Codean @CodeanIO
Ethical hackers rock and we think they do not get enough love (tool wise). So we are creating a tool for security analysts, by security analysts! about.codean.io Remote, Netherlands Joined April 2021-
Tweets66
-
Followers421
-
Following174
-
Likes68
We looked into Kdenlive and find out that opening someone else's project was not the best idea, since it could lead to Remote Code Execution. The vulnerability (CVE-2026-45184) has been patched in version 26.04.1, make sure to update and remember: do not trust FFmpeg parameters!
We took a good look into GNOME and general Linux desktop security. Our first findings are now public, including a full Flatpak sandbox escape. More coming soon :) github.com/flatpak/flatpa…
Two of our Codean Labs colleagues evaluated OpenPGP.js and identified a signature spoofing vulnerability. Writeup includes a PoC where we demonstrate the vulnerability by spoofing a message by the Dutch government's Cyber Security Center! codeanlabs.com/blog/research/…
It's been four years already! Here’s to four more years of making the world more secure! linkedin.com/feed/update/ur…
At Codean Labs, our mission is to make the world more secure — and what better way than to secure fundamental open source projects? We identified CVE-2025-47934, a critical vulnerability in OpenPGP.js to spoof signatures, see github.com/openpgpjs/open… github.com/openpgpjs/open…
Codean Labs' @b0n0b0__ and @Doyensec's @drw0if discovered CVE-2025-32464, a heap-buffer overflow in HAProxy. Read our write-up here: codeanlabs.com/blog/research/…
We discovered CVE-2024-12425 & CVE-2024-12426 which allow attackers to write files & extract sensitive data. Check our blog post for the impact & how to protect yourself. linkedin.com/feed/update/ur…
We spent a lot of effort on improving the security of Ghostscript and this is our third and final blog post about everything we found. Enjoy the read! linkedin.com/feed/update/ur…
We just reached over 1,000 commits on Codean 🎉 Just a few thousand more and I am sure Codean will be done by then 😉
We are finally catching up on some basic capabilities everyone expects, but are still darn hard to get right! Finally, landed on SCIP and SCIP indexers to have code intelligence that also enables us to create unique and cool features in the future. Stay tuned for more!
Another day another high impact #CVE-2024-29511 on #Ghostscript ≤ 10.02.1. it leads to an arbitrary file read/write (under certain conditions) outside of the -dSAFER sandbox. You can find all details about this #vulnerability on our blogpost. codeanlabs.com/blog/research/…
We found #CVE-2024-29510, a format string vulnerability in Ghostscript ≤ 10.03.0. It enables attackers to gain Remote Code Execution (#RCE) while also bypassing all sandbox protections. It has significant impact so please update Ghostscript! codeanlabs.com/blog/research/…
A public service announcement about #CVE-2024-4367 that we found in one of our pentests at Codean Labs. Make sure to update your #Firefox version to 126 and for #developers to update your PDF.js dependency. You can read our blog post for all details. linkedin.com/feed/update/ur…
We found a vulnerability in Mozilla’s PDF.js (CVE-2024-4367 and CVE-2024-34342 via react-pdf) resulting in arbitrary JavaScript execution when opening a malicious PDF. This results in XSS on many web- and even desktop apps. Blog post coming soon! linkedin.com/feed/update/ur…
Our Capture The Flag events are designed around the accessibility to the source code of all vulnerable targets. What's even more fun is that the whole CTF is played from within Codean! I guess we should host another public CTF sometime soon™! linkedin.com/feed/update/ur…
We are looking for design partners! "Yeah, yeah, yeah... just another sales tactic." Well yes, you are not wrong, we obviously do need to make money. That said, we believe we can create a win, win, win! Sounds interesting? Let us know! linkedin.com/feed/update/ur…
Did you know that we publicly discuss features and the architecture of Codean?! Join our Discord at discord.gg/nVDwK8fbH7 and let us know what you want from a tool like Codean!
#pentesting projects we do via Codean Labs relied on an older version of Codean. Today we onboarded a pentest project on the NEW platform at codean.io 🎉 We did find some bugs that we fixed and identified the need for more features... Plenty of work for all of us!
