Aura

1.8K posts

Aura banner
Aura

Aura

@0xArav

Embrace the Unknown - Security Researcher, EVM, Solana, Rust - DM for collab

Katılım Eylül 2011
604 Takip Edilen471 Takipçiler
Sabitlenmiş Tweet
Aura
Aura@0xArav·
The name turns 'Orange' as a new warden walks into the famous C4 leaderboard. NextGen was my first full audit on @code4rena Some stats ⬇ 5 Hrs on docs 70 Hrs Reviewing 15 Hrs on POCs First top 3 finish 10x motivated 100x grateful to the web3 security community Thank you🙏
Aura tweet media
Code4rena@code4rena

Awards have been announced for the $60,500 USDC Next Gen @6529Collections audit 🤝 Top 5: 🥇 @0x3b338 - $6,215.77 USDC 🥈 AvantGard - $3,961.65 USDC 🥉 lanrebayode77 - $2,850.09 USDC 🏅 @0ximmeas - $1,988.96 USDC 🏅 ZdravkoHr - $1,930.27 USDC (1/2)

English
11
1
47
6.4K
Pyro
Pyro@0x3b33·
Today I learned Solidity executes one line operations from RIGHT to LEFT
Pyro tweet media
English
13
6
92
5K
Aura
Aura@0xArav·
@0x3b33 Conditional pot maxing 15k per crit .. upto 4 crits 70k equal split > 5 crits
English
0
0
1
240
Aura
Aura@0xArav·
Hey @HackenProof , a feature request Program Status Filter (Active / Paused / Ended) over 300 programs listed currently, many have already ended or currently paused the existing filters are already quite helpful, adding this would make finding live targets even faster for hunters Thanks _/\_
English
0
0
3
114
Mitchell Amador
Mitchell Amador@MitchellAmador·
If you haven't read this already, you really should. This research gives us the key to saving the audit contest model and safeguarding crypto... but only if you spread this post far and wide. People need to hear the truth: ACs > Audits.
Mitchell Amador@MitchellAmador

x.com/i/article/2074…

English
4
5
35
2.3K
Aura
Aura@0xArav·
$0 for highs potential $0 for criticals just say 'don't find bugs here' instead platforms should make 'lower bound' payout mandatory for the protocols they host atleast for highs and crits _/\_
Aura tweet media
English
0
0
5
82
Aura retweetledi
Immunefi
Immunefi@immunefi·
We just published the fairest comparison of audits vs. audit competitions ever done. Contests win hands down. Help us make sure every founder reads it. Contests will become the new standard.
Mitchell Amador@MitchellAmador

x.com/i/article/2074…

English
9
16
103
9.9K
Pashov Audit Group
Pashov Audit Group@PashovAuditGrp·
JUST IN: Erling Haaland joins Pashov AI Group as Member of Technical Staff, effective immediately
Pashov Audit Group tweet media
English
13
2
137
4.9K
Aura
Aura@0xArav·
@pashov war with yourself, lesss go !
English
1
0
1
271
pashov
pashov@pashov·
I was the poor kid that was ready to do anything to help his family financially. Googling “how to make money”. Trying out every stupid idea. I never wanted money for myself, I wanted higher quality of life for my loved ones. After achieving the goal, calling my mother and saying “you don’t have to work anymore” (sweet goal to achieve), it felt kind of weird. What now? The time came for me to buy exotic cars, travel, date lots of girls. Plenty of good times, but as with many things that give you a present moment high, you can overdo them and get bored. What do you do when you are bored? Start a WAR. War with yourself, your old self, so that a better, stronger, newer one can be born and rule. How tf do you start a war with yourself? Set a goal you FEAR. One that you fear thinking about, and squirm when you imagine sharing it with others. On this journey right fucking now. I love this shit. I truly invite you reading this to join the awesome ride of reaching your true potential. It’s joyful even in the failures and the saddest moments. It’s purposeful, complete and aesthetic. You have just one short life, make the story beautiful, one worth telling. Lessssgo🫡
English
27
24
237
9.2K
Immunefi
Immunefi@immunefi·
This Security Researcher has earned $1,764,402 on Immunefi. $519,991 in 2026 alone (so far). Now @__nnez is coming on The Immunefi Show to break down his hunting process, how he chooses targets, and how to use AI to actually find bugs. What should we ask him?
Immunefi tweet media
English
20
11
203
11.9K
phil
phil@philbugcatcher·
I’m back to X I deleted the app for a while. Doing so gave me back an hour a day that I would spend getting ragebaited and nerd sniped, but it was a bit isolating
English
13
0
99
3.6K
playboi.eth
playboi.eth@adeolRxxxx·
Ekubo was hacked after a public contest audit at c4. Man, I have been thinking. Those black hats would probably have been laughing at our ass during those times. insane skill gap.
English
14
6
132
9.7K
Tim
Tim@0xTimofey·
Career update; I'm excited to share that I've joined @CertiK as Ecosystem Manager. I've spent my first days here getting a closer look at the work happening behind the scenes, and it's been a lot to take in. AI Auditor is making smart contract audits faster, more efficient, and more precise, and it's only one of several things the team is building. There's also one project I can't say much about yet. What I will mention, though, that it's a big part of why I joined, and it has the potential to become something huge for all the security researchers out there. More to come. Follow @CertiK so you don't miss it.
Tim tweet media
English
48
5
230
16.6K
Immunefi
Immunefi@immunefi·
This Security Researcher has earned $3,612,409 hunting bugs on Immunefi. 32+ live critical vulnerabilities found, saving hundreds of millions of dollars from hacks. Meet @lonelysloth_sec, ranked Top 5 all-time on @Immunefi. We asked him how he does it. One practical bug bounty strategy that has helped him find better bugs: "Protocols share a lot of code. When you find a bug that isn't exploitable, take some times to check if the same bug doesn't show up in other protocols where it might be. Study families of protocols, compare their code. Things are getting more and more interconnected." The habit, routine, or mindset that has made him more consistent as a researcher: "Curiosity. I don't rest until I understand every part of the system. Even if I end up not finding a bug, I want to understand it." A memorable bug or win, and what helped him find it: "I have quite a few public disclosures, but for one project between '24 to '25 I got paid for 9 critical bugs. I spent months getting to know every last detail of their (very large) code base. More than a breakthrough it was about persistence in one target, learning everything about it, and using everything I knew on it. They weren't the highest paying bugs I found, but I'm very proud of that achievement. I still find bugs in that project." His advice to a researcher trying to level up or land their first bounty: "Find motivation in the journey, because it's a long one. Enjoy understanding something that previously was mysterious to you, the feeling of knowledge accumulating. It compounds and will eventually lead to your bounties. Keep trying -- you need to give luck a chance to find you."
Immunefi tweet media
English
21
24
306
10.8K
GiuseppeDeLaZara
GiuseppeDeLaZara@windhustler·
name one thing you notice in a person that gives you an instant sign they have low standards? for me, the biggest red flag is using a Windows machine
English
14
0
35
4.1K
chrisdior
chrisdior@chrisdior777·
Guys, Drift: 2/5 multisig, no timelock. Only 2 compromised signers were needed to drain $285M. Humanity: allegedly 3/6 Safe multisig keys controlling a $36M bridge were on one employee’s laptop. wtf???
English
3
0
35
1.9K
Aura
Aura@0xArav·
@0x3b33 These are popular ones, but the actual list is miles long lol
English
0
0
1
213
Pyro
Pyro@0x3b33·
The dead L2s club
Pyro tweet media
English
13
6
81
6.6K