NetSPI @NetSPI
The Proactive Security Solution | Securing the most trusted brands on Earth #PenetrationTesting #proactivesecurity netspi.com Minneapolis, MN Joined February 2009-
Tweets6K
-
Followers4K
-
Following537
-
Likes1K
NetSPI's Karl Fosaaen & Thomas Elling are taking the stage at #TROOPERS26. Topic: Modern Adventures in Azure Privilege Escalation Initial access. Escalation. Lateral movement. Persistence. And a new resource for exploiting Azure attack paths: ow.ly/B0t050Z8RxM
Journalist pretext + ProtonMail + Evilginx AITM = C-suite exec forwarding your phish to two vendors. Rafael Seferyan, Principal Tech Lead at NetSPI wrote a blog detailing the whole thing: ow.ly/o3At50Ze190
PATCH NOW! CVE-2026-20253 Splunk Enterprise Unauthenticated Arbitrary File Operations / RCE. This vulnerability allows any network-reachable attacker to create or overwrite files on the server without credentials. Immediate action is necessary: ow.ly/ijNi50ZbY5n
MFA was a strong control in the environment. It was also the key to breaking it. Legacy NIS + Duo Auth Proxy + a RADIUS shared secret = full domain compromise. New technical blog walks the full attack chain from unauthenticated Apache NiFi RCE to DCSync: ow.ly/1qCO50Z92mM
NetSPI Labs Researcher, @WebbinRoot, talks today at 11:40am PT. Live stream his session on OCInferno, an enumeration and graphing framework using OpenGraph for BloodHound-style attack path analysis: lnkd.in/gAcBvNCf
Tomorrow (June 1) is fwd:cloudsec North America! If you can't be there, watch the live stream: Day 1, Room 1: youtube.com/live/w4FxLj4Bm… Day 1, Room 2: youtube.com/live/o5xM78udB… Day 2, Room 1: youtube.com/live/cw4O7wJsv… Day 2, Room 2: youtube.com/live/EM5SzIjOg…
Employees are trained to be skeptical of suspicious emails, but physical phishing vectors are a blind spot. Attackers are getting creative. See how a fortune cookie in a breakroom led to harvested employee credentials: ow.ly/ICJ250Z4PE0
Your external attack surface changes every time you deploy something new. Attackers notice. NetSPI's continuous external pentesting identifies and validates real risk across your internet-facing assets as they change, not months later: ow.ly/uNMQ50Z1aL1
Critical Drupal + PostgreSQL SQL injection critical vulnerability. Unauthenticated attackers can run arbitrary SQL queries, leading to full database compromise or RCE. Actively exploited in the wild. Patch now. ow.ly/NuyZ50Z4sCw #Drupal #CVE #proactivesecurity #PatchNow
Finding vulnerabilities is only half the battle. Getting them to the right team fast enough is where most programs break down. NetSPI's agentic MCP integrations automate that handoff, no manual data entry required. Learn more: ow.ly/3aik50Z1aHr
UEFI flaws hide before your OS even loads. NetSPI's Larry 'Patch' Trowell built a blueprint for finding them without physical hardware. Read more: ow.ly/nzg250Z2Rfr
New Hack Responsibly podcast episode 🎧 @kfosaaen talks to James Albany. Topics: continuous testing, AI in pentesting, overlooked attack surfaces, and breaking into a data center with a credit card. Listen here: ow.ly/jQzZ50Z2Gtb #podcast #hackresponsibly
Cloud misconfigurations don't wait for your next scheduled test. Neither should your security program. NetSPI's continuous cloud pentesting catches excessive permissions, exposed services, and misconfigurations as they emerge: ow.ly/rLsE50Z1aCa #CloudSecurity #Pentesting
Continuous pentesting keeps visibility current as your attack surface evolves. NetSPI finds real risk as it appears, not months later. Learn more: ow.ly/sN9n50YZ85s #continuouspentesting #proactivesecurity
Automation creates noise. Point-in-time testing leaves gaps. The answer is continuous, human-validated security testing. NetSPI's Continuous Pentesting finds and validates real risk as your environment changes. Read more: ow.ly/FYCZ50YY9Es
NetSPI launches AI-powered Continuous Pentesting. Your attack surface never stops evolving. Your security program shouldn't either. Human-led. AI-accelerated. Continuously validated. Learn more: ow.ly/ixUJ50YY9uK
#WorldPasswordDay: even mature orgs face credential exposure through third-party breaches, password reuse, or social engineering. Prevention matters. NetSPI's dark web monitoring helps you find out faster. ow.ly/vAHB50YW3hh
This allows an unauthenticated, remote attacker to execute arbitrary code w/ root privileges on affected devices. Active exploit has been confirmed.
