Cybersec/AI expert | Hacker | Pilot | Lifter | OSCE3, CISSP, CCNP, CSIE | Top 20 Hack the Box | CTF Reviews and Writeups | meme magic đ¸
Joined September 2023
- Tweets 3,014
- Following 730
- Followers 2,373
- Likes 10,681
942 Photos and videos
May 20
Supply chain and dev tool compromises continue to be in the news week after week. Its becoming a question of when, not if. Vendor risk management is more important then ever as threat actors continue to move up the chain.
GitHub just confirmed that 3,800 internal repositories were stolen⌠through a single VS Code extension.
Not a zero-day.
Not ransomware.
A developer plugin.
This is TeamPCPâs FIFTH supply chain compromise in ~3 months, and it highlights a massive blind spot most organizations still ignore: IDE security.
Most companies heavily govern:
â
SaaS apps
â
Cloud infrastructure
â
Production environments
âŚbut allow developers to install extensions with virtually unrestricted access to:
â ď¸ source code
â ď¸ credentials
â ď¸ cloud tokens
â ď¸ local systems
The attack surface has officially moved upstream, into the tools used to WRITE the code.
If your organization hasnât started governing developer tooling, extension usage, and workstation trust boundaries, now is the time.
The GitHub breach wasnât the anomaly.
It was the warning shot.
Read @jacob krells latest research here: na2.hubs.ly/H05FnMT0
#CyberSecurity #SupplyChainSecurity #DevSecOps #VSCode #GitHub #SoftwareSecurity #ThreatIntelligence #Infosec
6
784
May 19
I was quoted in Forbes, that's pretty cool!
Microsoft does not seem to be having a good 2026 so far security wise, with Exchange being the most recent issue in the crosshairs:
...âattackers study mitigation guidance the same way defenders do,â meaning that such vulnerabilities can be turned into working exploits âmuch faster than most organizations can validate exposure.â'...
forbes.com/sites/daveywinderâŚ
1
1
5
235
Uploaded a new video. The time I misidentified a finding on a pentest engagement and how I learned from it. Hope you like it. youtube.com/watch?v=EqYzRrBgâŚ
3
12
567
May 5
An MCP server that gives AI assistants deep visibility into Windows internals: processes, ETW kernel traces, event logs, services, drivers, minifilters, and static PE analysis.
github.com/0xhackerfren/ProcâŚ
3
51
217
10,864
May 5
Mean Time to Exploit is now negative seven days.
Yup, you read that right.
Mandiantâs M-Trends 2026 report puts estimated mean time to exploit at -7 days, meaning vulnerabilities are now being exploited, on average, a week before patches are released. In 2018, defenders had roughly 63 days.
The window did not just shrink. It inverted.
We said it first. Now Mandiant just confirmed it.
đ Mean Time to Exploit is now negative.
Not shortened.
Not faster.
Negative.
Attackers are exploiting vulnerabilities before organizations can even respond.
That changes everything.
This isnât about patching faster or scanning more.
Itâs a timing problem, and most security strategies are already behind.
At Suzu Labs, weâre seeing the same thing Jacob Krell just outlined in our latest research:
đ If youâre reacting, youâre too late
đ If youâre waiting for alerts, youâve already missed it
đ If youâre relying on point-in-time testing, youâre exposed
The only way forward?
Simulate attacks before attackers do.
Continuously validate what actually breaks.
Because in a world of negative exploit timelinesâŚ
you donât get a head start anymore.
đ Read the full breakdown:
na2.hubs.ly/H05hMNP0
đ See how we help teams stay ahead:
na2.hubs.ly/H05hNvb0
9
914
May 1
Canât wait to talk about how Agentic AI has affected CTFs and what that means for the industry overall.
I Hope to see some of you there!
May 1
I am very excited about CYBR.HAK.CON.. We finalized the agenda and speakers, and we have some amazing speakers. @Jhaddix from @arcanuminfosec is our opening keynote, and my BF and @Dallas_Hackers founder @DHAhole is our closing keynote. @TimMedin, @sociosploit, @Larci007, @dkfredde, and the CCN crew (@BarCodeSecurity, @hacker_213, @DistortionCyber), and @hackerfren, are some of the other speakers. Check out the full lineup and get your ticket here cybrhakcon.com! @CybrSecCon @thehackermaker
1
8
243
Apr 30
I am working on generative AI locally for some projects. Everything else I do is through AI agents, why not Comfy-UI.
So I made an MCP to give agents the ability to generate and execute comfy UI workflows for simple things like txt to img to advanced generation pipelines like full shorts.
github.com/0xhackerfren/ComfâŚ
5
253
Apr 27
jacobkrell.com/research/teleâŚ
Just gonna drop this here. If I'm right in 100 years when we get around to figuring out teleportation,
that is gonna be a hell of an intuition flex.
6
214
Jacob Krell retweeted
Apr 25
POV you are coding during the year of 2026.5
73
178
4,167
102,281
Apr 23
lobbex.org/
A sneak peak of some of the stuff I have in the pipeline, this is one of many subsites I plan to tie together with natural language LLM to allow users to quickly parse immense amounts of government data and automatically surface anomalies.
Entity extraction and directed relationship graph all the things!
2
125