Andy Nguyen

@theflow0

Security Engineer @ Google

Zürich, Schweiz
github.com/TheOfficialFloW
Joined January 2016
46 Photos and videos Photos and videos

Tweets

You blocked @theflow0

Are you sure you want to view these Tweets? Viewing Tweets won't unblock @theflow0

  1. Pinned Tweet
    6 Apr 2021

    Better late than never. BleedingTooth Linux Bluetooth RCE write-up and exploit have been published!

    25 replies . 273 retweets 789 likes
    Undo
  2. 5 hours ago

    Getting root with bpf?

    10 replies . 58 likes
    Undo
  3. Apr 10

    Oh and PlayStation folks please don't comment.

    13 replies . 80 likes
    Show this thread
    Show this thread
    Undo
  4. Apr 10

    What's a 0day? Wrong answers only.

    120 replies . 9 retweets 149 likes
    Show this thread
    Show this thread
    Undo
  5. Retweeted
    Mar 25

    Define 0day:

    6 replies . 8 retweets 17 likes
    Undo
  6. Retweeted
    Mar 23

    Another Ubuntu 21.10 LPE :) This bug doesn't even have a CVE yet. To pwn it I used the same technique described here: . I'll clean the code just a bit, before releasing it

    15 replies . 276 retweets 841 likes
    Show this thread
    Show this thread
    Undo
  7. Mar 16

    NFT folks stop following me. I am _not_ the guy from

    10 replies . 2 retweets 116 likes
    Undo
  8. Mar 9

    We have open positions for Cloud Vulnerability Research at Google! Ping me if you're interested!

    9 replies . 61 retweets 276 likes
    Undo
  9. Retweeted
    Feb 14

    kCTF VRP - now paying 31k-90k for vulns till (at least) the end of the year!!!!1 😘🥰💘 Happy Valentines Day!!!! 💕💖😻 Wanna learn more? 1/7

    🌹Roses are red, Violets are blue 💙 🧑‍💻 Giving leets more sweets 🍭 All of 2022! This is extending its increased rewards for vulnerabilities in the Linux Kernel, Kubernetes, GKE or kCTF that are exploitable on our test lab.
    1 reply . 5 retweets 42 likes
    Show this thread
    Show this thread
    Undo
  10. Retweeted
    Feb 14

    Another 20k bonus is for new pwn tricks! We want to learn what mitigations to build, and for that we want more exploits to learn from :) This one works even for duplicate vulns! 4/7

    1 reply . 1 retweet 6 likes
    Show this thread
    Show this thread
    Undo
  11. Feb 7

    OffensiveCon was great! Last day in Berlin, let me know if you wanna meet!

    1 reply . 53 likes
    Undo
  12. Feb 2

    I'll be OffensiveCon this weekend!

    9 replies . 1 retweet 106 likes
    Undo
  13. Retweeted
    Jan 25

    Wow, is a true visionary: 🥲

    Replying to @bl4sty
    Predicted filename: blasty-vs-pkexec.c
    4 replies . 33 retweets 177 likes
    Undo
  14. Retweeted
    14 Dec 2021

    Someone will get $31k-$50k 🤑.

    We got the flag!
    Show this thread
    1 reply . 7 retweets 75 likes
    Undo
  15. Retweeted
    6 Dec 2021

    Is Bluetooth secure? No. But is it a reliable and seamless way to connect nearby devices? Also no.

    128 replies . 2,275 retweets 19,296 likes
    Show this thread
    Show this thread
    Undo
  16. 23 Nov 2021

    Reminder that we are paying big for Linux kernel exploits (once fixed). Your 0d got burned? You can still get a bounty from us!

    🦇 Sweet 🎃! Get up to 50337 USD for exploiting linux kernel vulns (and more if it works on Android!) 💸
    5 replies . 8 retweets 122 likes
    Undo
  17. 7 Nov 2021

    No plans for disclosure. No ETA.

    81 replies . 43 retweets 897 likes
    Show this thread
    Show this thread
    Undo
  18. 7 Nov 2021

    242 replies . 632 retweets 3,987 likes
    Show this thread
    Show this thread
    Undo
  19. Retweeted
    1 Nov 2021

    5 retweets 14 likes
    Undo
  20. 1 Nov 2021

    50k!! Don't miss this opportunity and send us some nice kxploits!

    🦇 Sweet 🎃! Get up to 50337 USD for exploiting linux kernel vulns (and more if it works on Android!) 💸
    2 replies . 9 retweets 100 likes
    Undo
  21. Retweeted
    1 Oct 2021

    A very expensive one-character boundary condition bug: a ">" arithmetic comparison should have been ">=" (according to )

    DeFi bug accidentally gives $90 million to users, founder begs them to return it
    13 retweets 53 likes
    Undo

@theflow0 hasn't Tweeted yet.

Loading seems to be taking a while.

Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.

    You may also like

    ·