Practical Program Analysis @ProgramAnalysis

❤️ building security tools. Pentesting, static analysis, fuzzing, symbolic execution, and long walks on the beach programanalys.is San Francisco, CA Joined January 2017

Tweets

63
Followers

162
Following

18
Likes

54

Clint Gibler @clintgibler

6 years ago

📚 tl;dr sec 45 * @databricks protecting public s3 buckets * @TheDavisJam ReDoS cheatsheet * @dcuthbert “...something truly special happening in the static analysis world” * @cloudsa PrivEsc in Salesforce * @DanielMiessler attribution via reverse TM tldrsec.com/blog/tldr-sec-…

1 1 5 0 0

View Details

Clint Gibler @clintgibler

6 years ago

📚 tl;dr sec 43 * Continuously monitoring your web attack surface * @FSecure Threat modeling in agile envs * @RichardFeynman the problems you choose to tackle * @benthompson on Slack vs Microsoft Teams * @0xdabbad00 finding overprivileged users/roles tldrsec.com/blog/tldr-sec-…

1 8 19 0 1

View Details

Clint Gibler @clintgibler

6 years ago

📚 tl;dr sec 42 * Now with search 🔍! * @Azure Scalably snapshotting fleets of VMs * @DanielMiessler on Imposter Syndrome, procrastination, & more * @mubix on egress testing * @cryptodavidw's crypto book * @kylerankin on @Puri_sm's new laptop tldrsec.com/blog/tldr-sec-…

1 5 17 0 0

View Details

Clint Gibler @clintgibler

6 years ago

📚 tl;dr sec 41 * @lancinimarco threat modeling #Kubernetes * @stevespringett @owasp Software Component Verification Standard v1 * @Plazmaz benchmark repo for secret scanning tools * @PortSwigger's Youtube channel * @raesene vuln scanning containers tldrsec.com/blog/tldr-sec-…

1 8 27 0 3

View Details

Clint Gibler @clintgibler

6 years ago

📚 tl;dr sec 40 * Uber's continuous AWS monitoring * #AWS's hands-off deployments * Auto-remove unneeded feature flags * @PhilippeDeRyck on OAuth/OpenID Connect * @gerben_javado extract endpoints/params & @M4ll0k2 find sensitive data from JS and more! tldrsec.com/blog/tldr-sec-…

1 3 15 0 3

View Details

Clint Gibler @clintgibler

6 years ago

📚 tl;dr sec #39 * @FrenzChris The need for evidence based security * @madhuakula slides/training and #Kubernetes Goat * #NahamCon slides * @ajinabraham NodeJSScan v4 * @Doyensec InQL Scanner v2 * @0xdabbad00 denial of wallet attacks tldrsec.com/blog/tldr-sec-…

1 10 31 0 5

View Details

Clint Gibler @clintgibler

6 years ago

📚 tl;dr sec 38 * See our @devseccon panel: @justine_osborne @shehackspurple @dugdep @zanelackey * @ticarpi Forge/crack JWTs * @jgumbley threat modeling 4 devs * @jcfarris threat hunting in AWS * @christophetd #activedirectory detection labs in Azure tldrsec.com/blog/tldr-sec-…

3 14 30 0 4

View Details

Clint Gibler @clintgibler

6 years ago

📚 tl;dr sec #37 * #Kubernetes + OPA * @GHSecurityLab uncovers malware targeting open source supply chain * #SAST snark * @DanielMiessler on the changing economy & rising inequality * @0xdabbad00 record all AWS API calls * @blakkheim Linux hardening tldrsec.com/blog/tldr-sec-…

1 4 17 0 1

View Details

Clint Gibler @clintgibler

6 years ago

📚 tl;dr sec 36 * @0xdabbad00 AWS Security Maturity Roadmap * @pry0cc Spin up dynamic infra for security testing * @GuidoVranken @NetanelBenSimon @yoavalon @mboehme_ @gamozolabs Fuzzing * @DanielMiessler Analysis of the 2020 Verizon DBR * TerraGoat tldrsec.com/blog/tldr-sec-…

