0xjunwei أُعيد تغريده
Had a Threat Actor ask for an anti-virus recommendation
DAWG, YOU ARE THE THREAT. WHY DO YOU NEED AN AV?
English
0xjunwei
241 posts
0xjunwei
@0xjunwei
Always Learning | BSCP, CWES, GCIH, OSCP, OSWE
Singapore انضم Mayıs 2011
651 يتبع153 المتابعون
@hamidonsolo Use sysreptor for ur cwes report if u are going to attempt a 3rd try, i think filling in the blanks through the template would ensure you get the pass.
English
@hamidonsolo I believe pentesting is more than just finding the vulnerability like many said, would suggest to be open to criticism and feedback. Sad reality is report writing takes up a bulk majority of a pentester time, personally feel i spend more time on report writer than the pt itself.
English
I owe Hack The Box an apology.
I was wrong for expecting a cert after scoring 100 points and having a Critical 9.8 validated on a real company through HackerOne.
Clearly I should have spent more time on report formatting instead of finding actual vulnerabilities.
My bad HTB. I'll do better. won't happen again
Patrickbatman@hamidonsolo
HackerOne accepted my Critical 9.8 vulnerability on Netlify. That's real work, real impact. Meanwhile Hack The Box won't give me the cert because my final report "doesn't meet their standard." or just didn't wanna to give me the cert while i achived 100pnts passing score. Brother, a real company validated the finding as CRITICAL. But HTB's exam says I'm not good enough? Certs are a scam i highly not recomend buying or passing them now as they are just useless with what ai is capable of doeing right now. The real exam is the field. and also tell me in the comments if you had similar experience . in the past
English
0xjunwei أُعيد تغريده
0xjunwei أُعيد تغريده
0xjunwei أُعيد تغريده
Just discovered the @SEAL_911 team has written an incredibly indepth bible on opsec and best security practices.
Covers all aspects of web3 security & hacks for individual use and corporations
View here: frameworks.securityalliance.org/intro/introduc…
sudo rm -rf --no-preserve-root /@pcaversaccio
3/ final thought, folks: we need to become hardware wallet maxis _now_. Stop yolo-installing software. Stop executing random code. Stop handing LLMs (I'm looking at you, Claude) code-execution rights. Use hardware wallets. Keep keys off your daily machines. Triple-check domains. This will help your and my own sanity. also, if you care about not getting rekt (and you should lol), read SEAL Frameworks pls: frameworks.securityalliance.org PS: SEAL is funded _entirely_ by donations (and we're close to running out of donation money soon!), so please consider donating either via #donate" target="_blank" rel="nofollow noopener">securityalliance.org/donate#donate
(for the main SEAL org) or directly to us at SEAL 911: #donations" target="_blank" rel="nofollow noopener">github.com/security-allia…). Thanks, and see you on the other side. English
@goheesheng @baseapp @jessepollak Ok fairs if you are looking within in-app embedded browsers but most apps dont have that capability to clear the embedded browser cache.
English
@0xjunwei @baseapp @jessepollak For the base app it doesn't have a hard refreshed for links opened in the app
English
Somehow @baseapp site caches your old images even though it is updated live. Hence even if you post the emedded link, it will show your old image, but for others it will be your newly updated image.
We need a cache clearing function in @baseapp @jessepollak
goheesheng.base.eth@goheesheng
For any base builder building on @baseapp if you are generating dynamic embedded preview. Always use a completely cache cleared incognito so that your newly updated image will render. Wasted half a day finding this bug....
English
0xjunwei أُعيد تغريده
Devcon 8 is coming to Mumbai, India 🇮🇳
🦄 3-6 November 2026
📍JIO World Center
Read about the key details, why India, and what to expect 👇
English
@rahul4du @Uniswap @PudgySG @ongycNFT @OnlyShauns @Kit_GPT @pudgypenguins @PudgyAsia @0xcannonball45 @0xmeepok @junweiiii @opensea I do you one better @0xmeepok will send u one, send addy
English
@0xjunwei @Uniswap @PudgySG @ongycNFT @OnlyShauns @Kit_GPT @pudgypenguins @PudgyAsia @0xcannonball45 @0xmeepok @junweiiii Best I can do is screenshotting on @opensea ser!
English
Santa is clearly into WEB3🎅🏼
A huge shoutout to @Uniswap and @PudgySG for hosting the best Christmas Party this year
This top tier merch is going to live on my desk forever! 🐧
Thanks for putting this together:
@ongycNFT @OnlyShauns @Kit_GPT &Team
@pudgypenguins @PudgyAsia
English
@Kimmi_Unni Not a founder but can i visit to pet the golden retriever 🥺🥺🥺
English
Calling all founders, builders and investors in Singapore!
We’re opening new memberships for Superteam House; our co-working and community hub for web3 builders in central Singapore.
If you are looking for a workspace to build alongside top Solana Builders, there is no better place. DMs are open!
Sign up link below!
superteamsg.notion.site/coworking
P.S. And yes we have cute dogs in office :)
English
P2P network idea sounds cool, using blockchain as an intermediatary each receiver post up their public key for messaging.
Then any sender could make use of those public key and encrypt messages and post it on chain, the frontend just does the decrypting for users or users can do it via their own isolated machine for added security via message passing to the contained machine.
Assumption: gas remains cheap (sol / l2), the encryption algorithm chosen must be secure and quantum proof such that threat actors cant crack the cipher even on a public ledger in the foreseeable future.
English
English
If you want to get followed by me or @base:
- build an app that onboards new users
- create content that onboards new users
- grow a community that onboards new users
- deploy your capital into the base economy
if you do any of those, we will see you and follow you.
English