Palo Alto Networks PAN-OS Buffer Overflow (CVE-2026-0300). This is actively being exploited in the wild and there are no patches available. Mitigations must be applied immediately. ow.ly/TfvC50YVQbR
PATCH NOW! CVE-2026-41940 | cPanel & WHM Authentication Bypass. This allows a remote, unauthenticated attacker to gain root-level admin access by injecting arbitrary values into a server-side session file, effectively bypassing all credential checks. ow.ly/59Sm50YTxlu
PATCH NOW! CVE-2026-35616 & CVE-2026-21643 – Fortinet FortiClientEMS. These vulnerabilities have been exploited in the wild & allow unauthenticated attackers to bypass API authentication & execute unauthorized code or commands. Learn more: ow.ly/aWWQ50YF1Lh
Justin Elze @HackingLZ
71K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Grzegorz Tworek @0gtweet
38K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
SwiftOnSecurity @SwiftOnSecurity
410K Followers 9K Following computer security person. former helpdesk.
Hacking Articles @hackinarticles
298K Followers 479 Following House of Pentesters Join us: https://t.co/Y6XOlSOA92
LuemmelSec @theluemmel
8K Followers 592 Following I speak BloodHound. Husband, Father, IT-Guy, Security-Noob Blog: https://t.co/PXB35KEqs6 GitHub: https://t.co/Unp9jZOpBn
Beau Bullock @dafthack
18K Followers 646 Following Hacker, trainer, and guitarist | Black Hills InfoSec #RedTeam | @BreakForge Training | Produces music to hack to at @N0BANDW1DTH
sn🥶vvcr💥sh @snovvcrash
12K Followers 494 Following Sr. Penetration Tester / Red Team Operator @ptswarm :: Author of the Pentester’s Promiscuous Notebook :: He/him :: Tweets’re my pwn 🐣
mgeeky | Mariusz Bana... @mariuszbit
15K Followers 957 Following 🔴 Offensive Security Developer @ Outflank, Red Team operator, ex-AV dev, ex- malware researcher 🫖 Green tea lover
Pentester Academy @SecurityTube
198K Followers 14K Following We help professionals acquire the skills, knowledge and certificates by teaching defense through offense to advance their careers in cybersecurity.
Jean @Jean_Maes_1994
12K Followers 1K Following @sansoffensive Certified instructor/SEC565 author/SEC699 co author https://t.co/cp5DerI3g4
Rob Fuller @mubix
78K Followers 25K Following Dad / Husband / Marine / Student / Teacher / @Hak5 / @NoVAHackers / @SiliconHBO / @NationalCCDC / @MARFORCYBER Auxiliary
Filip Dragovic @filip_dragovic
7K Followers 1K Following My research unless stated otherwise. My opinions are my own and do not represent the views of my employer. Red Team @MDSecLabs
Stephan Berger @malmoeb
29K Followers 1K Following Head of Investigations @InfoGuardAG https://t.co/A5lnFAu7eX
Karl @kfosaaen
5K Followers 948 Following VP of Research - @netspi Co-author of “Penetration Testing Azure for Ethical Hackers” (https://t.co/R8AjWWbSyj). @kfosaaen on most other platforms
non @non1926185
0 Followers 3K Following
Sudoku @SudokusFull
0 Followers 2K Following
TK-421 @TK421640425
0 Followers 42 Following
Mani @0x6d616e69
497 Followers 1K Following Red team operator, Security testing, cloud security, travel, sports, movies and politics..
pfransc @pfransces
42 Followers 2K Following
punt4n0 @punt4n0
108 Followers 5K Following
Linksy @Ajlinks
31 Followers 1K Following
duyvuong @gumgum_03
9 Followers 299 Following
Fernando Manzanarez @FernandoMa61306
16 Followers 3K Following
zahra @AlyZhra21373
35 Followers 962 Following
Enjoyer @GottenNathen
1 Followers 155 Following Software expert passionate about creating innovative solutions for complex problems. Always striving for excellence in code and design.
