Tortures computers for fun and profit. Interested in network security monitoring, machine learning, Golang and Rust. Shellscript ninja. Will debug for food.
Joined June 2017
- Tweets 236
- Following 1,226
- Followers 341
- Likes 5,547
22 Photos and videos
Pinned Tweet
22 Dec 2018
Published my Bachelor Thesis: "Implementation and evaluation of secure and scalable anomaly-based network intrusion detection"
along with my network traffic analysis framework: github.com/dreadl0ck/netcap #golang #IDS #NSM #DeepLearning #ML
7
95
216
26 Dec 2025
Curios about the impact of this on the Go compiler and the security implications? Read my blogpost :)
dreadl0ck.net/posts/faster-b…
24 Dec 2025
TIL that macOS has a security feature called XProtect, which scans any new binaries you execute
But it also means it slows down edit-compile-run workflows with excessive checking
And the daemon is single threaded, so concurrent binary executions are blocked
good lord
106
dreadl0ck retweeted
26 Sep 2024
Attacking UNIX Systems via CUPS, Part I
evilsocket.net/2024/09/26/At…
175
1,120
3,614
1,059,706
dreadl0ck retweeted
I'm glad everyone has discovered memory safe languages after several decades. Now can we start looking at secure package management or are we just going to import memory safe rando libs from ninja876 on Github forever?
1
7
33
3,955
dreadl0ck retweeted
22 Sep 2023
My dystopian vision of an AI-powered future is that LLMs drives down the cost of generating long text even further, and the only way for readers to keep up is to use LLMs to summarize.
22 Sep 2023
Okay here's a ridiculous (but true) take: word processing is bad.
Before it, document length was bounded by the human capacity to copy long-form text.
After word processing, the tax & legal codes grew without check. And became incomprehensible to anyone but career experts.
20
59
257
63,784
1 Apr 2023
Guest: “Is that a RAM stick glued to your door?”
Me: “Yes. Old memories.”
1
4
187
dreadl0ck retweeted
15 Feb 2023
Best security quote I heard this week:
"Do you want to mitigate against an auditor, or against an attacker?"
29
400
1,635
222,897
dreadl0ck retweeted
24 Oct 2022
Bellingcat and investigative partners @derspiegel and @the_ins_ru have discovered a hitherto secretive group of engineers involved in Russian missile strikes on Ukraine.
These strikes have killed hundreds and left millions without heating or power bellingcat.com/news/uk-and-e…
69
1,571
3,825
dreadl0ck retweeted
29 Aug 2022
You can force any v8/Electron process to execute arbitrary js code (child_process, http, etc) by forcefully enabling and abusing the builtin debug mechanism ... here's VS Code executing Calc, but I suspect any Electron app is susceptible 🔥 it works with SIP enabled on macOS
17
186
657
dreadl0ck retweeted
26 Jul 2022
@BadgeteamNL thanks for the great #MCH2022 badge - here's my Music Computing Handheld app, to be found in the Hatchery in ESP32 - Games. Happy soloing
4
26
dreadl0ck retweeted
4 Apr 2022
Do you know you can set up a custom Transform server in #Maltego? The #DittoTRX Transform developed by @dreadcode can be used to investigate #IDNHomographAttack and imposter domain on various websites. Learn how to set it up here: maltego.com/blog/dittotrx-a-…
1
2
8
1 Nov 2021
Pretty cool that @github warns about the use of bidirectional unicode text in source code! Nice feature
1
dreadl0ck retweeted
1 Nov 2021
The Trojan Source vulnerability allows supply-chain attacks on software written in C, C , Go, Java, Javascript, Python and Rust. We're releasing details after a 99-day coordinated disclosure period, and some of these compilers will be patched quickly. See lightbluetouchpaper.org/2021…
19
366
799
dreadl0ck retweeted
14 Oct 2021
Wow, just realized C is turning 50 next year. Not sure how to tell students that we're learning about security problems caused by a language that's half a century old.
27
70
667
dreadl0ck retweeted
21 Sep 2021
Memory safety in a huge codebase is hard. We've published some work and an update on our work in the Chromium codebase - security.googleblog.com/2021….
5
88
355
We're releasing CapLoader 1.9 today!
🔁 Better detection of periodic beacons
🔍 More L7 protocols identified
🚀 Faster
🛠️ Improved filtering of flows
🔭 OSINT lookups w/ CIRCL, ThreatFox, RIPEstat etc.
netresec.com/?b=2159bda
13
30
24 May 2021
Ever dreamed about analysing a PCAP file properly in Maltego? Next netcap release will have a full blown Maltego integration, currently have ~200 entities, ~120 local transforms and 4 machines :) #madewithmaltego #golang #netcap
3
7
23 May 2021
Open sourced my Maltego (@MaltegoHQ) integration for @evilsocket's ditto tool and wrote a blogpost about it: dreadl0ck.net/posts/ditto-tr…
Happy graphical link analysis! #madewithmaltego #golang #ditto
1
14
44