Sari Bukhari @s8t8s - Twitter Profile

s8t8s retweeted

Tom Dörr

@tom_doerr

about 1 month ago

Discovers real IPs behind Cloudflare https://t.co/Ix3kVM6Tmt

5

1K

148

1K

52K

s8t8s retweeted

How To Prompt

@HowToPrompt__

about 2 months ago

Someone just open-sourced an autonomous AI red team that runs the full kill chain. It's called Decepticon. A multi-agent system where one agent does recon, another exploits, another handles privilege escalation and lateral movement.. all inside a hardened Kali sandbox. 100% Open Source.

26

558

79

747

45K

s8t8s retweeted

Khairallah AL-Awady

@eng_khairallah1

3 months ago

🚨 BREAKING: Someone just open-sourced your own personal intelligence terminal. It's called Crucix. Bookmark it for later. It watches 27 live data feeds across the entire planet and alerts you when something changes. Governments and intelligence firms pay six figures for this kind of setup. This runs on your laptop for free. No cloud. No subscriptions. No telemetry. Just a single Node.js server and a Jarvis-style dashboard. What it watches every 15 minutes: → ACLED for armed conflict events worldwide → Federal Reserve economic indicators via FRED → OFAC + OpenSanctions for sanctions screening → 17 curated Telegram intelligence channels for social sentiment → Maritime AIS for vessel tracking and sanctions evasion detection → GDELT for global event tracking across 100+ languages → WHO for disease outbreak alerts → ReliefWeb for UN humanitarian data → CelesTrak for satellite constellation tracking: ISS, Starlink, OneWeb → VIX and credit spread risk gauges Every sweep computes what changed, what escalated, and what de-escalated since the last cycle. Hook up an LLM (Claude, GPT, Gemini), and it generates trade ideas based on cross-domain signal correlation. Without an LLM, a deterministic rule engine still evaluates everything. 18+ sources work with zero API keys. No setup friction. 100% Open Source. MIT License. (Link in the comments)

eng_khairallah1's tweet photo. 🚨 BREAKING: Someone just open-sourced your own personal intelligence terminal.

It's called Crucix.

Bookmark it for later.

It watches 27 live data feeds across the entire planet and alerts you when something changes.

Governments and intelligence firms pay six figures for this kind of setup. This runs on your laptop for free.

No cloud. No subscriptions. No telemetry. Just a single Node.js server and a Jarvis-style dashboard.

What it watches every 15 minutes:

→ ACLED for armed conflict events worldwide
→ Federal Reserve economic indicators via FRED
→ OFAC + OpenSanctions for sanctions screening
→ 17 curated Telegram intelligence channels for social sentiment
→ Maritime AIS for vessel tracking and sanctions evasion detection
→ GDELT for global event tracking across 100+ languages
→ WHO for disease outbreak alerts
→ ReliefWeb for UN humanitarian data
→ CelesTrak for satellite constellation tracking: ISS, Starlink, OneWeb
→ VIX and credit spread risk gauges

Every sweep computes what changed, what escalated, and what de-escalated since the last cycle.

Hook up an LLM (Claude, GPT, Gemini), and it generates trade ideas based on cross-domain signal correlation. Without an LLM, a deterministic rule engine still evaluates everything.

18+ sources work with zero API keys. No setup friction.

100% Open Source. MIT License.

(Link in the comments)

69

1K

177

2K

76K

s8t8s retweeted

Tib3rius

@0xTib3rius

3 months ago

I just disrupted the entire Cybersecurity industry AGAIN.

59

746

65

635

64K

Who to follow

كاسبرسكي

@KasperskyKSA

حساب كاسبرسكي الشرق الأوسط. للدعم الفني برجاء زيارة https://t.co/rKHlR9zDxZ

Abdullah Al-Sabi

@Abdullahalsabi

Linux devotee, promoting open-source and uniting the digital landscape with zeal!

Ali Alwashali

@ali_alwashali

Cyber Threat Detection and Response

s8t8s retweeted

UCYBERS

@UCybersX

3 months ago

🚨 هل تظن ان حسابك الـ Private على إنستغرام خاص ولا يمكن الوصول اليه الحقيقة انه متاح للجميع في الواقع...💀 قام مختص في الأمن السيبراني مؤخرًا بنشر أداة تسمى "yesitsme" وهي اداة تعثر على ملفك الشخصي على Instagram باستخدام اسمك وبريدك الإلكتروني أو رقم هاتفك فقط - تتجاوز قيود حسابات إنستقرام الخاصة - تطابق هويتك الحقيقية مع حساباتك الوهمية - تقوم تلقائيًا بتقييم مستوى الثقة في الحساب اداة مفتوحة المصدر بنسبة 100%

UCybersX's tweet photo. 🚨 هل تظن ان حسابك الـ Private على إنستغرام خاص ولا يمكن الوصول اليه الحقيقة انه متاح للجميع في الواقع...💀

قام مختص في الأمن السيبراني مؤخرًا بنشر أداة تسمى "yesitsme" وهي اداة تعثر على ملفك الشخصي على Instagram باستخدام اسمك وبريدك الإلكتروني أو رقم هاتفك فقط

- تتجاوز قيود حسابات إنستقرام الخاصة
- تطابق هويتك الحقيقية مع حساباتك الوهمية
- تقوم تلقائيًا بتقييم مستوى الثقة في الحساب

اداة مفتوحة المصدر بنسبة 100%

29

4K

153

6K

470K

s8t8s retweeted

NaZaniin @n0aziXss

4 months ago

Hacker Search Engines Tags: #BugBounty #WebSecurity #EthicalHacking

6

1K

253

939

33K

s8t8s retweeted

Di

@DI0256

4 months ago

CloudRip is a simple and effective tool that helps you find real origin servers hidden behind Cloudflare protection. Test it out—it may become another tool in your toolbox! Free video guide https://t.co/sN1gxMMIzo @three_cube @_aircorridor @IamSmouk

DI0256's tweet photo. CloudRip is a simple and effective tool that helps you find real origin servers hidden behind Cloudflare protection.

