HD Moore
@hdm.io
CEO and founder of runZero.com, previously the founder and lead developer of Metasploit, a CSO, a consultant, and the head of various security research teams. Contact info, presentations, and more at https://hdm.io/
Reposted by HD Moore
On the latest Risky Biz, @patrick.risky.biz, and @hdm.io talk about visualizing the attack surface with runZeroHound, why you can't synthesize what runZero delivers, & how we are leveraging AI to help predict risks and scan smarter.
📺 Watch the full interview: www.runzero.com/resources/ri...
📺 Watch the full interview: www.runzero.com/resources/ri...
November 26, 2025 at 2:54 PM
On the latest Risky Biz, @patrick.risky.biz, and @hdm.io talk about visualizing the attack surface with runZeroHound, why you can't synthesize what runZero delivers, & how we are leveraging AI to help predict risks and scan smarter.
📺 Watch the full interview: www.runzero.com/resources/ri...
📺 Watch the full interview: www.runzero.com/resources/ri...
Reposted by HD Moore
📺 Live webcast Dec 3 with SC Media!
Your attack surface doesn’t end at the firewall.
Join @hdm.io, @todb.hugesuccess.org, and @sawaba.bsky.social to learn how continuous discovery + attack path mapping keeps you ahead.
👉 www.scworld.com/cybercast/at...
Your attack surface doesn’t end at the firewall.
Join @hdm.io, @todb.hugesuccess.org, and @sawaba.bsky.social to learn how continuous discovery + attack path mapping keeps you ahead.
👉 www.scworld.com/cybercast/at...
www.scworld.com
November 24, 2025 at 3:02 PM
📺 Live webcast Dec 3 with SC Media!
Your attack surface doesn’t end at the firewall.
Join @hdm.io, @todb.hugesuccess.org, and @sawaba.bsky.social to learn how continuous discovery + attack path mapping keeps you ahead.
👉 www.scworld.com/cybercast/at...
Your attack surface doesn’t end at the firewall.
Join @hdm.io, @todb.hugesuccess.org, and @sawaba.bsky.social to learn how continuous discovery + attack path mapping keeps you ahead.
👉 www.scworld.com/cybercast/at...
Reposted by HD Moore
🧭 Cybersecurity’s old rules are cracking.
In his SecTor keynote, @hdm.io breaks down the rules that shaped the 2000s: what survived, what failed us, and the new rules we’ll need next.
Missed it? 👀 Watch the keynote:
www.runzero.com/resources/on...
In his SecTor keynote, @hdm.io breaks down the rules that shaped the 2000s: what survived, what failed us, and the new rules we’ll need next.
Missed it? 👀 Watch the keynote:
www.runzero.com/resources/on...
November 21, 2025 at 2:51 PM
🧭 Cybersecurity’s old rules are cracking.
In his SecTor keynote, @hdm.io breaks down the rules that shaped the 2000s: what survived, what failed us, and the new rules we’ll need next.
Missed it? 👀 Watch the keynote:
www.runzero.com/resources/on...
In his SecTor keynote, @hdm.io breaks down the rules that shaped the 2000s: what survived, what failed us, and the new rules we’ll need next.
Missed it? 👀 Watch the keynote:
www.runzero.com/resources/on...
The CFP for SO-CON 2026 closes in about 12 hours (11:59 2025-11-15)! Have a cool approach to attack path management (or awesome connector for BloodHound OpenGraph)? Submit ASAP:
specterops.io/so-con/
specterops.io/so-con/
SO-CON 2026 - SpecterOps
SO-CON 2026: Secure your spot for the conference and training.
specterops.io
November 15, 2025 at 6:54 PM
The CFP for SO-CON 2026 closes in about 12 hours (11:59 2025-11-15)! Have a cool approach to attack path management (or awesome connector for BloodHound OpenGraph)? Submit ASAP:
specterops.io/so-con/
specterops.io/so-con/
The clever folks at Grumpy Goose Labs have published even more ways to identify unauthorized IP KVMs across your environment, with some great memes to boot! Be KVM, Do Fraud - blog.grumpygoose.io/be-kvm-do-fr...
Be KVM, Do Fraud
Hi Everyone! It’s me, your friendly Wav3.
blog.grumpygoose.io
November 15, 2025 at 12:00 AM
The clever folks at Grumpy Goose Labs have published even more ways to identify unauthorized IP KVMs across your environment, with some great memes to boot! Be KVM, Do Fraud - blog.grumpygoose.io/be-kvm-do-fr...
