwn2own {'24, '25}, Master of Pwn '25 | bordeaux enjoyer | friend of all cats | @SummoningTeam
Alex Plaskett @alexjplaskett
14K Followers 586 Following Security Researcher | Pwn2Own 2018, 2021, 2022, 2024 | Posts about 0day, OS, mobile and embedded security.
Soroush Dalili @irsdl
20K Followers 942 Following Hacker (ethical), web appsec specialist, trainer, tools builder & apps breaker 🕸️https://t.co/YipuTcYnWc🥷 🍏A dad-joke maker🍐
TheMagician @31337Magician
992 Followers 868 Following I'm The Magician, I pick locks, social engineer folks, & test pens. I only know #dadjokes. Built in Rick Roll. #Pentester #ADHD #ActuallyAutistic #Cyborg
Satoki@Kn0wl3dg3 @satoki00
5K Followers 600 Following Webアプリケーションつんつん職人 / Cyber Security Engineer / Bug Hunter / 株式会社Ikotas Labs 代表取締役 https://t.co/j1rlBEMeXN / 一般社団法人BunkyoWesterns 代表理事
Aliz (they/them pls) @AlizTheHax0r
1K Followers 1K Following Also https://t.co/Aq1HjG2fFq +same at bluesky. Curiosity/divergence/general hackery. Quite trans. they/them. Nonbinary, happily married.
haksauc3 @haksauc3
139 Followers 1K Following After welding & fitting pipe for 20+ yrs, I've been studying daily to become a Penetration Tester and help companies secure their networks by identifying vulns.
Mohamed Fodil @_public_void
2K Followers 677 Following iOS Programming ~ Reverse Engineering | Electronic-ST | WhiteHat | Bug Bounty Hunter | Acknowledged By Apple 🍏
CoolStar @CStar_OW
133K Followers 668 Following I make iOS apps & Windows kernel drivers. I make computers run software they weren't designed to. 3623 https://t.co/QQqWTKhhac main. 28. [email protected]
Ian Beer @i41nbeer
47K Followers 147 Following
Pedro Ribeiro @pedrib1337
9K Followers 354 Following Reverse Engineer | Director @ https://t.co/KuU3tiG1Om | Exploit Chef @FlashbackPwn
emma @carrot_c4k3
4K Followers 313 Following cyber torture pioneer. bug bounty billionaire. most controversial pwn2own winner (contested). en🇺🇸/ru🇰🇿. she/her 🏳️⚧️
Abkarino @AbkarinoMHM
5K Followers 209 Following SW Engineer, video game lover & hacker, I like to discover how things work, a former member of team Rebug, Team EgyDev Co-Founder. PayPal: [email protected]
Fabio Assolini @assolini
12K Followers 527 Following Cybersecurity Expert. Research Team Leader. Cyberthreats hunter. Infosec Speaker. Jesus follower 🇬🇧🇪🇸🇵🇹🇮🇹
Boris Larin @oct0xor
19K Followers 705 Following Former console hacker (PS3/PS4). Hunting in the wild 0-days at Kaspersky GReAT. All tweets are my own.
William Bowling @wcbowling
6K Followers 418 Following Head of Assurance at @zellic_io, a.k.a vakzz when doing bug bounties and CTFs with @pb_ctf - https://t.co/9bjECLAwXg
ROG Global @ASUS_ROG
1.1M Followers 334 Following The Official ASUS ROG Account. Join us on Discord https://t.co/5XXPrPYjEY For support, please go to https://t.co/xzem2yeEHg
Intel Gaming @IntelGaming
1.3M Followers 615 Following Official Intel Gaming | Products, Events, Contests & Deals For product Qs or customer support, please visit Intel Support: https://t.co/xE448mNFXq
Discord @discord
4.7M Followers 1K Following Where group chat is all fun & games. Need support? Reach us @discord_support
Cedric Halbronn @saidelike
4K Followers 882 Following AI-Enhanced Security researcher, Pwn2Own {2021, 2022}, #VR #RE #ED #AI (Mastodon: @[email protected])
Alvaro Muñoz @pwntester
13K Followers 511 Following Security Researcher with @XBOW. CTF #int3pids. Opinions here are mine! bluesky: https://t.co/9HRRzpBECt
Ian Carroll @iangcarroll
24K Followers 1K Following Founder at @SeatsAero. Travel/points, application security, security research, etc. https://t.co/q0VuCP7rXz
sferrini @Simone_Ferrini
5K Followers 1K Following *OS Security Researcher & Director at @prdgmshift. Passionate about RE, fuzzing, hardware and low-level binary stuff. ʚଓ
[email protected]... @opa334dev
72K Followers 328 Following
MiRO @MiRO92
14K Followers 222 Following iOS Tweaks Developer • #uYou • #Tranzlo • #Marker • #Shortmoji • #RGBoard • #FancySelection • #YellowPages • #iGotBlind and much more!
Zebra @getZebra
16K Followers 8 Following A modern, fast, and powerful open-source package manager for jailbroken iOS devices. Created by @willywurr and @andrewabosh.
TheSAS2026 @TheSAScon
4K Followers 258 Following #TheSAS2026 Speakers and agenda 👉 https://t.co/cVsRzXMGEv






























