Andrea P @decoder_it
Security Consultant @semperistech . Independent Security Researcher. Cyclist & Scubadiver. MSRC MVR 2022. "So di non sapere" decoder.cloud Joined May 2009-
Tweets2K
-
Followers9K
-
Following320
-
Likes2K
@Pinperepette L’ultima volta che l’ho vista è stata al RomHack 2025, a settembre. Ho avuto il piacere di scambiare quattro chiacchiere con lei: davvero una grande persona e una grande giornalista.
0
0
2
460
0
View Details
Andrea P retweeted
Regarding Active Directory permissions, most people assume that a Deny ACE always wins. It doesn't! Windows stops the access check the moment enough rights are granted — any ACE after that point is never evaluated. New post: managedpriv.com/blog/acl-canon…
MSRC stories? I have several. One of the funniest: I submitted a vuln and was told it didn't meet the bar. Blogged about this finding. A few months later, someone else submitted the exact same vuln and suddenly it was confirmed, awarded a bounty, and assigned a CVE. 🤦♂️
@podalirius_ @thegrugq Why am I not surprised? This happened to me several times too. Tbh I care less about the CVE than the bounty. ;) That said, I never published 0days just because of MSRC, unlike the guy mentioned in the article.
@OfficialTozzi “Se torturi i dati abbastanza a lungo, confesseranno qualsiasi cosa.” Il punto non è negare che il clima cambi. È capire quanto dipenda davvero dall’uomo e quanto invece faccia parte delle normali variazioni cicliche della Terra. IMHO
@LucaSaugo Tutto vero. Il problema, però, è che certi fenomeni (Pogi & co.) non hanno seguito l’iter classico, ma hanno iniziato subito a dominare le GC. Il difficile è capire se a 19/20 anni sei davvero un fenomeno oppure no.
@Pinperepette Mi fa lo stesso effetto di una pizza con l’ananas.
@FilippoFacci1 Purtroppo è quello che si immaginava. Scendere a -60 con mono 12 lt è già rischioso; addentrarsi poi in una grotta è stato davvero imprudente. Dispiace dirlo, ma è così. La narcosi potrebbe aver indotto uno stato confusionale, complicando ulteriormente la situazione.
I think a lot of people publishing 0-days for childish reasons are mostly chasing visibility.
@Monscolombo @blu_mirtillo Dove hai letto che sono scesi con il mono 12 litri?
Turns out that the fix for the CVE-2020-17103 , the Cloud Filter HsmOsBlockPlaceholderAccess driver bug reported by @tiraniddo was never ported to Windows 11 / Server 2025 and still not fixed. LPE from user to SYSTEM 🤦♂️
@UK_Daniel_Card Have fun, you’re in one of the most beautiful cities in one of the most beautiful countries in the world 😉 Yeah, I’m Italian. 😅
@BleepinComputer The patch was never ported to w11/server 2025 , it was exploitable since the very first version of server 2025
Server 2019 before patch (CVE-2020-17103 , december 8th 2020) is vulnerable, after patch not. The patch was ported on 2022 too
@00011B1 @weezerOSINT @jon__reiter he original PoC for CVE-2020-17103 still works on a fully patched Windows 11 / 2025 system. Once you gain write access to .DEFAULT, there are several more or less sophisticated ways to achieve LPE.
@FilippoFacci1 Giusta la distinzione tra subacquea ricreativa e immersioni tecniche, che richiedono preparazione, pianificazione e gestione del rischio. “Immersioni in grotta il più sicuro è da soli.” cit. di un famoso speleosub.
vx-underground @vxunderground
436K Followers 356 Following The largest collection of malware source code, samples, and papers on the internet. Password: infected
Florian Roth ⚡️ @cyb3rops
220K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
chompie @chompie1337
88K Followers 1K Following hacker, exploit developer/weird machine mechanic head of X-Force Offensive Research (XOR) @IBM
Justin Elze @HackingLZ
70K Followers 5K Following CTO @TrustedSec | Former Optiv/SecureWorks/Accuvant Labs/Redspin | Race cars
Nicolas Krassas @Dinosn
157K Followers 763 Following Head of Threat & Vulnerability Mgmt @ Henkel AG & Co. KGaA https://t.co/NC1orlKZLB Posting content that I find interesting.