Reposted by HD Moore
Your attack surface is sprawling & full of blind spots.
🎥 On Dec 3 at 2 PM ET, SC Media brings together @hdm.io, @todb.hugesuccess.org, & @sawaba.bsky.social to reveal how to operationalize attack surface management without losing your mind.
👉 Register here: www.scworld.com/cybercast/at...
🎥 On Dec 3 at 2 PM ET, SC Media brings together @hdm.io, @todb.hugesuccess.org, & @sawaba.bsky.social to reveal how to operationalize attack surface management without losing your mind.
👉 Register here: www.scworld.com/cybercast/at...
November 13, 2025 at 2:53 PM
Your attack surface is sprawling & full of blind spots.
🎥 On Dec 3 at 2 PM ET, SC Media brings together @hdm.io, @todb.hugesuccess.org, & @sawaba.bsky.social to reveal how to operationalize attack surface management without losing your mind.
👉 Register here: www.scworld.com/cybercast/at...
🎥 On Dec 3 at 2 PM ET, SC Media brings together @hdm.io, @todb.hugesuccess.org, & @sawaba.bsky.social to reveal how to operationalize attack surface management without losing your mind.
👉 Register here: www.scworld.com/cybercast/at...
Reposted by HD Moore
runZero Hour is one week away!
Join us on Nov 19: @todb.hugesuccess.org, Rob King, @hdm.io, and Jared Atkinson ( CTO @specterops.io ) break down attacker movement, graph analysis, runZeroHound, and this month’s top vulnerabilities.
👉 Register here: www.runzero.com/research/run...
Join us on Nov 19: @todb.hugesuccess.org, Rob King, @hdm.io, and Jared Atkinson ( CTO @specterops.io ) break down attacker movement, graph analysis, runZeroHound, and this month’s top vulnerabilities.
👉 Register here: www.runzero.com/research/run...
November 12, 2025 at 3:27 PM
runZero Hour is one week away!
Join us on Nov 19: @todb.hugesuccess.org, Rob King, @hdm.io, and Jared Atkinson ( CTO @specterops.io ) break down attacker movement, graph analysis, runZeroHound, and this month’s top vulnerabilities.
👉 Register here: www.runzero.com/research/run...
Join us on Nov 19: @todb.hugesuccess.org, Rob King, @hdm.io, and Jared Atkinson ( CTO @specterops.io ) break down attacker movement, graph analysis, runZeroHound, and this month’s top vulnerabilities.
👉 Register here: www.runzero.com/research/run...
Reposted by HD Moore
🚨Your secure enclave? More of a suggestion than a guarantee.
If you were expecting TEEs to provide private computing in untrusted data centers, this latest article by @arstechnica.com featuring our Founder & CEO @hdm.io is a must-read:
arstechnica.com/security/202...
If you were expecting TEEs to provide private computing in untrusted data centers, this latest article by @arstechnica.com featuring our Founder & CEO @hdm.io is a must-read:
arstechnica.com/security/202...
November 11, 2025 at 2:52 PM
🚨Your secure enclave? More of a suggestion than a guarantee.
If you were expecting TEEs to provide private computing in untrusted data centers, this latest article by @arstechnica.com featuring our Founder & CEO @hdm.io is a must-read:
arstechnica.com/security/202...
If you were expecting TEEs to provide private computing in untrusted data centers, this latest article by @arstechnica.com featuring our Founder & CEO @hdm.io is a must-read:
arstechnica.com/security/202...
Identify insecure TLS services with the enhanced runZero Certificate Inventory: www.runzero.com/blog/identif...
Identify insecure TLS services with runZero Certificate Inventory
The runZero Certificates Inventory is an essential tool for seeing and securing every certificate in your environment. Explore these essential use cases.
www.runzero.com
November 6, 2025 at 3:07 PM
Identify insecure TLS services with the enhanced runZero Certificate Inventory: www.runzero.com/blog/identif...
Reposted by HD Moore
🎃 Happy Halloween! The end of #CybersecurityAwarenessMonth means it's time for our EoL-palooza grand finale!
The scariest find? A surge of End-of-Life Proxmox systems... software zombies attackers feast on.
