Olivia
Online
Borg
@BorgHQ
Experts in Web2 & Web3 security for penetration testing, zeroday research, risk management. For inquiries, contact us at
Null Byte
Joined April 2022
96 Following
3.3K Followers
288 Posts
Pinned Tweet
PDF-based security reports are where findings go to die.
They slow down engineering, bury context, and turn remediation into archaeology.
Odin brings findings, tickets, integrations, and retesting into one workflow.
AI did not make software secure.
It made insecure software ship faster.
Borg just got a different look.
Still the same team that breaks what others can't.
Track, detect, secure.
24/7
→ Use Borg
Just gonna leave this here.
Another one!
We're slowly onboarding, let us know if you'd like to try it out!
🏆Another win for Mjolnir: our autonomous agentic pentesting agent just earned $2,000 bounty from https://t.co/bz4xIxRZds!
The bug: reflected XSS through the /api/vault/meta endpoint on the https://t.co/bz4xIxRZds frontend.
Because wallets are often already connected on the webapp, the impact could have been severe; including potential loss of funds.
Frontend security in crypto is not optional.
Thanks to @yearnfi for a smooth dialogue and quick mitigation! Issue has been fixed, ref: https://t.co/de6hiVAk4C
A certain compliance firm....
We are slowly opening this up for early access.
Send us a DM if you're interested in hearing more!
Our autonomous pentesting agent Mjolnir just got it's first finding confirmed and paid!
@borghq
Making a list
Let us know if you should be on it
testing once = snapshot of old code
testing continuously = protection
> one shows you were safe.
> one keeps you safe.
Very important reminder for everyone in the space.
Let us help you prevent this from happening to your company - https://t.co/MJY7PXzmzd
The Borg team when we hear a company only does annual pentests
today @borghq's autonomous hacking AI discovered a **huge** vulnerability on defi protocol with $20B TVL.
the vulnerability could have lead to loss of funds, and was in fact related to web2 infrastructure rather than their smart contracts.
benchmarking is cool and all, but the real battletest for agentic pentesting is bug bounties and real world testing with humans in the loop.
Startup idea:
AI agents that write insecure code, so our AI pentesters have something to do
the team just cracked the code for **actual** agentic pentesting.
we beat other agentic pentesting frameworks and mastered complex attack chaining in agents
@borghq @sjaluu @LORD_RIAN_
Sometimes, the missing link to better sleep is a continuous, offensive security team.
The annual audit is a expired methodology.
Actually securing a stack requires a live feed of continuous testing. If your testing doesn't match your deployment velocity, you’re just operating on a 364-day security lag.
Stop paying for compliance PDFs.
Your security should be as alive as your development
Last Seen Users on Sotwe
Trends for you
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
108.9M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.5M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.1M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
59.9M followers