Someone left a "secure" Russian phablet on the back of a bus in Salisbury, England. It was running Aurora OS, a so-called "trustphone" device for use by Russian Government and corporations... here's the flash ROM dumps for 4.0.2.249, 4.0.2.82 and 3.2.1.65. https://t.co/vsT6qkziyM

Telegram has launched a pretty intense campaign to malign Signal as insecure, with assistance from Elon Musk. The goal seems to be to get activists to switch away from encrypted Signal to mostly-unencrypted Telegram. I want to talk about this a bit. 1/

To our followers & fellow hackers: We are thrilled to share that the Skytalks experience will be returning to Las Vegas for "hacker summer camp", this time as part of BSides Las Vegas! full announcement to follow on our website, read it here: https://t.co/PTzwZ82HU1

📢Calling fans of #OpenSOC! As you know, OpenSOC has been retired, but @shortxstack and I are working on something new that will bring everything it had to offer and then some 🔥 Any interest in coming back to the defensive CTF battlefield? Maybe around DEF CON time? 😎

#threatintel someone just leaked a bunch of internal Chinese government documents on GitHub https://t.co/BO8N64A7kF

Our DLL loader + sideloading modules have been successfully tested against Crowdstrike with no detections.

Hello World and welcome to my Twitter takeover! I'm Juneau (@Jun34u_sec), a Bishop Fox pentester who's passionate about IoT/OT, LoLBins, and community! Outside of work, I'm a grad student and I run @DC214DFW. To see some of my work, check out my What The Vuln episode.

@0gtweet @hasherezade Load is a great regkey to look for in IR because in the usual case it doesn’t exist at all on modern Windows versions. It’s an old leftover that’s still supported for some backward reason

A few weeks ago I started to rewrite the Havoc Framework from scratch for various reasons. Redesigning the server architecture, RESTful API driven, and the client fully scriptable using Python (commands, events, UI). I wanna fully rewrite everything in the next ~2 months [1/11]

I just put together a #Havoc #C2 PR and plugin to spawn donut-generated shellcode in a new process. Will add some more features as time permits and if there's demand. https://t.co/yTT1C2FhxP #redteam #hacking

https://t.co/Jrv0caLEOo

Just under one month left to submit to our CFP, and I just *know* you've got something cool to talk about. https://t.co/Mo3uGXwPCg We've already got some great submissions but we need YOURS! #cc11

https://t.co/3ST2w53mVf

The Cartwheel Galaxy from the James Webb Space Telescope

EFF is excited to be in the expo hall @socallinuxexpo! Interested in joining? You can get 50% off tickets by using code "EFF" when registering online.

Seems twitter considers a link to noc[dot]social to be potentially harmful and doesn’t allow it. A full copy of the letter criticizing musk is at

When @elonmusk closes his purchase of @Twitter I will be deleting this account. I am on #Mastodon @char@noc.social https://t.co/e9GrNrOWXT

Putin’s confession of land seizures and comparing himself with Peter the Great prove: there was no "conflict", only the country’s bloody seizure under contrived pretexts of people’s genocide. We should not talk about "saving 🇷🇺 face", but about its immediate de-imperialization.

How does @SpaceX approach hardware and software design? Agile, scrum, SAFE, or something else completely?

LayerOne CTF...this Saturday at 10 AM. Join LayerOne Discord for more details.