🧟♂️ @hdm.io has the guide to hunt them down: www.runzero.com/blog/managin...
The scariest find? A surge of End-of-Life Proxmox systems... software zombies attackers feast on.
🧟♂️ @hdm.io has the guide to hunt them down: www.runzero.com/blog/managin...
After VMware: Managing EOL for Proxmox Hypervisors
Outdated Proxmox VE installs leave systems exposed as users migrate from VMware. With runZero you can easily identify EoL hosts and expiring TLS certs.
www.runzero.com
October 31, 2025 at 1:44 PM
🎃 Happy Halloween! The end of #CybersecurityAwarenessMonth means it's time for our EoL-palooza grand finale!
The scariest find? A surge of End-of-Life Proxmox systems... software zombies attackers feast on.
🧟♂️ @hdm.io has the guide to hunt them down: www.runzero.com/blog/managin...
The scariest find? A surge of End-of-Life Proxmox systems... software zombies attackers feast on.
🧟♂️ @hdm.io has the guide to hunt them down: www.runzero.com/blog/managin...
Austin Hackers Anonymous (AHA) is TONIGHT (2025-10-30) takeonme.org - Have some zero-day to share? AHA is an official CNA and will issue CVEs for vulnerabilities disclosed at the meeting. I'm planning to demo more SSHamble.com findings along with BloodHound OpenGraph stuff. See yall soon!
AHA!
Austin Hackers Anonymous!
takeonme.org
October 30, 2025 at 9:18 PM
Austin Hackers Anonymous (AHA) is TONIGHT (2025-10-30) takeonme.org - Have some zero-day to share? AHA is an official CNA and will issue CVEs for vulnerabilities disclosed at the meeting. I'm planning to demo more SSHamble.com findings along with BloodHound OpenGraph stuff. See yall soon!
Reposted by HD Moore
So this story is super duper interesting for a whole ton of reasons, but one big one is its a very rare glimpse into the private valuation of high-end exploits held by major defense contractors
bsky.app/profile/lega...
bsky.app/profile/lega...
Peter Williams, A former executive with US defense contractor L3Harris has pleaded guilty to selling digital spy tools to a Russian broker, the Justice Department announced. Williams pleaded to two counts of theft of trade secrets reut.rs/49o7Q0I
October 29, 2025 at 11:45 PM
So this story is super duper interesting for a whole ton of reasons, but one big one is its a very rare glimpse into the private valuation of high-end exploits held by major defense contractors
bsky.app/profile/lega...
bsky.app/profile/lega...
Just like chocolate and peanut butter, runZero and BloodHound are an amazing combination. Today we are introducing runZeroHound - an open source toolkit for bringing runZero Asset Inventory data into BloodHound attack graphs: www.runzero.com/blog/introdu...
Uncovering network attack paths with runZeroHound
runZeroHound converts runZero asset inventories into BloodHound OpenGraph imports, enabling Cypher-based analysis of real network attack paths.
www.runzero.com
October 27, 2025 at 4:34 PM
Just like chocolate and peanut butter, runZero and BloodHound are an amazing combination. Today we are introducing runZeroHound - an open source toolkit for bringing runZero Asset Inventory data into BloodHound attack graphs: www.runzero.com/blog/introdu...
Reposted by HD Moore
It's the spooky season, so several of my ebooks are on sale. 💀🎃🪦
Aloha from Hell appears to be $2.99 everywhere, and The Secrets of Insects is $6.99.
Dead Set and King Bullet are $1.99 each on Amazon.
US only
Aloha from Hell appears to be $2.99 everywhere, and The Secrets of Insects is $6.99.
Dead Set and King Bullet are $1.99 each on Amazon.
US only
October 23, 2025 at 5:03 PM
It's the spooky season, so several of my ebooks are on sale. 💀🎃🪦
Aloha from Hell appears to be $2.99 everywhere, and The Secrets of Insects is $6.99.
Dead Set and King Bullet are $1.99 each on Amazon.
US only
Aloha from Hell appears to be $2.99 everywhere, and The Secrets of Insects is $6.99.
Dead Set and King Bullet are $1.99 each on Amazon.
US only
SpecterOps released "DumpGuard" along with a detailed article on how they were able to bypass Windows Credential Guard in both privileged and unprivileged contexts. I learned a ton about Isolated LSA and friends: specterops.io/blog/2025/10...