신명진 @magan2160
14 Followers 187 Following
Tomasz @Tomasz833415
149 Followers 3K Following
ElleuchX1 @ElleuchX1
626 Followers 438 Following Hacker by day, big napper by night | CTFs w/ @ProjectSEKAIctf | Research @RewriteLab |OSCP | https://t.co/dpFxMnjdft
test domain @User2Micro
704 Followers 5K Following
daisy @daisyydaisy_
19 Followers 227 Following CTF player / pwn @fibonhack | Comp Eng undergrad @ University of Pisa
Emmanuel Benavides @scythecybersec
0 Followers 7 Following
kasser @xqd
263 Followers 2K Following
Pas @is_exzettabyte
0 Followers 119 Following
Aleksei Kulaev @flat_z
13K Followers 1K Following Console hacker, former Kaspersky Team Lead of Exploits & Network Threat Detection, security researcher. For tips (thx!): https://t.co/VxJMiawFpP
pfiatde @pfiatde
2K Followers 1K Following "Every machine is a smoke Machine if you operate it wrong enough" RedTeamer by day, sleeping at night! https://t.co/ZcTfWHeGZO
Allele Security Intel... @alleleintel
1K Followers 2K Following Allele Security Intelligence is an independent company specializing in Information Security research.
Chris Isaias @_call_gate
147 Followers 3K Following Penetration Testing & Reverse Engineering. . . Phd(c), Msc (RHL), NATO, ESDC & RIPE fellow, IEEE snr, FIRST liaison, CISSP, CRTO, PNPT
CaV @cybercharlesav
24 Followers 2K Following
M @M_entreprenuerr
0 Followers 69 Following Cyber security professional, Ethical hacker/Penetration Tester, Red Team Specialist
9MF @n1neMF
81 Followers 5K Following
Catrina @Irnone412600
80 Followers 2K Following A woman with a voice is, by definition, a strong woman.
marias @marias697616410
2 Followers 253 Following
Satoooon @Satoooon1024
1K Followers 986 Following CTF(Web) w/@thehackerscrew1 | seccamp'21-C | Mastodon: https://t.co/n78LO4cTLe Tweets are my own opinions.
hamaccount @hamaccount
16 Followers 2K Following
pyn3rd @pyn3rd
15K Followers 712 Following Security researcher with over 10 years of experience in application&cloud security. Speaker at BlackHat, HITB, CanSecWest and TyphoonCon.
ctx @pi_1816
213 Followers 3K Following ctfプレイヤー @ctftime #teamone 🇯🇵 team (wanna-be) hacker maybe idk !!!
Abdullah Asif @AbdullahAsifVir
361 Followers 2K Following #Cybersecurity #WebApplications #CloudArchitect. Retweet not endorsement.
rouk @rouksec
0 Followers 93 Following
my car @camry19870501
4 Followers 42 Following
Ismail Arabi @IsmailArabi18
73 Followers 2K Following
Joshua Henry @jhenry0110
56 Followers 1K Following Jesus Follower and Disciple🙌🏿,Biblical Scholar🙏🏿, Computer & I.T. Guy⌨️📱🖥, Software Engineer, Cybersecurity Enthusiast and Hacker
Ahmed Alahdl @alahdl_ahm20179
3 Followers 59 Following
X CyberSec @xcybersecnews
163 Followers 249 Following Navigating the digital frontier, securing tomorrow with every click
lee1981 @lee1981b
513 Followers 3K Following Learning Cyber-Security, Bug bounty hunting, Ethical hacking & Malware Analysis 😀
Jawad Saqib @jawadsaqib_
239 Followers 2K Following PNPT | CEH | Cyber Security enthusiast, Pentester, Web Developer, Python + Bash ❤️ Author at https://t.co/pVa55H5BHZ
Ameer Hamza @0xhamza
213 Followers 4K Following I have Diverse Interests: Interested in Global Politics Specific to Great Power Rivalry, Middle East, South Asia and OBOR. Interested in Information Security.