Adam Dawidziuk 🇵�... @Adam_Dawidziuk
226 Followers 4K Following Nothing provokes russia more than the policy not to provoke russia.
Joris Ignoul @IgnoulJoris
27 Followers 645 Following
Mike Bettle-Shaffer @MikeJB_S
273 Followers 1K Following tabletop gaming and biking {all views are my own} he/him
manikganesh @Manikganes
201 Followers 762 Following
MuslimSec @Muslimsec_blog
0 Followers 236 Following
Michael @4giornale
0 Followers 349 Following
★ Johanna ★ @JohannaHelenaa
289 Followers 530 Following
Sonjoy Paul @sonjoy_k_paul
55 Followers 2K Following Computer Science Ph.D. Student @TAMU | Bangladeshi 🇧🇩
Vix @VixWizzer
194 Followers 872 Following cybersec as passion, shitpost as personality all in on Cloudsec / Bug bounty / https://t.co/1NKed7mYNX
met4ll0f @met4ll0f
1 Followers 226 Following
Aptori @AptoriDev
7 Followers 22 Following Developer-First Application Security for the Shift-Left Revolution!
zrxrqzzz @zrxrqzzz
1 Followers 58 Following
tolen_info @m4rcg04m
0 Followers 23 Following
XK3NF4 @XK3NF4
77 Followers 85 Following Red Team Operator | OSCP | CRTO | CRTP | CPTS | Malware Development
theonexc @theonexc1
0 Followers 5K Following
Jean Devenish @JeanCDevenish
3 Followers 73 Following Cyber Intelligence Analyst Most risks are misread. I focus on what others ignore. If I don’t know it, I find it. - My postings reflect my own views only-
bad0ps3c @bad0ps3c
1 Followers 275 Following Offensive Security Researcher | Keyboard Punching Expert
Pentellect.io @PentellectIO
1 Followers 69 Following ~25% of pentest time goes to report writing. We built something about that → https://t.co/w2lASZdl5N
Mysterio Mafia @mysteriomafia
0 Followers 10 Following 📈 Digital marketing insights 🚀 Helping brands grow online 🧠 Sharing lessons on content & audience growth
surya .k @suryak056411567
4 Followers 528 Following
steve miller @SsSha001122
2 Followers 533 Following
Florian Hansemann @CyberWarship
88K Followers 46 Following Father, Founder @HanseSecure, Pentesting, Student, ExploitDev, Redteaming, InfoSec & CyberCyber; -- Mastodon: https://t.co/KFSKYUN98M
Dirk-jan @_dirkjan
30K Followers 206 Following Hacker at @OutsiderSec. Researches AD and Azure (AD) security. Likes to play around with Python and write tools that make work easier.
Florian Roth ⚡️ @cyb3rops
221K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
John Hammond @_JohnHammond
321K Followers 3K Following Cybersecurity Researcher @HuntressLabs Just Hacking Training @JustHackingHQ w/ @ethicalhacker https://t.co/UtsNJiyQtS && https://t.co/narO3sz7y6
rootsecdev @rootsecdev
27K Followers 1K Following Senior Security Consultant @TrustedSec | Military grade meme poster, researcher, cloud penetration tester, voider of warranties. My thoughts are my own.
PentesterLab @PentesterLab
205K Followers 0 Following We make learning web hacking and security easier. Online systems, code review, videos & courses that can be used to understand, test and exploit bugs!
Binni Shah @binitamshah
141K Followers 165 Following Linux Evangelist, Malwares, Security enthusiast ,Investor,World Economy, Finance,Contrarian , Philanthropist , Reformist , Sigma female [email protected]
SwiftOnSecurity @SwiftOnSecurity
410K Followers 9K Following computer security person. former helpdesk.
DirectoryRanger @DirectoryRanger
37K Followers 102 Following This account assembles and disseminates information related to Active Directory and Windows security.