Adam Chester 🏴�... @_xpn_
38K Followers 538 Following Hacker for Hire at @SpecterOps | Blog at https://t.co/tjfTOlmau2 | Insta at https://t.co/PqR6CZQ48T
Oliver Lyak @ly4k_
9K Followers 267 Following Yet another security researcher 🔦 Github: https://t.co/7WFOFz17KI
Grzegorz Tworek @0gtweet
38K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
ippsec @ippsec
123K Followers 366 Following
mgeeky | Mariusz Bana... @mariuszbit
14K Followers 950 Following 🔴 Offensive Security Developer @ Outflank, Red Team operator, ex-AV dev, ex- malware researcher 🫖 Green tea lover
mRr3b00t @UK_Daniel_Card
122K Followers 8K Following Department of Cyber WAR. Member of the Counter Spider Collective. Wielder of AI to defend in Cyber Space. Ralph Vibe Specialist. VibeOps Operator!
Charlie Bromberg « ... @_nwodtuhs
16K Followers 660 Following Trying to hack the way we hack things 🏴☠️
sn🥶vvcr💥sh @snovvcrash
12K Followers 495 Following Sr. Penetration Tester / Red Team Operator @ptswarm :: Author of the Pentester’s Promiscuous Notebook :: He/him :: Tweets’re my pwn 🐣
Mike Felch (Stay Read... @ustayready
17K Followers 2K Following Offensive @ TrustedSec | Hacking since Renegade BBS backdoors | Prior CrowdStrike/BHIS | In Christ's grip | Fighter for truth | K1HAQ
Will Dormann is on Ma... @wdormann
26K Followers 1K Following I play with vulnerabilities and exploits. I used to be here on Twitter but now I'm here: @[email protected] https://t.co/hXggdAVkSQ
Dave Kennedy @HackingDave
231K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Pod. God + Family/Hacker/CSO/USMC/Intel/Fitness. Make the world a better place.
an0n @an0n_r0
14K Followers 732 Following CRT(E|O|L) | OSCP | @RingZer0_CTF 1st (for 2yrs) | HackTheBox Top10 | RPISEC MBE | Flare-On completer | GoogleCTF writeup winner | SSD research | Math MSc |🇭🇺
llgoon @llgoon1
41 Followers 3K Following
systemCall @systemcall30
194 Followers 4K Following Student of Malware and Medici to Some. An Oracle or Vessel to Others
moncef @mon_cef011
6 Followers 571 Following
Kristina Pappano @ktinapap
958 Followers 7K Following quant of quants // cyberpunk + cypherpunk princess👩🏻💻 @veevasystems alum 💿🪩📀 all thoughts/prayers mine
Mouhamed el amine Hmi... @ElHmila
0 Followers 151 Following
Openflaw @Openflaw0
13 Followers 2K Following
budrscotch @paulhshort
546 Followers 3K Following AI Automation & Systems Builder | Managed IT, Telecom Migration, Internal Platforms, Support Ops, and Enterprise Integrations
Brute Patel @Higgs_DS2
98 Followers 1K Following
Lemon @LemonFish740
0 Followers 75 Following
XD @L0rdMrcS
98 Followers 697 Following Um cara duma cidade numa ilha dum mundo que está deixando de ser azul. ;)
hacker bob @efnet_bob
463 Followers 1K Following admin https://t.co/RrCe94xVC7 2004-2005 / #efnet #phrack #el8 #phc
fozzy_bear @f0zzy_bear
1 Followers 180 Following
chen @chen9918b
2K Followers 770 Following redteam & code audit & bugbounty & Chinese history and culture enthusiasts & market analysis
The Android root advo... @666archhwh
167 Followers 782 Following Android enthusiast doing security research in it's free time who only cares about rooting/modding and so against companies and institutions that prevent it
edoardottt🐘 @edoardottt2
2K Followers 1K Following cybersec research & stuff, (open-source) software
Onede Sela @OnedeS7629
1 Followers 54 Following
Alison @alisonellison37
340 Followers 3K Following In the end, we only regret the chances we didn’t take — Lewis Carroll
bdcd @bdcdhm3z