Raymond @LinRaymond2006
26 Followers 4K Following
Zwink @_zwink
423 Followers 174 Following
Luca Palumbo @Luca_Palumbo_
36 Followers 113 Following CTF player / Reverse Engineer @fibonhack | Computer Science MSc student @unipisa | BSc in Physics |
nick0ve @nick0ve
398 Followers 407 Following Computer Engineering @unipisa | CTF @fibonhack @aboutblankets | Blockchain Security @osec_io
Sambam4mba @he31707900
18 Followers 2K Following Bor3d hacker of iot devices, security researcher? Security Breacher!
Ashish Kunwar @D0rkerDevil
13K Followers 6K Following ex @Microsoft | Vulnerability Research | ios/mac research 🙂
Justin Gardner @Rhynorater
37K Followers 2K Following Christian | Full-time Bug Bounty Hunter | Host of @ctbbpodcast | Advisor @CaidoIO | 4x LHE MVH | 🗣️ English, 日本語 | ♥️ @mariahchan_ ♥️
Publer @publer
74K Followers 180 Following Your ultimate social media management platform 💚 Plan, Schedule, Collaborate, Analyse & Report Explore Publer for free: https://t.co/7mwhUROkS5
Erik Ploegmakers @ploeg
1K Followers 735 Following I am CEO @ https://t.co/en9hJ4xoak previously Zerocopter/Fox-IT. I listen to and play music. I read comics. I'm a lawyer and a lousy hacker but I'm trying.
Paul @PaulBakkerNL
238 Followers 333 Following Grey hairs for (tech) Entrepreneurs | @pingpingio | Realistically paranoid | Likes solving complex problems
BSides Munich @BSidesMunich
1K Followers 449 Following BSidesMunich - Security Conference in Munich https://t.co/yxqy2qBPZX
Eric Luteijn @eluteijn
1K Followers 2K Following Uitgever ITchannelPRO. Dagelijk met IT en telecom-nieuws bezig: The Digital Workspace, Security-, Datacenter-, VoIP en UC&C- en IoT topics voor het channel.
ITchannelPRO @ITchannelPRO_NL
35 Followers 19 Following ITchannelPRO is hét kennisplatform voor de circa 8.000 Telecom en IT-business partners en geldt als de primaire informatiebron in het IT-kanaal in Nederland.
out of memory is on B... @oom_rl
597 Followers 695 Following normalize truth! used to run a nuclear reactor underwater. ++ https://t.co/k2p36kfDtR (THIS ONE) @[email protected]
Sebastian @sebastian_paul
927 Followers 1K Following Interested in all things Security, Security Governance and AppSec. Occasional conference speaker. Opinions are my own, and not afraid to change them.
OWASP Netherlands @owasp_NL
1K Followers 63 Following The Open Web Application Security Project (OWASP) is a worldwide free and open community focused on improving the security of application software.
hextree.io @hextreeio
8K Followers 2 Following 🌱 Grow your cybersecurity skills with concise and well-edited video courses - in early-access, sign-up now! Created by @LiveOverflow and @ghidraninja.
Chantal 🔮 @MiFare_lady
2K Followers 1K Following Co-founder @wicca_NL for Women in Infosec | #WICCON | DC3120 | 🎙@ngrynerds | Partner in Cybercrime of @vm00z | SSDGM 🖤 | (she/her)
HackerHotel @HotelHacker
1K Followers 328 Following Hacker Hotel provides a luxurious hacking experience. For hackers and makers, with workshops and lectures at all skill levels!
Pieter Jansen @pitrpitr
653 Followers 532 Following hacker - tweets are personal - former founder of https://t.co/h26ZSLvBmE (acquired), now SVP Cyber Innovation @Darktrace
Anis_Boss @AnisBoss_
188 Followers 234 Following Interested in Cyber Security | REV, PWN | CTF Player at @the3000org | (1.01)^365== 37.8 | https://t.co/6cf6Hdg6MV
b0n0b0 @b0n0b0__
100 Followers 145 Following CTF player @fibonhack Security Analyst and Researcher @CodeanIO
TryHackMe @tryhackme
305K Followers 83 Following An online platform that makes it easy to break into and upskill in cyber security, all through your browser.
