♧▪︎Hobs▪︎♧ @Hobs_131 - Twitter Profile

Pinned Tweet

♧▪︎Hobs▪︎♧ @Hobs_131

6 months ago

Everything i do leads to a better customer experience. Explore my journey, view my portfolio- https://t.co/2nVhSsktq8

4

25

4

1

958

Hobs_131 retweeted

CharlesWang

@0xCharlesWang

2 days ago

First of all: It will always be important to have human auditors. Intuition and logical sense of chaining bugs to specific impacts cannot be replaced. BUT, what would be if: There is an AI tool which is legitimately great and finds more than most traditional audit companies while no one knows about it just yet, while at the same time there is heavy marketing about all other AI tools that do not even remotely come close? All @bailsecurity audits now just got an upgrade which is at least adding ON TOP of the two team audit the full coverage of traditional audit companies, for free of charge. Instead of replacing human auditors and relying more on AI, we will add AI on top of the process to increase the coverage without any extra cost.

0xCharlesWang's tweet photo. First of all:

It will always be important to have human auditors. Intuition and logical sense of chaining bugs to specific impacts cannot be replaced.

BUT, what would be if:

There is an AI tool which is legitimately great and finds more than most traditional audit companies while no one knows about it just yet, while at the same time there is heavy marketing about all other AI tools that do not even remotely come close?

All @bailsecurity audits now just got an upgrade which is at least adding ON TOP of the two team audit the full coverage of traditional audit companies, for free of charge.

Instead of replacing human auditors and relying more on AI, we will add AI on top of the process to increase the coverage without any extra cost.

3

30

5

9

2K

♧▪︎Hobs▪︎♧ @Hobs_131

1 day ago

@die_kreatur_rs Congratulations brother.

0

14

Hobs_131 retweeted

die kreatur @die_kreatur_rs

3 days ago

Today is the happiest day of the year, since I received an offer to join a web3 security firm as an intern smart contracts auditor 🥳

20

113

2

4

3K

Hobs_131 retweeted

Yousef @yusufthebdev

6 days ago

Being an auditor low-key turns you into a lawyer. Half the job is arguing why a bug matters.

2

16

1

0

445

Hobs_131 retweeted

Immunefi

@immunefi

2 days ago

This Security Researcher has earned $1,714,402 hunting bugs. 22+ live critical vulnerabilities found, saving hundreds of millions of dollars from hacks. Meet @__nnez We asked him how he does it. What is one practical bug bounty strategy that has helped you find better bugs? "Choosing targets based purely on what excites me, either a cool new concept or a huge bounty. If a codebase kills my interest early on, it’s impossible to dig deep enough to find critical bugs. I only hack on things that keep me hooked. " What habit, routine, or mindset has made you more consistent as a researcher? "I let myself get bored. Bug bounty hunting generally rewards either incredible speed or deep uniqueness. Since speed isn’t my strength, I focus on the creative side. Being comfortable with boredom is what actually triggers that creativity, giving my mind the space to connect dots and find the bugs that require a different perspective. " Can you share a memorable bug or win, and what helped you find it? "I had found a logic bug primitive but couldn't figure out how to trigger it. After poking around the codebase for almost two weeks and thinking that I had exhausted everything, I just took my eyes off the code and went for a walk to a bar. On the way there, the idea popped into my head to test the sequential properties of a related function. It turned out to break at a very negative value, and I chained it with the primitive from a week ago to reach a critical impact. " What is one piece of advice you would give to a researcher trying to level up or land their first bounty? "Log off X and go hunt :) "

immunefi's tweet photo. This Security Researcher has earned $1,714,402 hunting bugs.

22+ live critical vulnerabilities found, saving hundreds of millions of dollars from hacks.

Meet @__nnez

We asked him how he does it.

What is one practical bug bounty strategy that has helped you find better bugs?
"Choosing targets based purely on what excites me, either a cool new concept or a huge bounty. If a codebase kills my interest early on, it’s impossible to dig deep enough to find critical bugs. I only hack on things that keep me hooked. "

What habit, routine, or mindset has made you more consistent as a researcher?
"I let myself get bored. Bug bounty hunting generally rewards either incredible speed or deep uniqueness. Since speed isn’t my strength, I focus on the creative side. Being comfortable with boredom is what actually triggers that creativity, giving my mind the space to connect dots and find the bugs that require a different perspective. "

Can you share a memorable bug or win, and what helped you find it?
"I had found a logic bug primitive but couldn't figure out how to trigger it. After poking around the codebase for almost two weeks and thinking that I had exhausted everything, I just took my eyes off the code and went for a walk to a bar. On the way there, the idea popped into my head to test the sequential properties of a related function. It turned out to break at a very negative value, and I chained it with the primitive from a week ago to reach a critical impact. "

What is one piece of advice you would give to a researcher trying to level up or land their first bounty?
"Log off X and go hunt :) "

8

185

15

70

7K

Hobs_131 retweeted

Omoalhaja

@omoalhajaabiola

3 days ago

The cold email The response

5

188

25

214

6K

Hobs_131 retweeted

ARTHUR LABS

@ArthurLabsDAO

3 days ago

🛰 Connecting to the bounty hunters... We are $HIIE, our mission: #BUIDL your prodocut How? Our Engine will let you build anything in plain language like a gadget or something that hasn't made it out just yet... Try it out: https://t.co/rqaQ9mFGL6 Use the platform, fill in the form... you have a chance to win 50 USDC. https://t.co/YN1E5tzJHG

ArthurLabsDAO's tweet photo. 🛰 Connecting to the bounty hunters...

We are $HIIE, our mission: #BUIDL your prodocut

How?
Our Engine will let you build anything in plain language like a gadget or something that hasn't made it out just yet...

Try it out: https://t.co/rqaQ9mFGL6

Use the platform, fill in the form... you have a chance to win 50 USDC.

https://t.co/YN1E5tzJHG

1

12

2

471

Hobs_131 retweeted

Yousef @yusufthebdev

3 days ago

🎯 Day 96 of becoming a top Web3 security researcher ⏳ Hours worked: 5 hours 🔎 Focus: Learning 🔧 Practical work: - Added significant depth to my threat modeling by working through @zaryab_eth comprehensive 71-item list for smart contract engineers - Studied post-mortems

3

29

1

2

716

♧▪︎Hobs▪︎♧ @Hobs_131

3 days ago

@yusufthebdev Can i lock in with you?? I'm new to security research but have basic knowledge and have participated in exploratory bug bounties. I'd appreciate a response, thanks.

0

38