4 Followers 250 Following
Muhammad Farid @Mu7ammadfared
10 Followers 1K Following
Amit Patole @pat71644481
73 Followers 3K Following
pf gamous @g4m0us
0 Followers 84 Following
Rodrigo Branco @bsdaemon
13K Followers 4K Following Chief Architect, Security Research of BigTech Advisor of Grsecurity. BYOS Commitee Member of OffensiveCon, Langsec, DistrictCon, Secdev
意难平 @0x3d9
15 Followers 1K Following
Tony (@[email protected]... @amdz23
255 Followers 2K Following @Android Security @Google | Security Researcher | Bureaucracy Hacker | Team Builder | Ex: @USArmy, @US_CYBERCOM, @NSAGov
Mohamed Lmouden @MohamedLmouden
101 Followers 2K Following
Tiến Đạt Đỗ @Tint1282208
1 Followers 383 Following
Mchenzie @Osenliahenry
93 Followers 2K Following
L1nkd34d @L1NKD34D
804 Followers 724 Following High Tech Low Life -|- Targeted Operations @TrustedSec -|- Dissonant Maiar -|- Hyper Active, Hyper Focused -|- Father of Four
Liteid @Liteid1
11 Followers 1K Following
vx-underground @vxunderground
436K Followers 356 Following The largest collection of malware source code, samples, and papers on the internet. Password: infected
Florian Roth ⚡️ @cyb3rops
220K Followers 3K Following Head of Research @nextronsystems #DFIR #YARA #Sigma | detection engineer | creator of @thor_scanner, Aurora, Sigma, LOKI, YARA-Forge | always busy ⌚️🐇 | vi/vim
chompie @chompie1337
88K Followers 1K Following hacker, exploit developer/weird machine mechanic head of X-Force Offensive Research (XOR) @IBM
Florian Hansemann @CyberWarship
88K Followers 46 Following Father, Founder @HanseSecure, Pentesting, Student, ExploitDev, Redteaming, InfoSec & CyberCyber; -- Mastodon: https://t.co/KFSKYUN98M
Adam Chester 🏴�... @_xpn_
38K Followers 538 Following Hacker for Hire at @SpecterOps | Blog at https://t.co/tjfTOlmau2 | Insta at https://t.co/PqR6CZQ48T
Oliver Lyak @ly4k_
9K Followers 267 Following Yet another security researcher 🔦 Github: https://t.co/7WFOFz17KI
Grzegorz Tworek @0gtweet
38K Followers 2K Following My own research, unless stated otherwise. Not necessarily "safe when taken as directed". GIT d- s+: a+ C++++ !U !L !M w++++$ b++++ G-
mRr3b00t @UK_Daniel_Card
122K Followers 8K Following Department of Cyber WAR. Member of the Counter Spider Collective. Wielder of AI to defend in Cyber Space. Ralph Vibe Specialist. VibeOps Operator!
sn🥶vvcr💥sh @snovvcrash
12K Followers 495 Following Sr. Penetration Tester / Red Team Operator @ptswarm :: Author of the Pentester’s Promiscuous Notebook :: He/him :: Tweets’re my pwn 🐣
b33f | 🇺🇦✊ @FuzzySec
33K Followers 1K Following 意志 / mobile research @ ▓▓▓▓▓ / Team 501 / ex IBM Capability Lead & FireEye TORE / I rewrite pointers and read memory / AI Psychoanalyst / Teaching @CalypsoLabs
Will Dormann is on Ma... @wdormann
26K Followers 1K Following I play with vulnerabilities and exploits. I used to be here on Twitter but now I'm here: @[email protected] https://t.co/hXggdAVkSQ
Dave Kennedy @HackingDave
231K Followers 6K Following Founder @Binary_Defense @TrustedSec Co-Owner https://t.co/HQC75WhdJh. @WeHackHealth Pod. God + Family/Hacker/CSO/USMC/Intel/Fitness. Make the world a better place.
an0n @an0n_r0
14K Followers 732 Following CRT(E|O|L) | OSCP | @RingZer0_CTF 1st (for 2yrs) | HackTheBox Top10 | RPISEC MBE | Flare-On completer | GoogleCTF writeup winner | SSD research | Math MSc |🇭🇺
Vincent Yiu @vysecurity
32K Followers 345 Following Director, Red Team / Offensive Security. Help organizations safeguard their businesses from the bad guys.
