Olivia
Online
R00tedsec
@R00tedSec
Cybersecurity Engineer working in 5G 🛰️📡 | Ex-coordinador de @HackOnURJC | II and IV National Cyberleague Finalist
@[email protected]
Joined June 2020
140 Following
117 Followers
220 Posts
Pinned Tweet
New post, let's dive into deploying your own k3s cluster to host your development environment with security measures in place. 🔒
Secure K3s At Home I: How to deploy your own k3s! 🚧
https://t.co/jPTMYct0uK
🚨❗️Nueva charla confirmada❗🚨
Iván García Lozano y Alejandro Bermejo Pérez (@R00tedSec) nos hablarán sobre redes 5G, nuevos vectores de ataque y cómo un honeypot puede convertirse en una herramienta clave para la caza de amenazas e inteligencia de seguridad. 📶🎯
https://t.co/QKytBnGcps
Easy way to mitigate the risks:
1. Harden your SSH and security with fail2ban if you're on a VPS (very important).
2. Don't use reverse proxies, use tailscale instead.
3. Run on your own hardware locally - more secure.
4. Have clawdbot invite you to calendar events, don't just GIVE IT your calendar.
5. Compartmentalize access to everything.
6. Install local models for super simple tasks, and learn how to use "merge" so clawdbot can automatically switch between models to control token usage and costs.
7. Install top skills at https://t.co/mYET40081T (most are optimized for MacOS, btw) and learn how they work.
8. Train clawdbot to use https://t.co/bRnskgnVd7 so you can have a visual on all the changes it's making across the system. Knowledge is power.
Who to follow
Marta Beltrán
@MBeltranPardo
Profesora, investigadora, divulgadora e innovadora. Apasionada de la tecnología y de las personas detrás de ella. Cuenta personal.
SeekNHack
@seeknhack
Asociación de Ciberseguridad SeekNHack
📩[email protected]
Rubén sg
@rsgbengii
Cybersecurity engineer
I publish cybersecurity articles to help you learn cool cybersecurity stuff
Our Docker images had 847 vulnerabilities. All from the base image.
We were using ubuntu:latest.
The fix:
- Switched to distroless images
- Reduced image size from 420MB to 28MB
- Vulnerabilities dropped to 3
- Container startup time improved by 60%
Then discovered our CI/CD was pulling images without verification.
Added:
- Image signing with Cosign
- Vulnerability scanning in pipeline
- Admission controller to block unsigned images
Security and performance often align.
Smaller surface area equals fewer problems.
Your Docker containers are slow, bloated, and vulnerable. And you’re probably making the same mistakes 90% of engineers make in production.
Take my advice and please
• Don’t use “latest” tags, instead use specific versions like node:18.17-alpine
• Don’t build single-stage fat images; instead, use multi-stage builds to get 50MB images instead of 800MB
• Don’t run containers as root, instead, create a non-root user for security
• Don’t copy everything with COPY . ., instead use .dockerignore and specific COPY commands
• Don’t let containers use unlimited resources, instead set proper memory and CPU limits
• Don’t deploy without health checks, instead add HEALTHCHECK commands so Kubernetes knows your app works
• Don’t create 20 separate RUN layers, instead combine commands with && to minimize layers
• Don’t skip security scanning, instead use docker scan or Trivy in your CI/CD pipeline
• Don’t use full OS images for simple apps, instead use scratch or distroless base images
• Don’t write logs to files inside containers; instead, log to stdout/stderr and let orchestrators handle collection
These practices make the difference between hobby projects and production systems.
Your containers should be fast, secure, and predictable. Not slow, vulnerable time bombs.
5GHOUL: Unleashing Chaos on 5G Edge Devices via Stateful Multi-layer Fuzzing
https://t.co/GYhBVClJYq
The SCTP protocol on Linux provides a reliable and stealthy way to access Linux. In this thread I'm going to demonstrate a simple SCTP backdoor and how it can be missed by security teams. Then I'll show you how to look for this kind of activity.
It's a shame too.
Blue Team is infinitely more interesting. I have deep respect and admiration for people who do DFIR, SOC, and DEVSECOPS, etc.