Beau Bullock @dafthack
18K Followers 646 Following Hacker, trainer, and guitarist | Black Hills InfoSec #RedTeam | @BreakForge Training | Produces music to hack to at @N0BANDW1DTH
Jake Williams @MalwareJake
150K Followers 2K Following Breaker of software | VP R&D @hunterstrategy | CTI/DFIR | @ians_security faculty | Bookings: jake at malwarejake dot com | GSE #150 | He/him
Tib3rius @0xTib3rius
73K Followers 658 Following Cybersecurity Content Creator | UwU-Anointed Wapp King | DEF CON Gameshow Host | Ex-Brit | https://t.co/04RRExvxXj (he/him) 🇺🇸 @TheRealC3rul34n is bae 🥰
Jason Lang @curi0usJack
16K Followers 205 Following @TrustedSec Red Team lead | Hi-Fidelity trolling | Liberty/Privacy Enthusiast | Linux | Putting the "no" in nano | Avatar: https://t.co/3XHmKR8nCk
mgeeky | Mariusz Bana... @mariuszbit
15K Followers 957 Following 🔴 Offensive Security Developer @ Outflank, Red Team operator, ex-AV dev, ex- malware researcher 🫖 Green tea lover
Rob Fuller @mubix
78K Followers 25K Following Dad / Husband / Marine / Student / Teacher / @Hak5 / @NoVAHackers / @SiliconHBO / @NationalCCDC / @MARFORCYBER Auxiliary
Karl @kfosaaen
5K Followers 948 Following VP of Research - @netspi Co-author of “Penetration Testing Azure for Ethical Hackers” (https://t.co/R8AjWWbSyj). @kfosaaen on most other platforms
SpecterOps @SpecterOps
41K Followers 402 Following Creators of BloodHound | Experts in Adversary Tradecraft | Leaders in Identity Attack Path Management
Kurtis Shelton @Spankasaurass
4 Followers 1 Following
Dustin Volz @dnvolz
35K Followers 2K Following @nytimes Washington correspondent reporting on hackers and spies. Priors w/ @WSJ, @Reuters and @nationaljournal.
G0TH3R @G0TH3R_IO
22 Followers 216 Following Cyber Security Enthusiast Cloud-Village CTF Crew Member
Shelly Kramer @ShellyKramer
92K Followers 63K Following ARInsights' ARchitect Analyst Power 100 tech analyst | principal analyst @KramerandCo. Research #AI #Security #ESG #Collaboration #CX #DX #Cloud
Nick Williams @NWilliams_STrib
2K Followers 2K Following @StribVarsity Editor for @StarTribune. NOLA; L.A.; MKE; Tampa; Twin Cities 🏠. #NABJ & #SJI family. @MarquetteU grad. Contact: [email protected]
Mr. Minion @Mr_Minion
1K Followers 2K Following @[email protected] An agent against hate. @Hak4kidz co-founder. ISSA-Chicago Board. he/him/they/them
Ryan Hays 🍻 @_ryanhays
286 Followers 642 Following Attempting to commit awesome in the infosec space by day, while sipping fancy tequila by night 🕶️💻🍹 #CyberNinja #TequilaEnthusiast
Andy Greenberg (@agre... @a_greenberg
72K Followers 1K Following WIRED writer, author of SANDWORM and now TRACERS IN THE DARK: The Global Hunt for the Crime Lords of Cryptocurrency. Andy.01 on Signal. [email protected]
Dawn Armstrong @dawnarmstrong
163 Followers 469 Following Canadian transplant enjoying warmth & tech in Los Angeles. Tweeting about various tech including cyber security. Currently working @virginHyperloopOne
The Record From Recor... @TheRecord_Media
22K Followers 467 Following Covering the world of cyber and intelligence from every angle.
Tom Parker @tomwparker
720 Followers 337 Following Tom Parker is a technologist, cyber security expert, speaker & entrepreneur.
Hubble @gethubble
2K Followers 108 Following Hubble has been acquired by @NetSPI, the proactive security solution used to discover, prioritize, and remediate security vulns of the highest importance.
Mitigating Unauthoriz... @MUSAlliance
11 Followers 13 Following MUSA unites industry and regulators to combat unauthorized data scraping.
Amanda Florian 小爱 @Amanda_Florian
5K Followers 8K Following worship director, singer-songwriter, journalist, etc. bylines: @CNN @NYTimes @WashingtonPost @WIRED, @Forbes
Jared Atkinson @jaredcatkinson
10K Followers 2K Following | CTO @specterops | Host @dcpthepodcast | Ex PowerShell MVP | USAF Vet | FC Bayern Supporter | Language Learner 🇳🇴 🇮🇹 🇧🇷 |
Chris Thompson @retBandit
7K Followers 921 Following CEO @ RemoteThreat & Founder of Offensive AI Con | Former Head of X-Force Adversary Services | Black Hat Review Board | inveni et usurpa
TechTalk Summits @techtalksummits
2K Followers 1K Following TechTalk Summits answers the need for regional face-to-face events that address key tactical and strategic (mission critical) issues for tech decision makers.
