Matthew Toussain
@0sm0s1z
Followers
6,331
Following
1,737
Media
1,423
Statuses
8,589
Founder @_OpenSecurity_ // Former @BHInfoSecurity // Former SANS // Former USAF / Former me… #RedTeamFit /
Seattle, WA
Joined September 2010
Don't wanna be here?
Send us removal request.
Explore trending content on Musk Viewer
#IanxSB19xTerry
• 272964 Tweets
#MOONLIGHT_MVTeaser
• 136185 Tweets
Rio Grande do Sul
• 116309 Tweets
Boeing
• 101794 Tweets
Suho
• 86184 Tweets
RPWP CONCEPT PHOTO 2
• 57854 Tweets
プロフェッショナル
• 56611 Tweets
joongdunk love workpoint
• 39527 Tweets
青山先生
• 29967 Tweets
عدنان البرش
• 26208 Tweets
#無責任でええじゃないかLOVE
• 25413 Tweets
Indonesia vs Irak
• 19379 Tweets
YOUNG K
• 16054 Tweets
VACHSS
• 14783 Tweets
Pinned Tweet
Red teamers are always asking whoami, but they never ask howami 😭
22
76
631
3
28
162
I walk out of every conversation about cybersecurity in hospitals with an overwhelming feeling of existential dread.
61
179
2K
Make the Blue Team think you've owned the entire environment without shell!
cat ips.txt | % {New-EventLog -LogName Security -ComputerName $_ -Source mimikatz.exe}
16
124
520
Can we all just take a moment to agree… infosec is a joke.
79
22
421
I've been working on a thing...
If you had an open source general-purpose vulnerability scanner. What would you need it to do?
67
37
405
I’m such a creep. I got a text from a random number, 5mins of OSINT later I know who they are where they’re from and what they’re doing. Why am I like this?
25
15
327
I absolutely despise password age requirements! I just updated a password adding 1 to the end of it. It's insane that people in their right minds think that this makes systems MORE secure!
The truth is the reverse. It incentivizes a downward drift in password strength over time.
14
29
221
Weaponizing JavaScript, check.
C2 in the Browser, check.
Asynchronous, pivoting, system-level execution, checkity check!
#Prismatica
6
84
227
Password guessing, password cracking... your password should be strong against both!
13
39
217
A treatise on Neutering Windows Defender:
"C:\Program Files\Windows Defender\MpCmdRun.exe" -RemoveDefinitions -All Set-MpPreference -DisableIOAVProtection $true
4
69
199
Taking a GIAC certification exam soon? Checkout a test taking strategy guide based on my experiences as an instructor, course author, and
@SANSInstitute
Masters alumnus.
13
71
195
New talk.
Working title: Why Infosec was a Mistake
What do ya think?
47
7
175
I’m in a much better place emotionally since leaving
@SANSInstitute
. I didn’t realize what I’d been putting myself through until I left.
7
5
156
Welcome to Texas where my Uber driver just learned me something new right off of the flight in. Didja know that Dr Fauci invented the coronavirus in order to make money off of the vaccine?
I don’t even know what to say anymore. What the actual fuck!
26
12
133
I'm certain this was done by accident so I'll tell you what. Unfollow
@jonathandata1
and I (and I'm sure many others) would be happy to follow you back. He's a menace and you are (likely unwittingly) elevating his toxic message.
Please RT
#UnfollowTheCharlatan
#IStandWithMick
22
75
122
Actually, learned a lot of cool history from this video.
1
3
102
Well... here it is! 2021 InfoSec Recap. I can't believe just how crazy last year was when you look at it in one go!
9
31
98
This company is disgusting and should be ashamed of their actions. Good thing they were already shit vendor so my recommendations haven’t changed.
6
11
94
Achievement unlocked!!! Thanks so much to everyone who's helped me get here.
@r00t0v3rr1d3
@ericbassel
@edskoudis
@strandjs
@mikemurr
@MarkBaggett
@BryceGalbraith
@adriendb
@TimMedin
@MalwareJake
and of course
@PleasantML
#SANSHackfest
26
5
95
So I was thinking... running a ransomeware campaign against my local HOA would be for the greater good right?
8
2
80
@jschelert
But we could still harden and segment. One of the most common and yet bananas issues I’ve seen regularly is doctors checking personal email from lab equipment. 🤯
4
3
76
These people (REDACTED) are NOT all police. The mail domain is for ALL city employees. Social workers, public health personnel, etc... do NOT need this right now.
Please RT since this trash seems to be going viral.
2
44
76
The OSINT
@TraceLabs
CTF isn't just epic. It doesn't just make a real difference finding missing persons. It takes the most talented people in the world and challenges them to build their skills for good.
I've never seen a game save lives. Until now.
