Olivia
Online
remot3
@_remot3
ethical.hacker | bug.bounty.hunter
España
Joined October 2012
160 Following
965 Followers
514 Posts
Pinned Tweet
We won the @Hacker0x01 Ambassadors World Cup for second time. 🏆
🧵 This is thread about my journey, and how it all started 8 months ago when I had 0 points on HackerOne ⬇️
A newly disclosed Exim vulnerability, CVE-2026-45185 (“Dead.Letter”), highlights how a flaw in handling SMTP BDAT commands and TLS connection termination could create serious security risks in widely deployed email infrastructure.
As covered by Ravie Lakshmanan in @TheHackersNews, the vulnerability was discovered and responsibly reported by XBOW.
The flaw affects GnuTLS-based Exim builds and could enable heap corruption and potential remote code execution through BDAT message handling during TLS shutdown. Research like this reflects the depth of analysis required to uncover high-impact vulnerabilities before attackers do.
Read the full article: https://t.co/iFSHbaAo9I
@thedawgyg @nmatt0 Agree with this, Codex is better for adversarial validation/improvement but I find Claude better at finding bugs autonomously
Anthropic’s Mythos raised the bar for AI vuln detection but kept it invite-only.
GPT-5.5 is OpenAI’s answer, and it’s open to all.
We had early access. Ran the benchmarks. Blackbox GPT-5.5 already beats whitebox GPT-5.
Best pentesting model we’ve tested.
Read our analysis: https://t.co/Xlh1iQVu3e
Who to follow
Rubén Ródenas 
@eldpit
Alfonso Muñoz, Phd
@mindcrypt
Offensive Hacker & Cryptographer/Stego | AI cybersec guy | Speaker @blackhat @ekoparty @rootedcon... | Founder @criptored - https://t.co/TU1PnWdvX3
Jose (Snifer)
@sniferl4bs
Ing. de Sistemas, Pentester. Escribo en Snifer@L4b's, Podcast #DameUnaShell y creo videos de Obsidian en YouTube casado con @RizelTane https://t.co/gb0XjDwheG
There are many problems that "autonomous pentesters" creators won't tell you because it's a hot niche that draws attention. But what sets a real autonomous system apart from bs is the middleware and all the connectors that are able to make sense of random agent behaviour.
Everyday I read about a new autonomous pentesting tools being released. All of them follow the same pattern. Some sort of agentic architecture with hacking tools connected and benchmarked against a vulnerable app.
Let me explain you why these systems are useless 👇
4. Without validation you will drain in noise.
5. Most of these tools delegate auth on the agent gambling if the test will pass it or not. Also multi-agent systems will kill eachother sessions while testing in parallel
@Haw_keye0 @CristiVlad25 AI can find business logic flaws as long as you provide a good context or the tools to allocate the context.
Most IDORs aren’t “guess the next number.” They hide in real authorization logic.
In our latest Tales from the Trace, XBOW uncovered two zero-day IDORs by reasoning through the app like a pentester, even after 403s and 502s.
The future of DAST lies in autonomous reasoning, catching the real-world access control failures scanners miss (and attackers look for): https://t.co/2I7tPV6Fpd
Hate when I am deep down on a bug after researching it for days thinking I'm a genius for reversing it just to discover another asset that reveals the entire internals
@rez0__ Is there any difference/advantage between using this and the Playwright MCP?
@rez0__ A way of making a 6$ coffee a 8$ coffee 😂
@stokfredrik Worst thing is that models being black boxes and being trained on user supplied data, the likelihood of random data being exposed is more than expected
Thanks to everyone who joined us at the @Hacker0x01 Brand Ambassadors Speed Show&Tell in Madrid, and special thanks to all who presented! 💕
@zseano This is not even close to XBOW, CAI is a base framework to develop agents but by default it won't find any interesting bug.
Last Seen Users on Sotwe
ejderyaahmett
Seen from Turkey
🏹𝕋𝕙𝕖 ℍ𝕦𝕟𝕥𝕖𝕣🔥الصياد🏹I⚜️
Kıbrıs Tek Erkek Cuckold Bull
Seen from Turkey
RUME
Cherish Prey
Seen from United States
Afrobull
Seen from Switzerland
SoraDraws 🔮🔞
Seen from Mexico
bbc porn white girls fucked bnwo snowbunny blacked
Seen from Turkey
Lugano Nissa
Seen from Indonesia
Türk Yerli İfşa Porno
Seen from Turkey
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.5M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.7M followers
Cristiano Ronaldo
@cristiano
110.4M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.6M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.9M followers
KATY PERRY
@katyperry
87.5M followers
Taylor Swift
@taylorswift13
81.4M followers
Lady Gaga
@ladygaga
72.9M followers
Kim Kardashian
@kimkardashian
69.7M followers
Virat Kohli
@imvkohli
69.7M followers
YouTube
@youtube
68.7M followers
Bill Gates
@billgates
63.8M followers
The Ellen Show
@theellenshow
62.5M followers
Neymar Jr
@neymarjr
62.4M followers
CNN
@cnn
61.9M followers
X
@x
60.8M followers
Selena Gomez
@selenagomez
60.6M followers