Intigriti @intigriti
209K Followers 666 Following Bug bounty & VDP platform trusted by the world’s largest organisations! 🌍
Hacking Articles @hackinarticles
297K Followers 478 Following House of Pentesters Join us: https://t.co/Y6XOlSOA92
CyberSecurity Tools @cyberdian_tools
13K Followers 4 Following Daily tools news digest of breaking news in the #CyberSecurity, design by @cyberdian, IT Consulting firm. We Tweet in 🇫🇷 & 🇺🇸 #InfoSec #TousSecNum
rizemon @rizemon
126 Followers 503 Following Working | 🇸🇬 University graduate | OSEP | OSWE | OSCP | BSCP @[email protected]
Giorgio Dell'Immagine @g_dellimmagine
88 Followers 512 Following Cryptography @zksecurityXYZ - CTFs @fibonhack
Aleandro @drw0if
283 Followers 908 Following Computer science student @ UniPI - ctf player with fibonhack, r00tstici - Security Engineer @ Doyensec
Luca Palumbo @Luca_Palumbo_
36 Followers 113 Following CTF player / Reverse Engineer @fibonhack | Computer Science MSc student @unipisa | BSc in Physics |
Marcel van de Kolk @de_kolk
74 Followers 688 Following #Privacy #Security #Informatiebeveiliging #GSXR
Oscar Koeroo @okoeroo
4K Followers 1K Following High-performance security, Concern CISO MinVWS, Kobayashi Maru, #OpCyberpaint, Daddy^2, Husband, Hacker, Creative.
Jan Ellermann @JanEllermann
545 Followers 762 Following
Forum INCYBER - EUROP... @INCYBER_Europe
19K Followers 2K Following #INCYBERForum (FIC) #1 🇪🇺 Event on #Cybersecurity 🗓️ March 9-11, 2027
Albert @AlbertSYN_ACK
10 Followers 193 Following
All about CTF @CTFtime
19K Followers 55 Following
Jarkko Vesiluoma @jvesiluoma
2K Followers 2K Following White hat hacker, Team ROT. Bug bounty hunter. Owner of Redtest-Security. Co-founder @HajySec + @rotcofi. OSCP/OSCE/OSWE. Opinions expressed are mine.
Thomas Malmberg @tsmalmbe
461 Followers 1K Following Tweets about infosec, travelling, racing, Springsteen - various whining in finnish.
putsi @putsi
3K Followers 3K Following White hat hacking in Team ROT. Also, hacker-for-hire & bug bounty hunter -- https://t.co/5sHK3CHtdm
Paul Shomo - Security... @ShomoBits
1K Followers 1K Following Security Researcher | EnCase Author | VxWorks Kernel Developer | Dark Reading | Applied Epistemologist
Mint Security @mintsecurityfi
219 Followers 25 Following Infosec Consultants in Finland. Also #veracode and #spamhaus and #alphasoc.
Reasonable_In🖊 @TranslationInLo
302 Followers 5K Following Billionaire bros, Anti - { Liberal, Feminist, Colonist, Communist, Sugardaddy, Protagonist, Capitalist, Socialist} Group of 34 guys using same acc😂bonito sor
sudi @sudhanshur705
6K Followers 797 Following If there's non zero chance, the effort is infinite, anything is possible
Burp Suite @Burp_Suite
138K Followers 14 Following Burp Suite is the leading software for web security testing.
PortSwigger @PortSwigger
106K Followers 23 Following We are a leading provider of software and learning on web security. We make @Burp_Suite and @WebSecAcademy.
PortSwigger Research @PortSwiggerRes
120K Followers 7 Following Web security research from the team at @PortSwigger
Lionfishcybersecurity @LionfishCyber
2K Followers 2K Following Lionfish Cyber Security is the next evolution of cyber security for small to mid-sized businesses.
ONE Conference @OneConferenceNL
2K Followers 484 Following The ONE Conference is Europe’s prime cybersecurity event. To stay updated, follow us on LinkedIn https://t.co/keQbPvAeqJ
axi0mX @axi0mX
60K Followers 3K Following Bootrom exploit philanthropist. Apple silicon hacker. iOS jailbreaker. Join us as we dance madly on the lip of the volcano.
Cristofaro Mune @pulsoid
2K Followers 785 Following In between Physics & Computing. Fault Injection, TEEs, IoT & anything else challenging my curiosity. Founder at Raelize (@raelizecom)
Electrospaces @electrospaces
9K Followers 2K Following Insights in Signals Intelligence, Communications Security and Top Level Telecommunications. Also tweeting in Dutch and sometimes in German. Photo: NTOC in 2006
You might like
