559 posts

3n

@3n_jin

infosec enjoyer

Katılım Kasım 2022

206 Takip Edilen17 Takipçiler

3n@3n_jin·1d

@brooklynnn666 @inawwya does the truth disturb you

English

897

kimberly lipp@brooklynnn666·1d

@inawwya im sorry but the way u guys talk is soo ick. “luckshit” …. SHUT UPPPPP

English

159

5.1K

Isabel@inawwya·1d

"hopecore" and it's a luckshit ok lmao

🎀prenee:3@prenee_colon3

hopecore

English

413

96.1K

3n@3n_jin·3d

@eyalsela dude isnt even trying to hide it

English

545

Eyal Sela@eyalsela·3d

User danielapolkasu0619-rgb on GitHub is trying to perform prompt injection in comments and submit malicious PRs to multiple crypto related projects

English

14.5K

3n@3n_jin·6d

cant you just not tell anyone you read them

Steve the Beaver@beaversteever

All good engineers know you should NEVER EVER read published patents

English

240

3n retweetledi

Glitchbyte@0xglitchbyte·30 May

What every programmer should know about memory Still one of the most goated reads

English

159

1.6K

142.5K

3n retweetledi

Washi@washi_dev·31 May

Custom attributes in #dotnet give me nightmares. Read my new blog post to learn why: 👉blog.washi.dev/posts/custom-a… #reversing #malware #pe #binary #asmresolver

English

4.1K

3n retweetledi

Vivek Galatage@vivekgalatage·31 May

If low-level systems excite you, then you will enjoy reading this branch prediction blog from cloudflare. blog.cloudflare.com/branch-predict…

English

559

37.3K

3n retweetledi

cr3ghost@cr3ghost·29 May

How Kernel Anti-Cheats Work: A Deep Dive into Modern Game Protection s4dbrd.github.io/posts/how-kern… Author: @s4dbrd #Kernel #Anticheat #windows

English

240

23.9K

3n retweetledi

MatheuZ@MatheuzSecurity·28 May

Linux Kaspersky 0day: unloading LKMs directly from userspace. Kaspersky rejected my report, so I'll be publishing the full technical write-up soon #Linux #Kernel #0day #VulnerabilityResearch

English

456

30.1K

3n retweetledi

Chris Wood@CWood_sdf·27 May

functional programming was made for people with absolutely atrocious memories

English

353

35.5K

3n retweetledi

theanepic@theanepic·27 May

"yes I stole your idea recreated it and made it open source"

ren@tinywingedangel

does anyone else find it weird that people’s first reaction to someone not deciding to open source their project is to recreate it and make it free

English

3.6K

48.9K

594.8K

3n retweetledi

h0mbre@h0mbre_·25 May

CTFs don't have to die. They just have to become like chess. Have more events in person, easier to enforce no LLMs. Have heuristics for online play, honor system, etc. Any online competitive format is subject to cheating, yet plenty of competitive arenas still exist.

English

146

9.5K

3n retweetledi

kshitij vaze@VazeKshitij·23 May

THIS is what I pay my internet bills for man, fucking amazing stuff!!!!

AADITYANSHA@aadityansha_06

x.com/i/article/2012…

English

993

110.5K

3n retweetledi

HSVSphere@HSVSphere·22 May

security.lockKernelModules = true; on NixOS Also better because it sets up the systemd unit and orders the execution properly.

ValdikSS@ValdikSS

Super secret method to block most of the Linux exploits in obscure modules without manual labor of recompiling the kernel or picking only selected ones: Run on boot: sleep 10m && echo 1 > /proc/sys/kernel/modules_disabled This will prevent new kernel modules from being loaded.

English

193

15.5K

3n retweetledi

Anderson Nascimento@andersonc0d3·21 May

Memory Corruption Attacks - The (almost) Complete History media.blackhat.com/bh-us-10/white… Memory Errors: The Past, the Present, and the Future⋆ isg.rhul.ac.uk/sullivan/pubs/… Why is memory safety still a concern? cs.columbia.edu/~mtarek/public…

English

214

8.2K

3n retweetledi

DeltaWave0x 🇮🇹@DeltaWave0x·21 May

The fuck you mean "unsigned void*"

English

941

57.8K

3n retweetledi

J⩜⃝mie Williams@jamieantisocial·17 May

@shenetworks .@hasherezade's content is 🤌 ++you can hop through the other projects for more excellent examples to study github.com/hasherezade/ma…

English

143

6.3K

3n retweetledi

tmctmt@tmctmt·15 May

Mullvad exit IPs are surprisingly identifying tmctmt.com/posts/mullvad-…

English

250

2.5K

821.5K

3n@3n_jin·13 May

director just asked me to implement ISP monitoring for laptops at the company i have zero idea what he intends to do with that information but i guess thats not my problem

English

3n retweetledi

Alexandre Borges@ale_sp_brazil·12 May

The Exploiting Reversing Series (ERS) currently features 1051 pages of exploit development based on real-world targets: [+] ERS 09: exploitreversing.com/2026/04/28/exp… [+] ERS 08: exploitreversing.com/2026/03/31/exp… [+] ERS 07: exploitreversing.com/2026/03/04/exp… [+] ERS 06: exploitreversing.com/2026/02/11/exp… [+] ERS 05: exploitreversing.com/2025/03/12/exp… [+] ERS 04: exploitreversing.com/2025/02/04/exp… [+] ERS 03: exploitreversing.com/2025/01/22/exp… [+] ERS 02: exploitreversing.com/2024/01/03/exp… [+] ERS 01: exploitreversing.com/2023/04/11/exp… Now is the time to take a break to dedicate all my energy and focus to security research and new projects that will be announced in the coming weeks and months. Have a great day and enjoy reading. #exploit #exploitation #windows #chrome #macOS #iOS #hypervisors #vulnerability #research

English

135

408

19.6K

3n retweetledi

LaurieWired@lauriewired·12 May

the most low-effort / high reward thing you can do for security is installing the Russian language pack (not even joking, it's ridiculous how often that prevents execution)

Microsoft Threat Intelligence@MsftSecIntel

Microsoft is investigating mistralai PyPI package v2.4.6 compromise. Attackers injected code in mistralai/client/__init__.py that executes on import, downloads hxxps://83[.]142[.]209[.]194/transformers.pyz to /tmp/transformers.pyz, and launches a second-stage payload on Linux. The file name transformers.pyz appears deliberately chosen to mimic the widely used Hugging Face Transformers library and blend into ML/dev environments. The main payload is a credential stealer, but it also includes country-aware logic; it avoids Russian-language environments and contains a geo fenced destructive branch that has 1-in-6 chance of executing rm -rf / when the system appears to be in Israel or Iran. To mitigate this threat: isolate affected Linux hosts, block 83[.]142[.]209[.]194, hunt for /tmp/transformers.pyz, pgmonitor[.]py, and pgsql-monitor.service, and rotate exposed credentials.

English

146

972

13.8K

1.5M

Keşfet

@brooklynnn666 @inawwya @eyalsela @s4dbrd @shenetworks @hasherezade @elonmusk @BarackObama