Test it out—it may become another tool in your toolbox!

Free video guide https://t.co/sN1gxMMIzo
@three_cube @_aircorridor @IamSmouk https://t.co/8e1jKgOVwM

6

587

75

610

47K

s8t8s retweeted

Dark Web Informer @DarkWebInformer

5 months ago

Raccoon: A high performance offensive security tool for reconnaissance and vulnerability scanning GitHub: https://t.co/ZChtOx7RYo "Raccoon is a tool made for reconnaissance and information gathering with an emphasis on simplicity. It will do everything from fetching DNS records, retrieving WHOIS information, obtaining TLS data, detecting WAF presence and up to threaded dir busting and subdomain enumeration. Every scan outputs to a corresponding file."

DarkWebInformer's tweet photo. Raccoon: A high performance offensive security tool for reconnaissance and vulnerability scanning

GitHub: https://t.co/ZChtOx7RYo

"Raccoon is a tool made for reconnaissance and information gathering with an emphasis on simplicity.
It will do everything from fetching DNS records, retrieving WHOIS information, obtaining TLS data, detecting WAF presence and up to threaded dir busting and subdomain enumeration. Every scan outputs to a corresponding file."

1

403

62

368

29K

s8t8s retweeted

Md Ismail Šojal 🕷️

@0x0SojalSec

6 months ago

Run a Linux virtual machine in your browser, no server needed🔥 - https://t.co/8xktuoJ5k9 #infosec #cybersec #bugbountytip

9

1K

181

1K

60K

s8t8s retweeted

The Hacker's Choice (@[email protected])

@hackerschoice

6 months ago

THC Release 💥: The world’s largest IP<>Domain database: https://t.co/o4F8M1Pqi1 All forward and reverse IPs, all CNAMES and all subdomains of every domain. For free. Updated monthly. Try: curl https://t.co/5V2xLadmx5 Raw data (187GB): https://t.co/cBZOSAE89K (The fine work of messede 👌)

hackerschoice's tweet photo. THC Release 💥: The world’s largest IP<>Domain database: https://t.co/o4F8M1Pqi1

All forward and reverse IPs, all CNAMES and all subdomains of every domain. For free.

Updated monthly.

Try: curl https://t.co/5V2xLadmx5

Raw data (187GB): https://t.co/cBZOSAE89K

(The fine work of messede 👌)

35

2K

386

2K

243K

Sari Bukhari @s8t8s

7 months ago

@_0b1d1 Pdf

1

0

184

s8t8s retweeted

0b1d1 @_0b1d1

7 months ago

Introducing a comprehensive SOC Incident Response Playbook a fully structured, 100+ page collection of real world runbooks built for modern security operations teams.

_0b1d1's tweet photo. Introducing a comprehensive SOC Incident Response Playbook a fully structured, 100+ page collection of real world runbooks built for modern security operations teams. https://t.co/8yHNZ6yTYT

898

2K

234

2K

144K

s8t8s retweeted

Aurélien Chalot @Defte_

9 months ago

Dumping LSASS is old school. If an admin is connected on a server you are local admin on, just create a scheduled task asking for a certificate on his behalf, get the cert, get its privs. All automatized in the schtask_as module for NetExec 🥳🥳🥳

Defte_'s tweet photo. Dumping LSASS is old school. If an admin is connected on a server you are local admin on, just create a scheduled task asking for a certificate on his behalf, get the cert, get its privs. All automatized in the schtask_as module for NetExec 🥳🥳🥳 https://t.co/71zooRgkuw

7

1K

299

897

72K

s8t8s retweeted

Md Ismail Šojal 🕷️

@0x0SojalSec

10 months ago

Find the origin servers of websites protected by Cloudflare, Sucuri, or Incapsula with a misconfigured DNS. ⚔️ - https://t.co/cGWegtzlRT #infosec #bugbountytips #Cybersecurity

0x0SojalSec's tweet photo. Find the origin servers of websites protected by Cloudflare, Sucuri, or Incapsula with a misconfigured DNS. ⚔️

- https://t.co/cGWegtzlRT

#infosec #bugbountytips #Cybersecurity https://t.co/SxBHwijmY5

8

685

169

666

37K

s8t8s retweeted

Md Ismail Šojal 🕷️

@0x0SojalSec

10 months ago

AI-powered pentesting framework ⚔️ with autonomous agents and 150+ automated pentesting, vulnerability discovery, bug bounty automation, and security research , tools. - https://t.co/iGpYYciA11 #infosec #cybersec #bugbountytips

0x0SojalSec's tweet photo. AI-powered pentesting framework ⚔️

with autonomous agents and 150+ automated pentesting, vulnerability discovery, bug bounty automation, and security research , tools.

- https://t.co/iGpYYciA11

#infosec #cybersec #bugbountytips https://t.co/noHkhOOCdC

6

481

131

491

29K

s8t8s retweeted

Two Seven One Three

@TwoSevenOneT

10 months ago

#redteam Hey, look! Windows with two "System32" folders.😲 Hey, keep looking at this! A process loads the same DLL twice and keeps both instances in memory.😲 #malware #blueteam