bug hunting teaches you patience⦠or caffeine dependency. usually both. #bugbounty
10.03.2026 01:05
π 0
π 0
π¬ 0
π 0
bug hunting teaches you patience⦠or caffeine dependency. usually both. #bugbounty
Prevent mass account enumeration or password spraying by keeping an eye on rate limits. A weak or absent 429 error can escalate a single-user action into a larger issue. #Security #CyberSafety
sometimes the PoC is just a screenshot of βoops, unauthorized.β #bugbounty
sometimes the logs look back at you like βyou really tried that, huh?β #bugbounty
parked curbside. one command. AI agent cloned the WiFi, ran the deauth flood, bypassed client isolation, and got root on the NAS in 20 minutes. no pentester required. #AIHacking #WiFiSecurity full chain: www.toxsec.com/p/zero-trust...
Burp Suite: where good intentions meet infinite tabs. #Infosec #TechChat
why do developers love leaking their staging environments into google? #bugbounty
Keep your head down, your proxy on, and your notes tidy. thatβs the game. #bugbounty
this is to prevent unauthorized practice of law by ai. it includes a private right of action with mandatory attorneysβ fees for violations.
what do you thinkβwill this kill ai legal tools or just make them smarter?
ny bill would prohibit ai #chatbots from giving legal advice.
a new york state bill, sb 7263, which passed the internet and #technology committee, states that chatbots canβt provide substantive legal responses or advice that would count as practicing #law if done by a person.
Gotta love a practical guide
I think it partly has to do with the Claude Code security announcement but it is actually an ironic vibe. Coding everywhere is about to deliver some massive insecurities and just as these products are going to be shipping to deliver the security market crashes
This is pretty cool and honestly I'm not super surprised
Really good call out. It does seem that these phishing-style attacks are on the rise right now
This looks like an interesting read
Super interesting
Slot machine is a great way to phrase it. It really does feel like that even between individual sessions
Yeah I thought this was super interesting. It kind of shows you that they are taking the quantum threat seriously and trying to get ahead of it
I know some of these tools are actually pretty good. It's been interesting watching the arms race between the forensics tools
Pretty interesting and high expectations here
This is too cool!
No kidding lol
Yeah I agree. It's been a fantastic product
24k burner accounts. 16M queries. three chinese labs distilled Claude's agentic reasoning into their own models and nobody noticed until it was done. API access is the attack surface. #AISecurity #ModelDistillation #RedTeam
An expired API key retains its function until itβs actually canceled, not just changed. #TechTalk #API
reasoning models jailbreak other AIs at 97% success with zero human input. grok kept escalating until researchers pulled the plug. the capability is the vulnerability. #AISecurity #PromptInjection
What's the longest period you've waited in silence for triage? #BugBounty
