Olivia
Online
CrypticDefense
@crypticdefense
Security Researcher @GuardianAudits
Educate Yourself ππΌ
Joined May 2023
181 Following
605 Followers
283 Posts
Β Pinned Tweet
AI is going to make audits lower quality and increase the demand for good Security Researchers.
Too many new researchers are relying on AI completely to find bugs rather than understanding the code line by line manually.
The worst part is since AI is catching real (mostly obvious) bugs, so many are going to chase the βquick highβ again rather than do the real hard work.
Likely we will see within 1 year how much the demand for good auditors will increase, and sadly this may increase the number of hacks.
@WhiteHatMage βIn this top tier codebase, a top tier finding was missed by top auditors at top security firmsβ
Pro tip: use your prompts like a red-dot sight.
bro basically said "look for bugs that could exploit zcash"
that's the prompt that found an exploit in a 10 billion dollar protocol
@redghosthive Good choice!
Hunting bugs in secure codebases can be an extremely low-dopamine activity. After hours of staring at code, your brain starts craving quick stimulation, such as doomscrolling or a short game of chess.
A downward spiral of distraction follows and holds you back from breaking through as a Security Researcher.
You just need to find a healthy way to satisfy your brain's craving for dopamine.
For me, having a cup of coffee usually does the trick (max 3 per day).
@0x158_ - Green tea
- Go for a walk
- Pushups
- Play with your dog/cat
- Listen to music
Although for me nothing beats a good cup of coffee βοΈ
@maraoz AI derangement syndrome strikes again.
@4gontuk Great work! ππΌ
I would argue 0% of them are.
If a security researcher was able to have a decent performance in contests, they can also earn well from bounties or private audits. No incentive to turn blackhat.
If they couldn't perform well, then they lack the skill to execute some of the recent hacks anyways.
With contest platforms shutting down, AI fearmongering, and a constant flood of spam submissions, many new security researchers feel lost and no longer know where to start.
This is the exact roadmap I would follow if I had to start over today:
https://t.co/uGwKiDVoVZ
The barrier to entry for new SRs was already high, and it just got worse. The space already lacks experienced white hats, as shown by the countless hacks last month.
Although existing SRs may benefit from less competition in the short term, fewer eyeballs mean major hacks will continue, making mainstream DeFi adoption much more difficult.
We need to get more creative and find alternatives to help onboard new talent.
After careful consideration, weβve made the decision to wind down @code4rena. This community has meant a great deal to everyone who has been part of building it, and sharing this news is not easy.
@Haxatron1 Escalations only by AI too? π
@TamayoNft Congrats man! ππΌ
@justAWanderKid Only monero really does. I meant to say itβs the only one that will win in the end.
Monero > Zcash > BTC.
Privacy will win at the end.
@ParthMandale Great choice! Gl on your journey ππΌ
It certainly can be a useful assistant if you use it right.
Proving the ai wrong just to look at X and see many people scared they will be replaced π
If AI is performing poorly on finding bugs within protocols types that have the largest dataset of findings to learn from, I wonder what that means for SRs specializing in niche areas. I think that shows there is a clear way to become irreplaceable for the foreseeable future.
Every Security Researcher of some level using AI can confirm how shit AI is at finding bugs.
Anyone that tells you otherwise is trying to sell you something.
Avoid AI audits or get rekt.
Most Popular Users
Elon Musk
@elonmusk
240.2M followers
Barack Obama
@barackobama
119.3M followers
Donald J. Trump
@realdonaldtrump
111.6M followers
Cristiano Ronaldo
@cristiano
109M followers
Narendra Modi
@narendramodi
107M followers
Rihanna
@rihanna
97.3M followers
NASA
@nasa
92.1M followers
Justin Bieber
@justinbieber
90.6M followers
KATY PERRY
@katyperry
86.8M followers
Taylor Swift
@taylorswift13
80.6M followers
Lady Gaga
@ladygaga
72.2M followers
Kim Kardashian
@kimkardashian
69.4M followers
YouTube
@youtube
68.6M followers
Virat Kohli
@imvkohli
68.6M followers
Bill Gates
@billgates
63.4M followers
The Ellen Show
@theellenshow
62.5M followers
CNN
@cnn
61.9M followers
Neymar Jr
@neymarjr
61.1M followers
X
@x
60.9M followers
Selena Gomez
@selenagomez
59.9M followers