Olivia
Online
Behlül ⛧
@b3hlulll
web app security, alive for good vibes~
Remote
Joined April 2012
411 Following
840 Followers
219 Posts
can't wear skinny jeans cuz my nutzzzz don't fit
A new VPN leak that allows any app to leak traffic outside the VPN tunnel has recently been discovered by @cybaqkebm
Read more here: https://t.co/K9bxtiGHbw
Cobbled together a supply chain monitoring system last week: Cursor+Composer-2-fast harness on live package diffs (pypi+npm). Simple! Received a slack alert within minutes of Axios compromise. Reported to the devs after triple checking, because at first I could not believe it!
Who to follow
@batuhan_katirci kaç ton litre gittiyse helal olsun asbkdjaısf
We’re introducing Dynamic Workers, which allow you to execute AI-generated code in secure, lightweight isolates. This approach is 100 times faster than traditional containers. https://t.co/c36Vkb7I0R
Not often you see plain text passwords these days! The source code of https://t.co/Yq1nhBswHT is interesting too 🤷♂️
Introducing Code Review, a new feature for Claude Code.
When a PR opens, Claude dispatches a team of agents to hunt for bugs.
Patch Diff to SYSTEM - using LLMs to exploit a LPE vuln on Windows. More importantly, some thoughts on model capabilities the implications on our security industry https://t.co/wmPNfoLbt8
Re: AI finding bugs..
Folks used to use CPUs to run fuzzers to find bugs, now they use GPUs to run models to find bugs. It’s essentially another way of fuzzing. A verifying process is built upon the nondeterministic output by fuzzer or AI.
But there’re some differences: An individual researcher can do fuzzing at home and find serious bugs - I’ve been doing it for long time, the ROI is very good if you “fuzzing it right”. Now serious AI bug finding seems can only be performed by resource-rich companies..
What’s the ROI of AI bug findings? Can it be improved in future eg. the ROI can be very good if you “prompting it right”, or when “the model is good enough and using it is cheap enough”?
My new favorite insult is calling someone’s job a Claude skill.
hay ananı ya şimdi de biz işsiz kaldık
anthropic vs openai is like kendrick vs drake but for nerds
[453094710][reward: $250000] Out-of-bound read in the jmp table of ActiveMediaSessionController leads to sandbox escape.
https://t.co/ncXlTOVAOP
Her hafta hem içerik kalitesini hem de çekim ve prodüksiyon süreçlerini adım adım daha iyi hale getiriyoruz.
Bu hafta 3. bölümünü paylaşıyor olacağız.
Takip ederek bölümleri kaçırmamanızı tavsiye ederim.
🎧 Spotify: https://t.co/zkfWiEocm6
📺 YouTube: https://t.co/vppPk4gB88
https://t.co/ep1mbMd3sB
You are looking at 200k in WAF bypasses.
sick
how to hack discord, vercel and more with one easy trick
https://t.co/jqGWp5KDP6
sığğğğğ
Hacktron Research is leading in @vercel react2shell WAF challenge with $150,000 in bounties.
This is the shit that keeps me up.
building @HacktronAI to bring the best of hackers and AI together, and to be in the loop when hacks like this happen or find before they happen.
your goodhart's-law-optimized “completely autonomous AI pentester” isn’t doing this shit. it's too busy selling snake oil.
Last Seen Users on Sotwe
Trends for you
Most Popular Users
Elon Musk 
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109.2M followers
Narendra Modi
@narendramodi
106.9M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.9M followers
Taylor Swift
@taylorswift13
80.8M followers
Lady Gaga
@ladygaga
72.3M followers
Kim Kardashian
@kimkardashian
69.4M followers
Virat Kohli
@imvkohli
68.7M followers
YouTube
@youtube
68.6M followers
Bill Gates
@billgates
63.5M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.3M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
60M followers