rand0h's Essential Follow List Part 1
Updated: Jun 11, 2019
On the heels of the “Hunting For Web Shells” webinar that I just did with Sqrrl Data I wanted to follow up with a short post that came from an attendee question. I’m paraphrasing here but it was something along the lines of:
“I’m new to the infosec world, where can I go to learn more about things like web shells or overall information security?”
My answer was immediate and unequivocal, Twitter. Twitter is where you need to be. I don’t know where I’d be today both in the evolution of my career and my evolution as a person without such an epic treasure trove of people and information readily available 24 hours a day, 7 days a week, 365 days a year.
Any time there’s a new breach, new technology, new hacker philosophy, you can find at least 20 people with opinions on the subject, research to back up their opinions and others commenting on it, possibly telling them why they’re full of it. The hacker community has carved a deep niche into the Twitterverse and whether you’re new to this field or well worn and battle scarred, there is never a shortage of education to found there.
For the sake of my sanity and yours, I won’t release the entire InfoSec Social Media firehose on you all at once. I have started with two of my main areas of interest, Digital Forensics and Incident Response (DFIR) and Offensive Security (Red Teaming, Penetration Testing, etc.). The third list is a snippet of a larger list that I’ve curated over the last year or so. It’s an excerpt of my “Quality Over Quantity” list. If I deleted my Twitter tomorrow and started all over again, this is the list of people I’d re-follow immediately. The official list is about 80 accounts long but I have narrowed it down to my Top 20. A painful endeavor I assure you.
So, without further adieu but with some caveats, I present some of my favorite InfoSec Twitter accounts. These are people and pages that have helped shaped my hacker worldview for the better. Now for the caveat, this is by no means an exhaustive list. I’m sure someone will tell me I’ve made a grave oversight at not mentioning some of their favorite people. I welcome those comments because I’m always looking for new and interesting accounts to follow. We can all stand to learn something new.
Enjoy.
Ps. Shameless plug, you can also find me at https://www.twitter.com/dakacki
DFIR
https://twitter.com/jepayneMSFT
https://twitter.com/_devonkerr_
https://twitter.com/DFIR_Janitor
https://twitter.com/MalwareJake
https://twitter.com/phillmoore
https://twitter.com/sansforensics
https://twitter.com/mbromileyDFIR
https://twitter.com/matthewdunwoody
https://twitter.com/ItsReallyNick
https://twitter.com/chrissanders88
https://twitter.com/DavidJBianco
https://twitter.com/AlanOrlikoski
https://twitter.com/StephenHinck
OFFENSE
https://twitter.com/carnal0wnage
https://twitter.com/redteamwrangler
https://twitter.com/offsectraining
https://twitter.com/sneakerhax
https://twitter.com/SANSPenTest
https://twitter.com/Jason_Wood
https://twitter.com/Carlos_Perez
https://twitter.com/secure_sean
https://twitter.com/CastonPerla
My personal “Quality Over Quantity” list.
https://twitter.com/jaysonstreet
https://twitter.com/hacks4pancakes
https://twitter.com/armitagehacker
https://twitter.com/deviantollam
https://twitter.com/HackingDave
https://twitter.com/aprilwright
https://twitter.com/lennyzeltser
https://twitter.com/infosec_tottie
https://twitter.com/SultryAsian