Joined July 2014
- Tweets 477
- Following 2
- Followers 1,557
- Likes 287
157 Photos and videos
Shielder retweeted
Inspektor Gadget has completed its first security audit. Three vulnerabilities fixed, six hardening recommendations addressed — coordinated by @OSTIFofficial and led by @ShielderSec.
> inspektor-gadget.io/blog/202…
4
21
3,699
Shielder retweeted
May 17
Well that was a ride! Happy to share that I've been awarded with the OMSE certificate after successfully completing the "Offensive Mobile Security Expert" course and exam by @8kSec .
Thanks to @ShielderSec for this training opportunity and to @8kSec for their top-notch content!
1
2
5
475
Shielder retweeted
May 12
The @OSTIFofficial coordinated #InspektorGadget’s first independent security audit, backed by @CloudNativeFdn and performed by @ShielderSec. Nice example of transparent OSS security work.
techcommunity.microsoft.com/…
#Kubernetes #eBPF #OpenSource #Security
2
5
538
Apr 30
Can a hostile container sneak past your eBPF tracing? Sometimes, yes.
With @OSTIFofficial & @CloudNativeFdn we audited Inspektor Gadget - 3 vulns (fixed), 6 hardenings, 6 bypasses (io_uring, openat2, jumbo frames…).
Work by @ndaprela & @suidpit👏
🔗 shielder.com/blog/2026/04/in…
12
22
2,027
Mar 24
#KubeCon EU starts today and guess what? Our very own @suidpit will be on stage with a panel about the @kubernetesio Security Audit we performed during 2025 with the support of @OSTIFofficial!
🗓️ March 25 - 16:45 CET
📍 Hall 8 | Room F
1
2
9
672
Mar 19
Attending @1ns0mn1h4ck?
Meet @not4nhacker @Luk3ros and @Sev1rus from our AppSec and Red teams!
They are eager to discuss about breaking complex authentication implementations and relaying all the things to DA!
5
10
478
Jan 31
Love breaking things just to see how they work? 🐛🔨
A @ShielderSec delegation is on the ground at @fosdem, and we're looking for fellow hackers and security researchers.
If you are passionate about securing the Open Source world, we definitely need to talk!
4
3
588
31 Dec 2025
Happy New Year, Hackers! 🎆
We’re looking forward to a 2026 full of crazy exploits, instant patches, and - most importantly - YOU, the amazing human beings behind the screens.
2
5
392
27 Dec 2025
Bootloaders acting weird? 🐛
If you are at #39c3, catch @ShielderSec's own @Th3Zer0 to geek out over bootloader oddities and low-level vulnerabilities.
1
4
717
25 Nov 2025
Want to learn more about our approach into auditing complex libraries and writing cool exploits?
Attend @OSTIFofficial's meetup where our very own @Th3Zer0 and @suidpit will talk about the "Security Audit of OpenEXR"
🗓️: Dec 02
🕗: 20:00 CET
RSVP: luma.com/ostif-meetups?e=cal…
5
8
744
27 Oct 2025
🔥🔥🔥
27 Oct 2025
So, Symantec/Broadcom PAM seems to contain code in PHP, Java, and Perl simultaneously. Guess how many issues are hiding there? @Paupu_95 keeps the tension high, and we still don’t know the answer. This #TheSAS2025 talk is quite thrilling.
1
1
417
26 Oct 2025
Attending #theSAS25? Meet @Paupu_95 for his PAM pwnage talk!
It won't be recorded and it might *wink wink* contain a cool drop you don't want to miss 👀
3
7
1,631
6 Oct 2025
Attending #TheSAS2025? Don't miss our gangster @Paupu_95 pull off a credential heist, taking down a PAM and going from no info to full infra compromise!
6 Oct 2025
You’ve done everything right: least privilege, PAM solution deployed, users don’t even know passwords. What could go wrong? Paolo Cavaglià (@Paupu_95) from Shielder has the answer in his #TheSAS2025 talk, "Grand Theft Credential: Ransomware Gangs’ Wet Dream"
🏰 His team spent two weeks reverse engineering Broadcom’s CA PAM and found 13 vulnerabilities that lead to complete infrastructure takeover. A malicious actor can decrypt all stored credentials, move laterally to every managed host, and own the company.
More SAS gold (aka agenda): kas.pr/6rx9
1
2
3
798
Shielder retweeted
7 Aug 2025
👋🏿 Hackers!
Are you a Red Teaming Wizard 🧙🏿 looking for a new challenge? @ShielderSec is hiring a Red Teaming Lead to join our crew!
More info ⬇️ (share appreciated) #hiring #redteaming
romhack.io/job-opportunities…
6
11
2,554
31 Jul 2025
🚨 New Open Source Audit Alert! 🚨
Shielder, with @OSTIFofficial & @AcademySwf, audited OpenEXR and MaterialX:
🔍 11 issues found (1 critical, 3 still to be published)
✔️ Most fixed, others planned
🗣️ to @ndaprela @smaury92 @suidpit @Th3Zer0
Full details in the blog post ⬇️🧵
1
4
8
2,078