@WebBreacher
#OSINTForGood
0
28
79
I spent yesterday coding in Go, Node, and Python. It made me feel like a failure.
Today, I cleaned my kitchen and lifted heavy things. I feel like a boss.
#RedTeamFit
Moral of the story. Computers suck.
3
1
75
I'm an imbecile. I legit just wrote a full program to parse XML vulnerability data and then realized that the dataset is JSON. How can I be this dumb?
21
0
69
I love working incident response. It's a terrible, terrible thing to need, but as the security expert, you KNOW you're making a difference getting the victim back to 100%.
4
1
66
Funnily enough if I’d made a tweet like this while still working with SANS my Slack would have exploded with demands to delete it, insults, and ad hominem attacks. It’s refreshing not to have that.
I’m in a much better place emotionally since leaving
@SANSInstitute
. I didn’t realize what I’d been putting myself through until I left.
7
5
156
2
1
62
Here at
@WWHackinFest
@TimMedin
“You know what you can create in 9 months? A human… to apply patches for you”
Subtext: Tim supports child labor.
1
5
62
Need to expose a port listening on the loopback interface? Use netsh!
netsh interface portproxy add v4tov4 listenport=31415 connectport=31415 listenaddress=10.0.0.10 connectaddress=127.0.0.1
1
18
58
I've never had to cut a
@SANSInstitute
class short. It feels like an unfinished story, concluded with a cliffhanger, the invevitable climax waiting to crescendo.
My apologies to the class and many thanks to
@SANSAPAC
for getting me home while it's still possible!
7
3
60
Troubleshooting and understanding
#Nmap
with Packet Tracing!
@sanssec460
@SANSPenTest
@_OpenSecurity_
1
16
56
With everything going remote I made a video guide for everyone building their own
#sanscybercast
studios!
@SANSInstitute
@SANSPenTest
@sanssec460
If you stick around until the end you even get to see me beat up my puppies!
5
9
55
First EVER
@SANSInstitute
Team-Based Training course starts next week! Honored to be part of the team!
Yes, there are 4 instructors!
@edskoudis
@joswr1ght
@jeffmcjunkin
@0sm0s1z
9
14
55
This
#TacticsTuesday
is all about PowerShell! Ever wonder what the three key cmdlets are that map your journey through the shell?
2
14
53
Let's build an open-source vulnerability together!
2 weeks ago hundreds of you all participated in a discussion on what features a vulnerability scanner needs. I built some of those. I'll be hosting a discussion every week or two so that we can keep building!
Please RT!
3
33
51
This is officially the dumbest video I've ever done. Here's a teaser (audio encouraged).
#RedTeamFit
P.S. This is intended to be comedy... Should I quit my day job?
11
3
51
Looking at the phone after my chat at the
@WWHackinFest
#RedTeamRoundup
… wow!
Thanks ya’ll I guess it went well!
3
2
49
Here’s the math: (character-set)^(length)
26^32 = 1.901722457268e45
72^12 = 1.940840996177e22
The complex password is mathematically weaker than the long password by 23 orders of magnitude 😎
@reprise_99
@lomifeh
@malleableware
quick question: is a 32 character all lower case password less secure than a 12 character with upper, lower, number, and symbol? i would think no, but have been wrong before.
3
0
2
6
12
47
So… real talk. How often do we actually fire up Metasploit these days?
23
4
45
So I wanna talk about keyboards today. In infosec we live by them, and for so many years I was using a crappy one (that I thought was good). I can NOT describe how life changing it has been for me to build my own.
2
4
44
@bettersafetynet
Yeah, this is a negative security policy. It makes things worse by incentivizing weaker password selection. It’s kind of like password complexity in that way. Common to see and bad every time.
Further it operates under the assumption that key loggers aren’t a thing.
0
2
39
Gonna hack me some Kerberos, but which part to boop first?
Oh! Right! The KDC has all the floof.
2
3
43
I'm working on an infosec 2021 recap video, and... wow. It's more depressing than I figured it would be. Here's a snippet of my notes.
6
2
43
One of the things I love with
@SANSInstitute
courses is the focus on being vendor/product agnostic. So I figured... why talk one vulnerability scanner when we can dive into all of them!
2
12
43
@MalwareJake
I found reading this thread highly worrysome. As a community we need to realize that just because a criminal does something doesn't mean we have the green light to do it too.
1/
2
5
41
A year ago I had cute puppy, now I've got hideous monster... How does this even happen!?
15
0
42
I think I just gave the best talk of my life at
@texascyber
. It was just really freaking fun.
1
1
42
@bettersafetynet
I really hope this is the first and last post in the thread, because that would be extremely accurate.
1
1
40
Phew! We just finished up a huge
@SANSInstitute
workshop powered by
@RealTryHackMe
! It's a great platform for learning! I highly recommend it!