Catching Credential Guard Off Guard - SpecterOps
Uncovering the protection mechanisms provided by modern Windows security features and identifying new methods for credential dumping.
specterops.io
October 23, 2025 at 7:19 PM
SpecterOps released "DumpGuard" along with a detailed article on how they were able to bypass Windows Credential Guard in both privileged and unprivileged contexts. I learned a ton about Isolated LSA and friends: specterops.io/blog/2025/10...
Reposted by HD Moore
Our new website has launched. We will continue to update the site with information as it becomes available.
https://bsidespyongyang.com/
https://bsidespyongyang.com/
October 20, 2025 at 3:55 AM
Our new website has launched. We will continue to update the site with information as it becomes available.
https://bsidespyongyang.com/
https://bsidespyongyang.com/
Reposted by HD Moore
🎙️ Join @hdm.io, @todb.hugesuccess.org & @sawaba.bsky.social for a live SC Media webcast:
“Fixing a Broken System: Why Legacy Vulnerability Management Tools Can’t Keep Up”
Learn what’s next for exposure & attack surface management.
📅 Oct 29
⏰ 2 PM ET
🔗 www.scworld.com/cybercast/fi...
“Fixing a Broken System: Why Legacy Vulnerability Management Tools Can’t Keep Up”
Learn what’s next for exposure & attack surface management.
📅 Oct 29
⏰ 2 PM ET
🔗 www.scworld.com/cybercast/fi...
October 22, 2025 at 2:06 PM
🎙️ Join @hdm.io, @todb.hugesuccess.org & @sawaba.bsky.social for a live SC Media webcast:
“Fixing a Broken System: Why Legacy Vulnerability Management Tools Can’t Keep Up”
Learn what’s next for exposure & attack surface management.
📅 Oct 29
⏰ 2 PM ET
🔗 www.scworld.com/cybercast/fi...
“Fixing a Broken System: Why Legacy Vulnerability Management Tools Can’t Keep Up”
Learn what’s next for exposure & attack surface management.
📅 Oct 29
⏰ 2 PM ET
🔗 www.scworld.com/cybercast/fi...
Reposted by HD Moore
I ♥️ encryption
Senator Ron Wyden calls on the Internet Society community to 📣 "GET LOUD" 📣 this Global Encryption Day!
"Get loud because you are the glue that holds the Internet together." - @wyden.senate.gov
Thank you for fighting for the Internet to give power to the powerless and a voice to the voiceless!
"Get loud because you are the glue that holds the Internet together." - @wyden.senate.gov
Thank you for fighting for the Internet to give power to the powerless and a voice to the voiceless!
Encryption Matters: In Conversation with Sally Wentworth and US Senator Ron Wyden
YouTube video by Internet Society
www.youtube.com
October 21, 2025 at 4:24 PM
I ♥️ encryption
Today's runZero Hour is up with Rob King, Tod Beardsley, and EOL expert and technology necromancer, captn3m0 (pronounced “nemo”). They will summon and explore runZero’s latest research paper, “Undead by design: Benchmarking end-of-life operating systems”:
www.youtube.com/watch?v=BXBb...
www.youtube.com/watch?v=BXBb...
runZero Hour: Episode 23
Join us for a scary episode of runZero Hour with Rob King, Tod Beardsley, and EOL expert and technology necromancer, captn3m0 (pronounced “nemo”). They will summon and explore runZero’s latest…
www.youtube.com
October 15, 2025 at 6:11 PM
Today's runZero Hour is up with Rob King, Tod Beardsley, and EOL expert and technology necromancer, captn3m0 (pronounced “nemo”). They will summon and explore runZero’s latest research paper, “Undead by design: Benchmarking end-of-life operating systems”:
www.youtube.com/watch?v=BXBb...
www.youtube.com/watch?v=BXBb...
JawnCon (jawncon.org) 0x02 just wrapped! I wish I could make it this year, but settled for catching the talks on the live stream:
Main Stage Day 1: www.youtube.com/live/Cvf-mAd...
Man Stage Day 2: www.youtube.com/watch?v=bcr6...
Classroom Day 2: www.youtube.com/watch?v=1aML...
Main Stage Day 1: www.youtube.com/live/Cvf-mAd...
Man Stage Day 2: www.youtube.com/watch?v=bcr6...