Antonio Cocomazzi @splinter_code
9K Followers 324 Following offensive security - windows internals | BlueSky: https://t.co/ytvJCoaF2c | Mastodon: https://t.co/hNIHa6L14d
Dirk-jan @_dirkjan
30K Followers 205 Following Hacker at @OutsiderSec. Researches AD and Azure (AD) security. Likes to play around with Python and write tools that make work easier.
Filip Dragovic @filip_dragovic
7K Followers 1K Following My research unless stated otherwise. My opinions are my own and do not represent the views of my employer. Red Team @MDSecLabs
Stefano Rizzato @stefanorizzato
8K Followers 497 Following Giornalista @Raisport | 6x @Olympics | 9x @giroditalia | 4x @letour | more coming
Ethical Hacker @offethhacker
2K Followers 6K Following
Horizon Secured @horizon_secured
2K Followers 192 Following Master Windows & Active Directory Security—From Defense to Attacks.
Jim Sykora @JimSycurity
3K Followers 2K Following I enjoy security, technology, learning, books, & the great outdoors. Trying to be human & kind. Opinions = mine. He/Him/Hän
Rémi GASCOU (Podalir... @podalirius_
8K Followers 715 Following Senior Security Researcher @SpecterOps | 3xMicrosoft Security MVP | Creator of opensource security tools 🎬 https://t.co/QaAENc4NcY | Views are my own
Fabian Bader @fabian_bader
10K Followers 889 Following #Security #Azure #AAD #MDE #M365 #AD #PKI #XDR #EntraID Microsoft MVP Tweets and opinions are my own @[email protected]
Synacktiv @Synacktiv
21K Followers 274 Following Offensive security company. Dojo of many ninjas. Red teaming, reverse engineering, vuln research, dev of security tools and incident response.
Shielder @ShielderSec
2K Followers 2 Following InfoSec boutique. Owning things since 2014. We love to go for the extra mile, where we usually find the best 🦟🐞🪲🪳🐛🐜🕷 the others miss.
Gianni Amato @guelfoweb
4K Followers 291 Following Cybersecurity Team Lead at CERT-AGID @AgidCert Agenzia per l'Italia Digitale (AGID) @AgidGov Tweets are my own
Stefania Constantini @Steficurling
6K Followers 13 Following • Curling athlete from Cortina d'Ampezzo 🥌Olympic medalist Beijing 2022 G.S. 👮Fiamme Oro 📩 : [email protected]
Matteo G.P. Flora @lastknight
35K Followers 2K Following Narrative #Governance & #AI Safety // Professor Adj, Founder, Investor // On TV and Podcast talking #TechPolicy
diMartedì @diMartedi
83K Followers 6 Following Il programma di Giovanni Floris in onda il martedì su @La7tv alle 21.15. https://t.co/n1AxBcasd9
Jeff McJunkin @jeffmcjunkin
12K Followers 4K Following Started in ops&blue, now I hack for a living. SANS author/instructor in Oregon. Founder: https://t.co/c36tmCXDpt. He/him. @[email protected]
spencer @techspence
16K Followers 3K Following 🛠️ Former Sysadmin, now Pentester | Microsoft MVP | Helping IT teams make their environment harder to attack | @SecurIT360 & @CyberThreatPOV
Insomni'hack @1ns0mn1h4ck
9K Followers 40 Following Security conference and hacking contest founded and organized by @orangecyberch since 2008 in Lausanne, Switzerland. CFW is now LIVE!
Swissky @pentest_swissky
21K Followers 1K Following RedTeam | Pentest Author of PayloadsAllTheThings & SSRFmap https://t.co/w1ZLRqoafG
Jean @Jean_Maes_1994
12K Followers 1K Following @sansoffensive Certified instructor/SEC565 author/SEC699 co author https://t.co/cp5DerI3g4
EZ @IAMERICAbooted
3K Followers 2K Following Like = tuning the algorithm. Janitor at Contoso & Fabrikam. Posts don't represent my employer(s).