3
6
38
My
@SANSOffensive
blog just got published! Vulnerabilities don’t matter! Patching is terrible! Prove me wrong!
4
12
36
The new studio is working great! I may have gone a bit overboard though...
#Battlestation
@SANSOffensive
@sanssec460
10
3
38
This kind of sentiment grinds my gears. I’ve had panic attacks when getting in front of a 1k+ in person audience and I speak professionally.
When you go into a presentation at DC note that the presenter doesn’t do this for a living. They’re terrified… and excited.
3
1
36
@bettersafetynet
VLANs are like NAT. Not technically a firewall but accidentally stopping tons of bad stuff from reaching the target anyway.
3
0
36
Yes! 315lbs on the bench press. I’ve wanted to hit this one for 10yrs now!
#RedTeamFit
#WeHackHealth
1
0
37
8 hands on exercises on day 1? Let's go!
The SEC665 ranges (yep multiple unique environments for every day of the class) are orchestrated with a full SOC. For every exercise we do we also take a look at what a good blue team should see. Then we go farther!
Sneak peak of the new Advanced Red Teaming class in the works...
@SANSOffensive
The team
@_OpenSecurity_
have been working on this one for years, and we're so excited as it nears completion!
#SEC665
#cybersecurity
#sans
#redteam
#threatemulation
2
18
38
2
4
36
Penetration testing is an outstanding tool to prove that the level of risk assessed by our VM function is accurate.
Don't have VA/VM practices in place? Don't waste your money on a Pentest.
@sanssec460
@SANSPenTest
2
15
37
I am really excited to add this segment of content to the new version of
@SANSInstitute
#SEC460
!
The
@CISAgov
#KEV
list is a boon and a half for vulnerability assessors and managers!
3
14
36
#Voltaire
is the best tool I’ve ever written. I consistently get on consulting calls where there are straight up fans on the zoom. It’s the coolest most humbling thing ever.
#OpenSource
4
0
36
I can’t believe how far we’ve come at
@_OpenSecurity_
! First ever team retreat here at a resort in San Diego.
2
3
35
Need TFTP in Windows from the CLI?
dism /online /Enable-Feature /FeatureName:TFTP
1
13
34
I was an absolute DICK on the call I just got off of. I really don't want this to be who I am in the long term. You can be correct and not a jerk at the same time.
5
0
36
Can you hack my....?
@tarah
"It's the equivalent of asking somebody who spent three years perfecting their karate to beat someone up for you."
#SANSHackFest
1
5
36
I love giving talks, but if anyone tells you it’s easy ask them for their Whoop data 🤣
It auto-calculated a hardcore workout for me
#WeHackHealth
10
0
36
This has been a… day.
@delta
legit screwed me in Seoul and their reps either didn’t care or couldn’t do anything about it.
@KoreanAir
cared so much that they randomly found me in the airport 3hrs later (idk how). It’s a worse seat, but at least I’m headed home.
2
0
34
I just ran into a team of
@SANSInstitute
folk on the street. Holy crap I’ve missed recognizing people.
1
0
35
I’m ready for my close up. Boy, this panel is going to be off the chain.
9
2
35
My running fitness is continuing to crush my expectations. Broke 7mins / mile on mile 5 today and kept the pace sub 8 throughout. Didn’t think I could
#RedTeamFit
6
0
35
I was about to run ransomware on a machine that I'm in the middle of using for an engagement when I realize that that may not be the best idea I've ever had. Can we all take a moment to acknowledge how smart I am?!?
6
0
33
Doing an IR and the attacker left their privatekey on the target with ssh keys set up on their C2 server... I know I can't, but... I really wanna use it...
10
2
35
In answer to the questions about my death mobile AKA
#GhettoTesla
(name courtesy of
@edskoudis
) welcome to my garage
2
2
32
Doing post-prod on a new video. Here's a teaser. Also... new studio!!!
2
1
32
I’ve only ever heard bad things about Ohio, but in my short time here it’s been lit 🔥 Good weather (maybe lucky), Great people, Cool places, Comfortable vibe. Thanks for showing me your city
@flakpaket
@bettersafetynet
! I’ll definitely be back!
6
1
34
I know this sounds kinda pretentious, but y’all….
My arms are getting stupid thicc. 😅
#RedTeamFit
3
0
32
Anyone wanna big hunt ICS systems for 0-days with me? I just ripped this out of my car and figured what the heck, let’s go!!!
2
4
31
Want to know my most successful privilege escalation technique? Lateral movement.
We often get so stuck into our phases that we fail to look beyond them.
3
6
33
@MalwareJake
I would rarely say no to something of this sort, but with one of the primary problems affecting society today being fear, uncertainty, and doubt related to coronavirus... I'd say anything exacerbating that would be unethical. Certainly from a consequentialist perspective at least
2
3
32