1 12 49 0 11

View Details

Clint Gibler @clintgibler

6 years ago

📚 tl;dr sec 35 * @0xdabbad00 building your career in security * @DanielMiessler securing your home network * @madhuakula security tool search * Testing #oauth implementations @abugzlife1 * @Burp_Suite plugin to handle session management tldrsec.com/blog/tldr-sec-…

1 16 46 0 11

View Details

Clint Gibler @clintgibler

6 years ago

📚 tl;dr sec 034 * @thedavidbrumley on game theory and 0days * Let @jaybeale teach you how to bust-a-kube * @fredrickl how to be a custodian of customer data * @jacobian on preventing SQLi in Django * @SpenGietz GCP priv esc * @andywgrant iCal shenanigans tldrsec.com/blog/tldr-sec-…

1 10 21 0 1

View Details

Clint Gibler @clintgibler

6 years ago

📚 tl;dr sec #33 * Free @splunk attack range - practice attacking/detection * @expel_io detecting compromised #aws creds * @va_start 30 reverse engineering tips * @redsift Examining Zoom's behavior with eBPF * Epic #IOS sandbox escape by @s1guza tldrsec.com/blog/tldr-sec-…

1 1 2 0 0

View Details

Clint Gibler @clintgibler

6 years ago

📚 tl;dr sec #32 * @fredrickl on building a positive security culture * @appseccouk: #Docker/#Kubernetes training * @ramimacisabird AWS security ramp-up guide * Protecting & attacking w/ Chrome extensions by @IAmMandatory * Lateral movement in Azure AD tldrsec.com/blog/tldr-sec-…

1 10 27 0 7

View Details

Clint Gibler @clintgibler

6 years ago

📚 tl;dr sec #31 * @shehackspurple's online learning platform * Free #AWS/#Azure security course by @appseccouk * Tools for continuous cloud and container security * A VM with 8 C2 frameworks to play with * ZAP GitHub Action * Use @fridadotre w/ Burp tldrsec.com/blog/tldr-sec-…

2 20 60 0 11

View Details

Clint Gibler @clintgibler

6 years ago

📚 tl;dr sec #30 * @csima @Scott_Helme on securing your home network * @libber lessons learned from running Facebook & Uber's #bugbounty program * @0xdabbad00 gotchas in setting up isolated networks in #AWS * @alsmola on IAM global condition context keys tldrsec.com/blog/tldr-sec-…

1 3 9 0 0

View Details

Clint Gibler @clintgibler

6 years ago

📚 tl;dr sec #29 * @leifdreizler how to run a #bugbounty program * @Doyensec released a #GraphQL testing tool * @0xdabbad00 #AWS Service Control Policy best practices * @samwcyo on attacking secondary contexts in web apps * @snyff on Unicode regex hijinks tldrsec.com/blog/tldr-sec-…

2 7 26 0 2

View Details

Clint Gibler @clintgibler

6 years ago

📚 tl;dr sec #28 * @richinseattle 25 years of #fuzzing keynote * @patrickwardle sniffing authn references on macOS * @adamshostack on #threatmodeling with questionnaires * @RiftRecon Free physical pentest PDF * @r2cdev finding Python ReDos vulns at scale tldrsec.com/blog/tldr-sec-…

2 12 25 0 6

View Details

Clint Gibler @clintgibler

6 years ago

📚 tl;dr sec 27 * Joined @johnlkinsella @Codexatron on @DevSecOpsWeekly * @latacora on getting your SOC2 * @chrisrohlf's C/C++ vuln discovery BH training * @fcremo view file in VS Code -> code exec * @DanielMiessler on compensation * Help save encryption tldrsec.com/blog/tldr-sec-…

1 4 13 0 0

View Details

Clint Gibler @clintgibler

6 years ago

Thinking about founding a security startup? 🚀 Learn from @jonoberheide's journey from bootstrapping Duo to having it be acquired by Cisco for $2.35B 💰 tldrsec.com/blog/learnings…

