James Forshaw
@tiraniddo
Followers
49K
Following
2K
Media
238
Statuses
7K
Security researcher in Google Project Zero. Author of Attacking Network Protocols. Tweets are my own etc. Mastodon: @[email protected]
United Kingdom
Joined July 2009
This new book has finally arrived. Thank's to @nostarch as well as @billpollock for making it happen as well as @Lee_Holmes as my tech reviewer.
49
186
1K
RT @YuG0rd: 🚀 We just released my research on BadSuccessor - a new unpatched Active Directory privilege escalation vulnerability.It allows….
0
373
0
RT @offbyoneconf: More goodies!! @tiraniddo , Keynote Speaker at @offbyoneconf books are available at @nostarch . Use our conference discou….
0
2
0
RT @offbyoneconf: @tiraniddo and his 🐼 panda kicks-off Day 2 @offbyoneconf 2025 with 𝐈𝐟 𝐲𝐨𝐮 𝐝𝐨𝐧'𝐭 𝐜𝐚𝐫𝐞 𝐚𝐛𝐨𝐮𝐭 𝐚 𝐯𝐮𝐥𝐧𝐞𝐫𝐚𝐛𝐢𝐥𝐢𝐭𝐲, 𝐰𝐡𝐲 𝐬𝐡𝐨𝐮𝐥𝐝….
0
5
0
RT @itswillis: Two new posts from @tiraniddo today:. on reviving a memory trapping primitive from his 2021 post.….
0
98
0
RT @__sethJenkins: My blog post is now live alongside @amnesty 's joint release, providing remarkable insight into an ITW exploitation camp….
securitylab.amnesty.org
This is the Executive Summary of Amnesty International’s report on surveillance and the suppression of civil society in Serbia. Please click here for the full report in PDF format. You can read the...
0
41
0
RT @itswillis: If you've ever wondered if one can determine a vuln from just the kernel panic logs, @__sethJenkins (feat. @tehjh & @benoits….
securitylab.amnesty.org
This is the Executive Summary of Amnesty International’s report on surveillance and the suppression of civil society in Serbia. Please click here for the full report in PDF format. You can read the...
0
10
0
RT @itswillis: Finding 0day is not the most impactful thing that Project Zero does 😲 — it's sharing knowledge 🧠. One part of that sharing i….
0
34
0
RT @itswillis: Project Zero Blogpost recap for the month: . — @j00ru doing another deep dive into the Windows Regis….
0
60
0
RT @nostarch: BOO! Our Halloween flash sale is haunting for 24 hours only. Load up on books and merch, then use cod….
nostarch.com
0
18
0
Put up the slides for my @MSFTBlueHat 2024 presentation on improvements to You can also grab v1.15 of from the PS Gallery which has the new features to generate proxy clients on the fly.
github.com
A .net OLE/COM viewer and inspector to merge functionality of OleView and Test Container - tyranid/oleviewdotnet
3
83
265
RT @spoofyroot: The new account type for services finally landed in WIP. Now when running Windows Protected Print (WPP) the service will ru….
0
18
0
It seems amazing to me that MS have spent years talking about this feature and have not fixed well known public bypasses. My similar Kerberos trick probably works as does if you accept a prompt :).
Administrator Protection, introduced in the latest Windows Insider Canary build, is a solid security enhancement. uhh. really?? can be bypassed with @splinter_code's clever SspiUacBypass tool. Check it out here:
1
71
224
RT @nostarch: A big thank you to everyone who visited us at @defcon! It's also not too late to shop our #DEFCON32 website sale. Get 32% off….
nostarch.com
0
17
0
RT @ga1ois: We finished our presentation at #BHUSA and the slides were published here: you can also find the lates….
github.com
Contribute to ga1ois/BlackHat-USA-2024 development by creating an account on GitHub.
0
24
0
RT @nostarch: Find us today at @defcon in Vendor Area East at Booth 29! Our author signings start with Tim Arnold (Black Hat Python, 2nd Ed….
nostarch.com
See you at DEF CON 33! Stop by our booth* in the Las Vegas Convention Center's vendor area to peruse new releases, meet Bill Pollock, chat with an editor, and snag some swag, plus: Get our exclusive
0
3
0
Just to remind people I'll be signing copies of my book at 12:30 at Defcon today at the @nostarch vendor area. See for details.
nostarch.com
See you at DEF CON 33! Stop by our booth* in the Las Vegas Convention Center's vendor area to peruse new releases, meet Bill Pollock, chat with an editor, and snag some swag, plus: Get our exclusive
5
1
15
RT @nostarch: Can't make it to @defcon? Enjoy our #DEFCON32 sale. Get 32% off site-wide with code DC32. Ends 8/14 at midnight PT. https://t….
nostarch.com
0
8
0
RT @natashenka: Wanna chat? Come by the Meet-up area in the Business Hall at 3 pm today. Greeting not required
0
1
0
RT @natashenka: Looking forward to sharing what I’ve learned from 10 years of Project Zero at Black Hat tomorrow. 11:20, Oceanside A. See y….
0
9
0