I've learned more from defensive approaches than I have offensive.
Blue Team just isn't as "flashy".
🚨 A 10-year-old flaw (CVE-2025-49113 / CVSS 9.9) in Roundcube Webmail could let hackers take over your system.
Nation-state groups like APT28 have already exploited Roundcube before.
🔗 Read: https://t.co/QGsfVjdaLk
🔧 Patch to 1.6.11 or 1.5.10 LTS now.
📌 PoC coming soon.
Exposing the flaw in our phone system https://t.co/WtZulkiFbi
> critical 9.9 cvss "unauthenticated" rce on linux!!!!
> look inside
> requires local network access, user interaction, and non-default configuration
There are two kinds of people at Microsoft.
The guy who found that SSH was taking a few extra milliseconds to connect and was insistent on knowing why.
And the person who has decided the Microsoft Mac RDP client will be rebranded to “Windows App”
En 2017, con 3,7 MB de código, WannaCry bloqueó 300.000 ordenadores en 48 horas.
En 2024, 40 KB de un archivo de configuración defectuoso bloqueó 8,1 millones de ordenadores en 1,5 horas.
Aunque es comparar peras con manzanas, ilustra los peligros del monocultivo #Windows.
How to fix the Crowdstrike thing:
1. Boot Windows into safe mode
2. Go to C:\Windows\System32\drivers\CrowdStrike
3. Delete C-00000291*.sys
4. Repeat for every host in your enterprise network including remote workers
5. If you're using BitLocker jump off a bridge
5️⃣ IDEAS para la transformación digital de España 💡
Yo no sé de política, pero he hecho toda mi carrera profesional en la tecnología. Incluyendo fundar, desarrollar y vender una empresa tecnológica.
Aquí van mis propuestas para mejorar nuestro país. 🧵👇
🚨 A critical OpenSSH flaw (CVE-2024-6387) allows unauthenticated remote code execution on glibc-based Linux systems. 14 million servers at risk.
https://t.co/9cP7e5ax7r
Apply the latest patches now!
Acompañadme en este pequeño hilo que cubre el drama de hoy 🧵⬇️
La historia empieza con Jia Tan (JiaT75 en github), un maintainer de xz (librería de compresión que se usa en monton de sitios).
Just dropped a blog on mastering web crawling with Katana for security audits! 🕷️ From Firefox setup to deep diving with advanced flags, learn the secrets to uncovering hidden vulnerabilities. Check it out! ✨ #infosec #CyberSecurity #Hacking
https://t.co/x03QyiVzI4
In the last post, we covered how to deploy your own k3s cluster.👨💻
Now, let's take a deep dive into Kubernetes to understand how it works.
From Zero To Hero I: What is kubernetes and how it works 🏛️
https://t.co/iBUrsZNCt4
Last Seen Users on Sotwe
Beijing
Seen from India
Hakan34
Seen from Turkey
✧ 𝐄𝐭𝐡𝐞𝐫𝐞𝐚𝐥 𝐇𝐲𝐩𝐧𝐨 𝐌𝐨𝐦𝐦𝐲 ✧
Seen from Turkey
♠️TOKI💗
Seen from United Kingdom
Nicolás Borrás C.
Seen from Turkey
RICC
Seen from United States
Mista Lova Lova
Seen from Chile
budakjohore1145
Seen from Indonesia
zoya Hot Queen
Seen from Pakistan
🇲🇦مغربي عاشق للمتعة🇲🇦
Seen from Algeria
Most Popular Users
Elon Musk 
@elonmusk
240.4M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
110.1M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.5M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.8M followers
KATY PERRY
@katyperry
87.4M followers
Taylor Swift
@taylorswift13
81.2M followers
Lady Gaga
@ladygaga
72.8M followers
Kim Kardashian
@kimkardashian
69.7M followers
Virat Kohli
@imvkohli
69.5M followers
YouTube
@youtube
68.7M followers
Bill Gates
@billgates
63.7M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
62.2M followers
CNN
@cnn
61.9M followers
X
@x
60.8M followers
Selena Gomez
@selenagomez
60.5M followers