Classroom Day 2: www.youtube.com/watch?v=1aML...
October 13, 2025 at 8:43 PM
JawnCon (jawncon.org) 0x02 just wrapped! I wish I could make it this year, but settled for catching the talks on the live stream:
Main Stage Day 1: www.youtube.com/live/Cvf-mAd...
Man Stage Day 2: www.youtube.com/watch?v=bcr6...
Classroom Day 2: www.youtube.com/watch?v=1aML...
Main Stage Day 1: www.youtube.com/live/Cvf-mAd...
Man Stage Day 2: www.youtube.com/watch?v=bcr6...
Classroom Day 2: www.youtube.com/watch?v=1aML...
Hello Austin Gophers! Join us tonight, Wednesday, October 8th, 2025 for two hours of lightning talks and discussion at the ATX Go meetup. This is hosted by Capital Factory and runs from 6:30 PM to 8:30 PM central (with pizza and drinks!): www.meetup.com/atxgolang/ev...
ATX Golang Meetup - September 2025, Wed, Sep 10, 2025, 6:30 PM | Meetup
Join us for an evening of information, networking, friendship, beer, and pizza! You are invited to come discuss our favorite programming language and meet other Go develope
www.meetup.com
October 8, 2025 at 4:46 PM
Hello Austin Gophers! Join us tonight, Wednesday, October 8th, 2025 for two hours of lightning talks and discussion at the ATX Go meetup. This is hosted by Capital Factory and runs from 6:30 PM to 8:30 PM central (with pizza and drinks!): www.meetup.com/atxgolang/ev...
Reposted by HD Moore
🛡️ The attacker *will* get in. The real fight starts after the phish bites.
Learn how to stop lateral movement, harden internal pathways, and make your network an attacker’s nightmare.
👉 Read: www.runzero.com/blog/how-to-...
Learn how to stop lateral movement, harden internal pathways, and make your network an attacker’s nightmare.
👉 Read: www.runzero.com/blog/how-to-...
October 7, 2025 at 4:02 PM
🛡️ The attacker *will* get in. The real fight starts after the phish bites.
Learn how to stop lateral movement, harden internal pathways, and make your network an attacker’s nightmare.
👉 Read: www.runzero.com/blog/how-to-...
Learn how to stop lateral movement, harden internal pathways, and make your network an attacker’s nightmare.
👉 Read: www.runzero.com/blog/how-to-...
Reposted by HD Moore
New Mic-E-Mouse technique turns your optical mouse into a microphone that records conversations
sites.google.com/view/mic-e-m...
sites.google.com/view/mic-e-m...
Mic-E-Mouse
Your computer mouse has big ears.
Image courtesy of GPT4/Dall-E-3, generated using the keywords "computer mouse with big ears and a microphone as a scroll wheel."
sites.google.com
October 4, 2025 at 10:33 PM
New Mic-E-Mouse technique turns your optical mouse into a microphone that records conversations
sites.google.com/view/mic-e-m...
sites.google.com/view/mic-e-m...
Reposted by HD Moore
🎙️ New Alice & Bob podcast by @BeyondTrust: runZero founder & CEO @hdm.io joins James Maude & @marcmaiffret.bsky.social to share how he went from dumpster-diving teen to cybersecurity pioneer
🎧 Listen: www.runzero.com/resources/al...
🎧 Listen: www.runzero.com/resources/al...
October 2, 2025 at 8:08 PM
🎙️ New Alice & Bob podcast by @BeyondTrust: runZero founder & CEO @hdm.io joins James Maude & @marcmaiffret.bsky.social to share how he went from dumpster-diving teen to cybersecurity pioneer
🎧 Listen: www.runzero.com/resources/al...
🎧 Listen: www.runzero.com/resources/al...
@SectorCa 2025 is fantastic! I last attended in 2008 and holy cow has it grown. Great to see Brian and Bruce still involved. Excellent talks, really sharp crowd, zero attitude, and everyone is incredibly friendly. You can find the slides from my morning keynote at hdm.io/decks/Sector...
October 2, 2025 at 4:13 PM
@SectorCa 2025 is fantastic! I last attended in 2008 and holy cow has it grown. Great to see Brian and Bruce still involved. Excellent talks, really sharp crowd, zero attitude, and everyone is incredibly friendly. You can find the slides from my morning keynote at hdm.io/decks/Sector...