2 8 41 0 3

View Details

Clint Gibler @clintgibler

6 years ago

📚 tl;dr sec #26 * Lessons @jonoberheide learned from @duosec * @dwizzzleMSFT on keeping Windows secure * @JGamblin's container scanning API * @gollmann on #DevSecOps * Susan & @joesu11ivan on building @Cloudflare's ProdSec team * and more! tldrsec.com/blog/tldr-sec-…

1 5 20 0 8

View Details

Clint Gibler @clintgibler

23K Followers 573 Following 🗡️ Head of Security Research @semgrep 📚 Creator of https://t.co/xwtIAI0CuJ newsletter

Kaushik S @xats0m

39 Followers 647 Following Build Security In..

Sujit @sjx_one

23 Followers 289 Following

Professor at the University of Namur, Former dean of the Faculty of Computer Science.
@UNamurCSFaculty @UNamur Tweets in his own name

wim vanhoof @statler96

77 Followers 199 Following Professor at the University of Namur, Former dean of the Faculty of Computer Science. @UNamurCSFaculty @UNamur Tweets in his own name

Divya Rathore @DivyaRatho66177

1 Followers 17 Following

`` @ygxsh_

3 Followers 282 Following 🏳️‍🌈 | ⛓️🛡️

Fronzii @Fronzii2

1 Followers 113 Following

Yunlong Lyu @Yunlong_Lyu

2 Followers 30 Following

DK @d3caii

25 Followers 1K Following 👨‍🚀:(

SAD BOI | Humble and Rude. Ticking my Bucket list. AssWorshipper : Cannaoisseur : SongWriter : TechEnthusiast #HalfManHalFgod #teamburnaboy #fafergang ♒

OluwaPegasus @mansa_susa

173 Followers 1K Following SAD BOI | Humble and Rude. Ticking my Bucket list. AssWorshipper : Cannaoisseur : SongWriter : TechEnthusiast #HalfManHalFgod #teamburnaboy #fafergang ♒

eTesters @etestersbot

2K Followers 5K Following Test, Sense, Measure, Analyze, Think, Act Builder News ✍️

t0plu @_t0plu

20 Followers 250 Following CyberSecurity PhD candidate. program analysis | firmware | trying to be serious(!)

Ahmed Zaki @pengwinsurf

303 Followers 1K Following Building something cool @ https://t.co/uXrr9nrHKp | Previously @Meta, @NCCGroupInfosec, @symantec, @Sophos | PhD @SRGImperial

JD_Codersteinersky @codersteinersky

138 Followers 4K Following Pugna contra mundum & be freed of its lies! https://t.co/NSL9Fzto0K covers some key ones. "Jn8:32 AYSKTT, ATTSMYF (KJV)" -- John O. Beaty's motto in TICOA.

A software engineer interested in Cybersecurity and Machine Learning, and also a CTFer focused on Reverse & Pwn @ BambooFox 🎉.

Steven Lin @5teven1in

393 Followers 386 Following A software engineer interested in Cybersecurity and Machine Learning, and also a CTFer focused on Reverse & Pwn @ BambooFox 🎉.

ajinkya rajput @ajinkyar

41 Followers 393 Following

pwn all the things, this must be kenjoe41
@kenjoe41@infosec.exchange

may keen gyn @kenjoe41

154 Followers 1K Following pwn all the things, this must be kenjoe41 @[email protected]

Thor @Thor04719840

0 Followers 168 Following

Adnan Koroth @AdnanKoroth

28 Followers 72 Following Cloud & Infrastructure Security Engineer

Harsha Koushik @0xlcheetah

62 Followers 139 Following Security Researcher @PaloAltoNtwks | Ex SecurityEngg @DisneyPlusHS

abigrrrl @abigrrrl

174 Followers 1K Following Mother of three dragons, sec nerd. All opinions are my own.

xm007 @XMreadpaper

131 Followers 5K Following

Chris Hanlon @ChrisHanlonCA

17K Followers 18K Following Security Engineer Google Security Hall of Fame Presenter & Workshop host at #BSidesLV and #DEFCON

The workflow and AI orchestration platform loved by security-minded teams.

