Olivia
Online
Andrew Chiles
@AndrewChiles
Works @ SpecterOps, Red Teamer, Amateur Photographer, Health Nut, Husband, Father, #wreckingball
Huntsville, AL
Joined March 2009
696 Following
2.3K Followers
1.1K Posts
You've been asking for this one...
Now in preview: Codex in the ChatGPT mobile app.
Start new work, review outputs, steer execution, and approve next steps, all from the ChatGPT mobile app. Codex will keep running on your laptop, Mac mini, or devbox.
Join @SpecterOps for a training at #BHUSA 2026! Some of our instructors include @subat0mik @hotnops @tifkin_ @Icemoonhsv @_xpn_ @unsigned_sh0rt @brian_psu @Tw1sm along with many others
Registration for training at #BHUSA 2026 is officially open, and we are bringing a full slate of adversary-focused courses to Las Vegas. 🎰
Early reg. pricing ends May 22, so now is the time to lock in your seat.
🧵 Links to each course ⤵️
Security teams need to understand how attackers operate in Azure and Entra ID.
Adversary Perspectives: Azure teaches how adversaries exploit weaknesses in Azure & Entra ID, w/ practical tradecraft for red & blue teams.
Join us in Amsterdam next month! https://t.co/IDZAN7YXlr
Who to follow
0xdeadbeefJERKY ☠️
@0xdeadbeefJERKY
⚔️ Red Teamer turned 🛡️ Blue Teamer @Meta | 🤖 AI Enthusiast and Agent Wrangler
Riccardo
@dottor_morte
Principal Consultant @WithSecure
Beau Bullock 
@dafthack
Hacker, trainer, and guitarist | Black Hills InfoSec #RedTeam | @BreakForge Training | Produces music to hack to at @N0BANDW1DTH
What GPT 5.4-Cyber can do while you’re 40,000ft in the air 👻
5.5 is amazing for cybersecurity.
"We estimate a human expert would need around 20 hours to complete the full chain. GPT-5.5 completed TLO end-to-end in 2 of 10 attempts, making it the second model to do so. Mythos Preview, the first model to solve TLO, did so in 3 of 10 attempts."
https://t.co/XwAbCWXJpO
A MIT professor gave a 1-hour lecture in 2019 that has 18 million views.
He died 5 months after recording it.
It was his final gift to the world.
Patrick Winston taught at MIT for 50 years.
The smartest engineers on earth sat in his classroom.
And he spent his last lecture teaching them the one skill their degrees never covered.
How to speak.
15 lessons that will change how you communicate forever:
Never open with a joke. Your audience is not ready to laugh yet. Open with a promise of what they will know by the end.
Your ideas are like your children. You are too close to them. What is obvious to you is invisible to everyone else. Explain the obvious.
The 5-minute rule: the first 5 minutes of any talk determine whether people will listen for the next 55. Spend more time on your opening than anything else.
Repeat your most important idea 3 times in 3 different ways. Once is never enough.
Build a fence around your idea. Tell people what it is NOT before you tell them what it IS.
Verbal punctuation. Pause. Let the idea land before moving to the next one.
Ask questions nobody will answer. Then wait 7 seconds. The silence is not awkward. It is processing.
Never read your slides. Your audience can read. They cannot listen and read simultaneously.
Use the board not the slides. Writing forces you to slow down. Slowing down forces clarity.
Inspire before you inform. Nobody learns from someone they are not inspired by.
End with a contribution not a summary. Tell them what you gave them. Not what you said.
Never say thank you at the end. It is weak. End with something that lands.
Stories make ideas stick. Data makes ideas understood. You need both. In that order.
The quality of your communication determines the quality of your ideas in the eyes of the world. Not the ideas themselves.
Practice is not preparation. Practice IS the skill.
Patrick Winston understood something most people spend their entire careers missing.
Your ideas are only as powerful as your ability to transfer them into someone else's mind.
You can be the smartest person in the room and be completely invisible.
Or you can master communication and make average ideas feel like breakthroughs.
He chose to spend his last lecture teaching this.
Watch it tonight.
Bookmark this first.
Follow @cyrilXBT for more lessons from the people who built the future.
These results underscore the importance of cyber security fundamentals like regular security updates, access controls, security configuration, and logging.
Pasting API keys in an LLM makes me feel kinda gross, so I created agentcordon. It's an agentic key vault that's:
✅Agent agnostic
✅Cedar policies for clear authorization
✅Fully auditable
✅Remote MCP Support
😮💨 Taking a Break
https://t.co/tSuIgTKJC8
Excited to be a member of the panel for Bsides Manchester Preview Night 🥳 BsidesMcr was my first real infosec con back when I was beginning my security career, so this will be a proud moment for me :)
We open sourced the tool used to detect the Axios supply chain compromise! I built it Friday after a red eye home from RSAC. Also, wrote up the full story, including the hectic moments after that first critical alert
https://t.co/HAm8eMr8vO
Can AI agents conduct advanced cyber-attacks autonomously?
We tested seven models released between August 2024 and February 2026 on two custom-built cyber ranges designed to replicate complex attack environments.
Here’s what we found🧵
We fine-tuned an 8B model to pop a GOAD domain…using only synthetic training data. No real networks. No frontier model distillation. Just a world model that simulates AD environments and generates realistic pentesting trajectories.
See how @shncldwll and @0xdab0 did it: https://t.co/ZTRnnR7PxO
Introducing BloodHound Scentry: BloodHound Enterprise + SpecterOps experts working alongside your team to eliminate attack paths and accelerate APM.
Level 0 → Level 3 maturity in ~6 months. Not theory. Tradecraft. 🎯
Learn more ➡️ https://t.co/tKmkzjCnqf
My first blog post in a while. This was a fun one. The endpoint management agent belonging to Quest Desktop Authority had native support for DLL injection, thread token manipulation and elevated admin execution... all remotely from a low privilege user.
https://t.co/u4dyDeK8Ab
Identity security in restricted environments shouldn’t be limited to periodic reviews.
BloodHound Enterprise on-premises enables continuous Identity Attack Path Management without cloud connectivity.
Learn more ➡️ https://t.co/sojlo1YFcV
Hope to see you in Denver! V2 of SCCMHunter has some nice features including Kerberos support for the admin module now that Microsoft killed NTLM auth in the 2509 release
Just released a new @SpecterOps blog! I discovered that during client push in SCCM env's it's possible to remotely start WebClient and coerce HTTP from site servers for a relay to LDAP resulting in hierarchy takeover when WebClient is installed! 🫠
https://t.co/4LTRtkogQr
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.1M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.9M followers
Taylor Swift
@taylorswift13
80.7M followers
Lady Gaga
@ladygaga
72.3M followers
Kim Kardashian
@kimkardashian
69.4M followers
Virat Kohli
@imvkohli
68.7M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.5M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.2M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60M followers