Claudio Contin @claudiocontin
285 Followers 1K Following Co-Founder and Principal Consultant @ https://t.co/0iCTjR0eZw & https://t.co/wmKNX0k1qU
Rudy Ooms @Mister_MDM
9K Followers 1K Following Content Creator at Patch My PC | Reverse engineering Intune and Windows internals. Sharing what actually happens under the hood. https://t.co/dOe2yZkBpL
diversenok @diversenok_zero
2K Followers 39 Following A security researcher specializing in Windows internals working at @huntandhackett
Marianna Aprile @mariannaaprile
125K Followers 2K Following libreria: “Materiali Resistenti” (Piemme). @inondaLa7 con @lucatelese. #AmicieNemici con @dbellasio su Radio24; #MomentoCritico su @marieclaire_it
Tim Medin @TimMedin
18K Followers 595 Following Kerberoast Guy • @RedSiege CEO • IANS Faculty • Former SANS SEC560 Author, Senior Instructor • Packers Owner #GoPackGo • Work Req: https://t.co/ALJldLMDfZ
Mr.Un1k0d3r @MrUn1k0d3r
13K Followers 505 Following I don't know how to search on Google so I do research on my own and tweet about it. Hacking as a life style https://t.co/a05mevChzu
Adi Malyanker @RedPanda4Good
36 Followers 22 Following
RedTeam Pentesting @RedTeamPT
8K Followers 174 Following Official RedTeam Pentesting GmbH account -- Impressum: https://t.co/pS9oK62Lsu
Yuval Gordon @YuG0rd
1K Followers 426 Following Security Researcher at Palo Alto Networks. Opinions are my own.
Justin Bui @slyd0g
4K Followers 347 Following I break computers and skateboards | red/blue/whatever let's make security better | Offensive Security @Snowflake | Prev @Zoom @SpecterOps
Jason Lang @curi0usJack
16K Followers 203 Following @TrustedSec Red Team lead | Hi-Fidelity trolling | Liberty/Privacy Enthusiast | Linux | Putting the "no" in nano | Avatar: https://t.co/3XHmKR8nCk
x86matthew @x86matthew
23K Followers 204 Following system emulation / reverse-engineering / binary analysis. @the_secret_club
Matt Hand @matterpreter
10K Followers 196 Following Building @originhq | Author, Evading EDR @nostarch
📔 Michael Grafnett... @MGrafnetter
3K Followers 132 Following Principal Security Researcher @SpecterOps, Microsoft MVP Identity & Access
John Hammond @_JohnHammond
320K Followers 3K Following Cybersecurity Researcher @HuntressLabs || Just Hacking Training @JustHackingHQ w/ @ethicalhacker || https://t.co/UtsNJiyiEk || https://t.co/narO3syzIy
Yuki Chen @guhe120
10K Followers 279 Following 古河, Indepent security researcher, Bug bounty, ACG Otaku, Pwn2Own 15/16/17, PwnFest16,TianfuCup 18/19/20, 5 times MSRC MVR yearly Top 1. Got two pwnie awards.
Shortwave Observer @shortwave78
37K Followers 86 Following - Italian Shortwave Listener - Also interested in spy stories, intelligence stuff, aviation, navy, nature and archaeologyYou might like
x86matthew
@x86matthew
23K Followers
Chetan Nayak (Brute R...
@NinjaParanoid
32K Followers
S3cur3Th1sSh1t
@ShitSecure
28K Followers
Matt Hand
@matterpreter
10K Followers
Lee Chagolla-Christen...
@tifkin_
14K Followers
Marcello
@byt3bl33d3r
30K Followers
Rasta Mouse
@_RastaMouse
49K Followers
SkelSec
@SkelSec
12K Followers
mpgn
@mpgn_x64
18K Followers
Ryan Cobb
@cobbr_io
12K Followers
Adam Chester 🏴�...
@_xpn_
38K Followers
an0n
@an0n_r0
14K Followers
spotheplanet
@spotheplanet
11K Followers
Swissky
@pentest_swissky
21K Followers
Mr.Un1k0d3r
@MrUn1k0d3r
13K Followers