Try our always-free Community Edition. https://t.co/1od0fSLxkA

Tines @tines_hq

3K Followers 743 Following The workflow and AI orchestration platform loved by security-minded teams. Try our always-free Community Edition. https://t.co/1od0fSLxkA

MicrosVuln @microsvuln

2K Followers 1K Following 🇮🇷 Vulnerability under the 🔬Microscope, Dating security mitigations, breaking them up in the end ...

Burak Çarıkçı @Burakcarikci

124 Followers 2K Following Evlad-ı Çarıkçı

1412 @cydetective

20 Followers 344 Following trickster

Roger Nichols @Eightfold14

2K Followers 5K Following Retired InfoSec Mgr. Now, I mostly grow grapes & build things..

Michael Russo @russomidev

491 Followers 2K Following Cloud Architect

Omnipotent_* @rajan_sharma27

40 Followers 549 Following web pentester | researcher | noob | ctf player | cyber security

H.N.sthIm @HM_sthIm

718 Followers 3K Following OSINT. Infosec. Big Data and Analytics AI.

hyp3r5pac3 @hyp3r5pac3

71 Followers 1K Following n00b at pwn and crypto | interested in OSdev, PLT, compilers and ML | CTF

Peleus Uhley @PeleusUhley

787 Followers 112 Following Lead Security Strategist for Adobe and stagehand. My views are my own.

Dinesh V @dineshv_52

2K Followers 5K Following sleepless bug bountry hunter 😐

Math-Physics-Medical-IT[#AI #cloud #social #bigdata #mobile #crypto #forensic #pentest #exploit #malware #hack #vulnerability #infosec #attack #securitytools]

})o |)llY 'I'Rll|\|9 @doduytrung

460 Followers 5K Following Math-Physics-Medical-IT[#AI #cloud #social #bigdata #mobile #crypto #forensic #pentest #exploit #malware #hack #vulnerability #infosec #attack #securitytools]

Security engineer/ networking specialist - Alienvault, Fortinet, Astaro, Juniper FW, check point, Palo Alto,Cisco, info SEC, CEH, barracuda networks

David E. Martinez V. @dandevden_hash

448 Followers 2K Following Security engineer/ networking specialist - Alienvault, Fortinet, Astaro, Juniper FW, check point, Palo Alto,Cisco, info SEC, CEH, barracuda networks

Ahmed musa naiya @NaiyaAhmed

12 Followers 86 Following Allahu Akbar

segfaulting through life & learning security 📉. I also like websec, softwaresec and static analysis, prev: @snyksec,@mwrinfosecurity, @notsosecure

Sam Sanoop @snoopysecurity

618 Followers 660 Following segfaulting through life & learning security 📉. I also like websec, softwaresec and static analysis, prev: @snyksec,@mwrinfosecurity, @notsosecure

Denis Denisov 🇺�... @denji_on

523 Followers 3K Following Senior Developer & Security Researcher

ESWL @EdmundSWL

130 Followers 1K Following Penetration Tester

Shivani Kondewar @ShivaniPK11

137 Followers 338 Following On a journey of spreading happiness 😎✌🏻😌

Bhanu Singh @bhanuraj

63 Followers 710 Following

codenameVS @nu11trace

20 Followers 213 Following

John @John11539357

0 Followers 10 Following

Craig Sutherland @casutherland

76 Followers 531 Following Work: @BrisanceDigital, formerly @CapitalOneTech, CTO & VP Engineering @REANCloud, ex-@BoozAllen, ex-@IBM. Views are my own.

hellostaceyo @hellostaceyo

39 Followers 1K Following

Srishti🐝 @srish_bee

2 Followers 190 Following

Namish IVedi @NamishSir

331 Followers 2K Following ☁️ Security || 🎮 || ⚛️ || He/him/his || Tweets are my own || Thoughts doesn't represent a nation or a race

Security Engineer & ASE Certified Master Technician. Car hacking/security, PAM, Threat Hunting. @ElwellFunnyFarm | Opinions are my own, not my employer's

farmerK @elwell

556 Followers 4K Following Security Engineer & ASE Certified Master Technician. Car hacking/security, PAM, Threat Hunting. @ElwellFunnyFarm | Opinions are my own, not my employer's

prats84 @prats84

246 Followers 2K Following Threat Intel, IR, Malware RE

jurchen @jierenchen

198 Followers 1K Following pineapple enjoyer. dev platform @FourthwallHQ

Clint Gibler @clintgibler

23K Followers 573 Following 🗡️ Head of Security Research @semgrep 📚 Creator of https://t.co/xwtIAI0CuJ newsletter

