Melo @enigmelo - Twitter Profile

Pinned Tweet

almost 2 years ago

I discovered a pretty cool bypass of the keystroke obfuscation measures introduced in #OpenSSH 9.5. You can read about it here: https://t.co/JeJEzwx8Gd

3

1

0

1

272

enigmelo retweeted

AI Security Institute

@AISecurityInst

about 1 month ago

OpenAI’s GPT-5.5 is the second model to complete one of our multi-step cyber-attack simulations end-to-end 🧵

95

2K

397

751

2M

enigmelo retweeted

AI Security Institute

@AISecurityInst

about 2 months ago

We conducted cyber evaluations of Claude Mythos Preview and found that it is the first model to complete an AISI cyber range end-to-end. 🧵

AISecurityInst's tweet photo. We conducted cyber evaluations of Claude Mythos Preview and found that it is the first model to complete an AISI cyber range end-to-end. 🧵 https://t.co/gd9hi0Ve55

113

3K

552

1K

1M

enigmelo retweeted

AI Security Institute

@AISecurityInst

3 months ago

Can AI agents conduct advanced cyber-attacks autonomously? We tested seven models released between August 2024 and February 2026 on two custom-built cyber ranges designed to replicate complex attack environments. Here’s what we found🧵

AISecurityInst's tweet photo. Can AI agents conduct advanced cyber-attacks autonomously?

We tested seven models released between August 2024 and February 2026 on two custom-built cyber ranges designed to replicate complex attack environments.

Here’s what we found🧵 https://t.co/rFRkOQu8yU

19

390

92

319

103K

Who to follow

OSEP | OSCP | PNPT | Security Researcher | Cybersecurity Trainer

enigmelo retweeted

Stephen Sims

@Steph3nSims

about 1 year ago

An Introduction to using Artificial Intelligence (AI) for Vulnerability Research https://t.co/952iFabRqd

8

744

225

678

59K

Melo @enigmelo

over 1 year ago

@hackermondev Very interesting research!

0

1

0

715

Melo @enigmelo

over 1 year ago

@safe0x17 This has been my weekend(s) project for a while now, never got to crack the internals of GodPotato, though. Am curious if you ever found a public blogpost about this or just went off the public repo to reverse/convert the logic. Great stuff!

1

0

127

enigmelo retweeted

Xander Davies

@alxndrdavies

over 1 year ago

Jailbreaking evals ~always focus on simple chatbots—excited to announce AgentHarm, a dataset for measuring harmfulness of LLM 𝑎𝑔𝑒𝑛𝑡𝑠 developed at @AISafetyInst in collaboration with @GraySwanAI! 🧵 1/N

alxndrdavies's tweet photo. Jailbreaking evals ~always focus on simple chatbots—excited to announce AgentHarm, a dataset for measuring harmfulness of LLM 𝑎𝑔𝑒𝑛𝑡𝑠 developed at @AISafetyInst in collaboration with @GraySwanAI!
🧵 1/N https://t.co/iz1R6hCWUr

5

188

39

100

55K

enigmelo retweeted

0xdf @0xdf_

almost 2 years ago

Got interested in a diary from the @sans_isc about OFBiz Exploitation. Will show the exploit on Bizness (from @hackthebox_eu), and show how the patch for CVE-2024-32112 didn't fix the exploit, but the one for CVE-2024-36104 did. https://t.co/1mRxN35Tei

0

31

11

6

4K

Melo @enigmelo

almost 2 years ago

Although overshadowed by the RCE, this was patched today in OpenSSH 9.8! https://t.co/grFbowrqs5 Good stuff @damienmiller

0

1

0

79

Melo @enigmelo

almost 2 years ago

I discovered a pretty cool bypass of the keystroke obfuscation measures introduced in #OpenSSH 9.5. You can read about it here: https://t.co/JeJEzwx8Gd

3

1

0

1

272

Melo @enigmelo

almost 2 years ago

I'll hopefully publish the paper itself once it is graded (unless they fail me lol). Until then, if you are interested, you can read a summarised version of the research here: https://t.co/LQx7rv2cp2