Zeno Rocha @zenorocha
62K Followers 1K Following founder & ceo @resend // creator of https://t.co/pTVUtvKiTk • https://t.co/gYUH3pCK6K
Saltymiche @saltymiche
60 Followers 71 Following Mainframe hacker. Toucher of grass. Loudest introvert in the room. (☞ ಠ_ಠ)☞
Sam. Beaumont @PANTH13R
469 Followers 342 Following Cylon #13 & RayV creator. Personally: Professional Nomad & Rum Connoisseur. Professionally: Hardware, Embedded & Cyber Physical Systems Hacker & Researcher
Aaron Shilts @Aaron_Shilts
219 Followers 50 Following
eSecurityPlanet @eSecurityPlanet
7K Followers 2K Following The latest #cybersecurity news, products, and trends on the planet. 💻 🔑🌐
Cyber Tutor @thecybertutor
36 Followers 1K Following The cybersecurity tutor #cybertutor. The only Cyber Tutor that helps beginners demistify tech jargon one tweet at a time. #cybersecurity #infosec #cyberwarrior
The Turtle Moves @Scumble_lover
511 Followers 2K Following Current status: infosec noob with dreams of OSCP one day. This is predominantly a note/study tracker so don't expect amazing quips or lightspeed progress.
Hollie Hennessy @HollieHennessy
4K Followers 726 Following Lead Analyst covering IoT and OT Cybersecurity. London. Foodie. Classicist. Views are my own.
Jorge Orchilles @jorgeorchilles
11K Followers 470 Following SANS Principal Instructor & Author #SEC565 | #RedTeam | #PurpleTeam | #PenTest | #C2Matrix Creator | ATT&CK & Atomic Red Team Contributor | Published Author
The Millennium Allian... @Mill_All
3K Followers 4K Following Offering business leaders high-level learning and networking opportunities. New York + London📍
Nice @p3rsistent_
23 Followers 334 Following
autoXreport #CES2025 @autoXreport
137 Followers 674 Following Leading in #automotive & #transportation tech research by @compassintel #electricvehicles #V2X #automation #EV #AV #autonomous #connected #CES #IoT #fleets
Eleazar A. Perez @EleazarAPerez
137 Followers 2K Following
woodspeed @wucpi
434 Followers 939 Following 2019 Jenkins Security MVP | CAWASP, CARTP, CRT, OSCP, eWPT, eWPTX, eMAPT | Views and opinions are my own.
Andy Robbins @_wald0
36K Followers 2K Following Co-founder of SpecterOps. Co-creator of BloodHound. https://t.co/rub1i3Fs9g
Steve Wilson @virtualsteve
4K Followers 669 Following Leading the charge in AI security. Chief AI and Product Officer @ Exabeam, Author @ O'Reilly, Project Lead at OWASP #cybersecurity #ai #cloud
Ryan Platten @rp1atten
300 Followers 1K Following Professional Googler of all the things / Do stuff @binary_defense / Dad / Tweets are mine. ☧
insideAI News @insideAI_news
784 Followers 140 Following insideAI News is a news outlet that distills news, strategies, products and services in the world of AI.
Clayton Riness @ClaytonRiness
73 Followers 517 Following
Evanta is now Gartner... @Evanta
2K Followers 472 Following Follow the Gartner C-level Communities on LinkedIn in the link below
The Cyber Twins 👥�... @thecybertwins
508 Followers 164 Following Twin minds in IAM 🧠 | Cybersecurity starts with identity & the people behind it | No integrity in security without identity 🔑
r00t3d @r00t3dd
151 Followers 773 Following
🇺🇦Mike Saunders @hardwaterhacker
3K Followers 2K Following Fishing, hiking, photography, music, & cigars. Principal Consultant @RedSiege so I can pay for my hobbies. @hardwaterhacker.bsky.social
Jim Sykora @JimSycurity
3K Followers 2K Following I enjoy security, technology, learning, books, & the great outdoors. Trying to be human & kind. Opinions = mine. He/Him/Hän
Julian @Japluas93
134 Followers 895 Following To say that I am hacking my life away would be an understatement. Information Security and Cybersecurity Professional. Doc Keyboard. I'm your huckleberry.
dreadnode @dreadnode
3K Followers 113 Following Where security agents run. AI infrastructure to build, evaluate, and deploy with confidence.
cat name | less @catpipeless
38 Followers 519 Following
You might like