The #SoCal event where professionals gather to learn & share knowledge and experiences about #secure systems and secure #development methodologies. #AppSecCali

OWASP AppSec Californ... @AppSecCali

3K Followers 286 Following The #SoCal event where professionals gather to learn & share knowledge and experiences about #secure systems and secure #development methodologies. #AppSecCali

CactusCon @CactusCon

4K Followers 93 Following Arizona's hacker con. CactusCon 14: Feb 6 & 7 2026 in beautiful Mesa, AZ. https://t.co/29lnaRVQy9 + LinkedIn, Bluesky, Mastodon

Friendly Hacker & CEO @SocialProofSec security awareness/social engineering prevention Training, Videos, Talks | 3X @DEFCON🥈| Ex CISA gov Tech Advisory Council

Rachel Tobac @RachelTobac

112K Followers 8K Following Friendly Hacker & CEO @SocialProofSec security awareness/social engineering prevention Training, Videos, Talks | 3X @DEFCON🥈| Ex CISA gov Tech Advisory Council

Will Bengtson @__muscles

2K Followers 595 Following Leader, Security Researcher, Advisor. @HashiCorp formerly @netflix @BSidesSF

Astha Singhal @astha_singhal

3K Followers 857 Following Security things at Netflix. Women in Security Advocate. Tweets are my own.

Secure Coding Trainer, Best-selling author of Alice and Bob Learn Secure Coding & Alice and Bob Learn Application Security. #AppSec she/her 🌻

Tanya Janca | Shehack... @shehackspurple

50K Followers 2K Following Secure Coding Trainer, Best-selling author of Alice and Bob Learn Secure Coding & Alice and Bob Learn Application Security. #AppSec she/her 🌻

NCC Group is a global expert in cyber security & risk mitigation.

@NCCGroupInfosec - Global Technical.
@NCCsecurityUS - North America.
@NCCGroupCareers

NCC Group plc @NCCGroupplc

10K Followers 1K Following NCC Group is a global expert in cyber security & risk mitigation. @NCCGroupInfosec - Global Technical. @NCCsecurityUS - North America. @NCCGroupCareers

PortSwigger @PortSwigger

106K Followers 23 Following We are a leading provider of software and learning on web security. We make @Burp_Suite and @WebSecAcademy.

James Kettle @albinowax

83K Followers 102 Following Director of Research at @PortSwigger aka @Burp_Suite. Find my research, tools & contact details at https://t.co/vP6UbGmvl3

NCC Group North America security consulting. Find our Corporate Global Account here: @NCCGroupPLC and our everything tech account here: @NCCGroupInfosec

NCC Group North Ameri... @NCCsecurityUS

6K Followers 235 Following NCC Group North America security consulting. Find our Corporate Global Account here: @NCCGroupPLC and our everything tech account here: @NCCGroupInfosec

Flee @fredrickl

2K Followers 4K Following In girum imus nocte et consumimur igni.

Technical account for global cyber security & resilience provider, NCC Group. This account is run alongside the @NCCGroupplc corporate account.

NCC Group Research & ... @NCCGroupInfosec

20K Followers 2K Following Technical account for global cyber security & resilience provider, NCC Group. This account is run alongside the @NCCGroupplc corporate account.

Gareth Heyes \u2028 @garethheyes

38K Followers 1K Following JavaScript for hackers: Learn to think like a hacker. https://t.co/e0aNEbEDk5

Burp Suite @Burp_Suite

138K Followers 14 Following Burp Suite is the leading software for web security testing.

Web security news and views. The latest on bug bounty programs, technical research, hacking tools, and more. DMs open for tips.

The Daily Swig @DailySwig

11K Followers 390 Following Web security news and views. The latest on bug bounty programs, technical research, hacking tools, and more. DMs open for tips.