0

46

Melo @enigmelo

almost 2 years ago

The patch was introduced to mitigate keystroke-based timing attacks on the SSH protocol, which is a topic that I extensively researched in my final year at uni. I wrote SSHniff, an SSH metadata analyser, which you can find here: https://t.co/dDeod1gTbM

1

0

53

enigmelo retweeted

Patrick Breyer #JoinMastodon @echo_pbreyer

almost 2 years ago

🇬🇧 Vote on #ChatControl postponed – a triumph in our fight to defend the digital privacy of correspondence and secure encryption. 💪 Thank you! But the next attempt will come. The critical governments need to get their act together now: https://t.co/rehi36rsxL

echo_pbreyer's tweet photo. 🇬🇧 Vote on #ChatControl postponed – a triumph in our fight to defend the digital privacy of correspondence and secure encryption. 💪 Thank you!
But the next attempt will come. The critical governments need to get their act together now:

https://t.co/rehi36rsxL https://t.co/LZ5xfhPChU

26

717

237

22

77K

enigmelo retweeted

Mullvad.net

@mullvadnet

almost 2 years ago

Chat control is a corrupt proposal pushed forward through undemocratic methods. The Belgian version is no different. The European Council should follow the European Parliament’s lead and reject it. https://t.co/4o1q3tVHsv

17

1K

345

72

73K

enigmelo retweeted

Meredith Whittaker

@mer__edith

almost 2 years ago

📣Official statement: the new EU chat controls proposal for mass scanning is the same old surveillance with new branding. Whether you call it a backdoor, a front door, or “upload moderation” it undermines encryption & creates significant vulnerabilities https://t.co/g0xNNKqquA

mer__edith's tweet photo. 📣Official statement: the new EU chat controls proposal for mass scanning is the same old surveillance with new branding.

Whether you call it a backdoor, a front door, or “upload moderation” it undermines encryption & creates significant vulnerabilities

https://t.co/g0xNNKqquA https://t.co/3L1hqbBRgq

200

8K

4K

966

2M

Melo @enigmelo

about 2 years ago

@threatactress @hackthebox_eu Definitely a missed opportunity on my part lol Hope you enjoyed the box :)

1

0

7

enigmelo retweeted

Hack The Box

@hackthebox_eu

about 2 years ago

Everything’s a blur 🫣 A new #HTB Seasons Machine is coming up! Blurry created by @enigmelo will go live on 8 June at 19:00 UTC. POV will be retired! ✓ Medium ✓ Linux → Join the competition & start #hacking: https://t.co/vh0CExdDOT #HackTheBox #CyberSecurity #NewRelease

hackthebox_eu's tweet photo. Everything’s a blur 🫣
A new #HTB Seasons Machine is coming up! Blurry created by @enigmelo will go live on 8 June at 19:00 UTC. POV will be retired!
✓ Medium
✓ Linux
→ Join the competition & start #hacking: https://t.co/vh0CExdDOT
#HackTheBox #CyberSecurity #NewRelease https://t.co/q5eGsNfHvB

2

48

7

3

6K

Melo @enigmelo

about 2 years ago

Thought I was going crazy.. not how I wanted to spend my Sunday lol Thanks to these fellas, too: https://t.co/YYKYu4RBVR

0

65

Melo @enigmelo

about 2 years ago

"It's always DNS"- except when your ISP is at fault.. So I was trying to figure out why pihole fails to resolve https://t.co/EDCbsMgZdE, but only when using DNSSEC. Turns out 'ole gov's DNSSEC is fine, but VirginMedia messes up Packet Fragmentation, causing truncated keys...

enigmelo's tweet photo. "It's always DNS"- except when your ISP is at fault.. So I was trying to figure out why pihole fails to resolve https://t.co/EDCbsMgZdE, but only when using DNSSEC. Turns out 'ole gov's DNSSEC is fine, but VirginMedia messes up Packet Fragmentation, causing truncated keys... https://t.co/UdX02iAaiD

1

3

0

456

Melo

@enigmelo

Who to follow

Last Seen Users on Sotwe

Trends for you

Most Popular Users