Provider of Attack Surface Discovery (ASD), Attack Surface Management (ASM) and CTI solutions. Scanning at Internet-scale since 2017 - contact at onyphe dot io
Joined March 2016
- Tweets 1,276
- Following 122
- Followers 2,102
- Likes 487
351 Photos and videos
@onyphe.io retweeted
Well, at the roots, Internet was built decentralized. All these points are about centralization.
Who knows what a #SPOF is in 2026?
May 20
software engineering in 2026:
- your package manager is compromised
- your cloud provider blocks your account
- github itself is hacked
software is solved
1
2
309
Apr 15
Very nice talk by @WeynsMaarten at this year's @Botconf about #DDoS for hire infrastructures exploiting weaknesses in monitoring solutions.
Number of exposed #Netdata or #Prometheus instances is quite crazy. Happy to share our data with TUDelft, like we already did in the past.
2
278
Apr 14
We're thrilled to announce that we'll be at the @Botconf in Reims starting tomorrow until April 17th.
And we're very proud to be one of its gold sponsors ๐
Looking forward to seeing you there!
2
165
Apr 13
Trรจs heureux de vous annoncer que nous serons ร la Botconf qui se tiendra ร Reims cette semaine, du 14 au 17 avril.
Et trรจs fiers dโen รชtre lโun des sponsors goldย ๐
Hรขte de vous y retrouverย !
2
182
Mar 24
๐ฃ We have added a new #vulnerability detection to our #ASM #AttackSurfaceManagement solution for #Citrix product:
CVE-2026-3055: remote unauthenticated memory reading #CitrixBleed3
๐ฅNearly 19k unique IP running a vulnerable version
search.onyphe.io/search?q=caโฆ
1
2
5
477
@onyphe.io retweeted
And you had coinbase in Septembre 2025 on this domain, Cc @onyphe :
Mar 15
๐จ ๐๐ฒ๐ณ๐ฒ๐ป๐ฑ๐ฒ๐ฟ๐ โ ๐ฆ๐ต๐ถ๐ป๐๐๐๐ป๐๐ฒ๐ฟ๐ ๐๐ป๐ณ๐ฟ๐ฎ๐๐๐ฟ๐๐ฐ๐๐๐ฟ๐ฒ ๐๐น๐ฒ๐ฟ๐
ReliaQuest Threat Research has identified a newly registered domain: ๐๐๐ฟ๐๐ธ๐ฒ๐ฟ[.]๐ฝ๐ฎ๐๐๐ธ๐ฒ๐๐๐ฒ๐๐๐ฝ[.]๐ฐ๐ผ๐บ, attempting to exploit confusion around Strykerโs current situation.
Link: reliaquest.com/blog/threat-sโฆ
Further investigation reveals two additional organizations being targeted:
๐๐๐ถ๐ป๐ฒ๐ฟ๐๐ผ๐ป[.]๐ฝ๐ฎ๐๐๐ธ๐ฒ๐๐๐ฒ๐๐๐ฝ[.]๐ฐ๐ผ๐บ
๐ฐ๐ฏ๐ถ[.]๐ฝ๐ฎ๐๐๐ธ๐ฒ๐๐๐ฒ๐๐๐ฝ[.]๐ฐ๐ผ๐บ
โ ๏ธ Defenders are strongly advised to:
- Monitor the generic, non-brand domains listed in the IOCs.
- Deploy defensive threat monitoring queries immediately to detect potential activity.
Letโs stay ahead of adversaries.๐ค
#Cybersecurity #ThreatIntel #ShinyHunters
2
4
652
Feb 23
We are experiencing an availability issue on our search platform. Currently investigating, will let you know.
Thank you for your patience.
1
190
Feb 23
Our hosting provider is experiencing an issue, we will keep you posted.
1
112
Feb 23
Service is partially restored (not all data is available) but main issue is not fixed yet by our hosting provider.
113
@onyphe.io retweeted
Feb 18
I deleted the previous tweet to avoid confusion. It was incorrect.
1
5
635
Feb 18
You mean like this:
onyphe -search 'category:ctiscan ip.asn:"AS20473" cert.fingerprint.sha256:"8521f42ce73b1646ccf6d85d876e40662fd0560aeded05ce62b94e5e30233cbe" | uniq ip.dest'
Feb 17
๐ Quick Pivot on UNC6201 infrastructure with @TeamCymru Scout!
@Mandiant shared a GRIMBOLT C2: 149.248.11.71 in their latest blog on UNC6201 (cloud.google.com/blog/topicsโฆ)
Using Scout, I found 2 more IPs using the same certificate, ASN, and open ports
140.82.18.134
66.42.111.219
3
4
1,219
Feb 12
๐ The new year has already begun, so itโs time to look back on 2025 and list what weโve accomplished at @onyphe. Itโs also time to talk about upcoming developments. And once again, theyโre ambitious, as they are every year for us.
Blog article:
blog.onyphe.io/en/retrospectโฆ
3
84
Feb 6
๐ La nouvelle annรฉe est dรฉjร entamรฉe, cโest le moment de revenir sur 2025 et de lister ce que nous avons fait chez @onyphe. Cโest รฉgalement le moment de parler des รฉvolutions ร venir. Et cโest encore une fois ambitieux, comme chaque annรฉe chez nous:
blog.onyphe.io/rtrospective-โฆ
2
134
Jan 12
๐ฃ UPDATE: now scanning 2,600 ports, weekly refresh.
29 Dec 2025
๐ฃ ANNOUNCEMENT: we have reached the 2,100 scanned ports milestone, at Internet scale with a weekly refresh rate.
Next step: 5,000 ports, weekly refresh. Then 10,000 by end of next year.
We will be the competitor number 1 to @censysio in 2026.
#ASM #CTI #ASD
3
189
Jan 9
onyphe -search 'category:ctiscan app.device:c2 -dayago:0 | uniq ip.dest | addcount | fields count' | tail -n 1
{"count":236}
#C2 #CTI #ThreatHunting
2
170
Jan 8
๐ฃ We have added a new #vulnerability detection to our #ASM #AttackSurfaceManagement solution for #n8n product:
CVE-2026-21858: unauthenticated remote code execution #Ni8mare
search.onyphe.io/search?q=caโฆ
3
535
Jan 5
Incident is resolved.
Jan 5
We are experiencing a production incident, our Web site or APIs may not be available to all.
Will keep you posted as soon as it is resolved.
Thanks for your patience.
1
185
Jan 5
We are experiencing a production incident, our Web site or APIs may not be available to all.
Will keep you posted as soon as it is resolved.
Thanks for your patience.
281