Corben Leo

4.3K posts

Corben Leo

@hacker_

I hack stuff legally; co-founder @boringmattress

Brookings, South Dakota Katılım Şubat 2016

709 Takip Edilen71.9K Takipçiler

Sabitlenmiş Tweet

Corben Leo@hacker_·9 Nis

In 2010, WikiLeaks released a classified document. A list of infrastructure critical to U.S national security. The government listed a Trans-Atlantic cable. 3 years ago, 19-year-old me gained ADMIN access to that cable (and another; shared codebase). 🧵Here's how I found it

English

942

4.9K

Corben Leo@hacker_·20h

@unlimited_ls "Better is a little with righteousness than great revenues with injustice." - Proverbs 16:8

English

1.2K

Unlimited L's@unlimited_ls·22h

NEW: 18-year-old Chick-fil-A worker who found nearly $10,000 in the bathroom and returned it to its owner says he didn’t keep it because “That’s not what Jesus would’ve done. That’s not what God would’ve wanted.” Jayden Cintron found $9,333 in cash inside two bank envelopes in a restroom while working a shift on Good Friday morning He said he immediately felt something was wrong and turned the money over to his workplace’s HR department Cintron said the decision was simple, “That’s not what Jesus would’ve done. That’s not what God would’ve wanted.” The owner of the money gave him $500

English

1.1K

3.1K

38.9K

3.1M

Corben Leo@hacker_·22h

@johnfio_ Sad lol

English

482

John Fio@johnfio_·23h

Move to nyc. Don’t have kids. And wait in line for a butcher for dogs. The new American dream.

English

1.4K

77.9K

Corben Leo@hacker_·23h

@moyix What a quote!

English

487

Brendan Dolan-Gavitt@moyix·23h

These are 90% of the hard design decisions in building AI-based tooling right now!

XBOW@Xbow

There are areas in pentesting where AI excels, and excels independently. There are other areas where AI works well, but needs a bit of scaffolding. And finally, there are areas where it struggles and needs a lot of external structure. Albert Ziegler, our Head of AI, breaks down these pros and cons and explains how XBOW leverages the strengths of AI agents while mitigating their weaknesses in his new blog post: bit.ly/4cb0o90

English

3.1K

Corben Leo@hacker_·1d

@nnwakelam @caseyjohnellis Are you actually utilizing it?

English

302

Nate@nnwakelam·1d

@caseyjohnellis 4 RTX 6000 MAX-Q cards (96GB VRAM each), 768GB (8x96GB) - Vcolor DDR5 6400, and a threadripper 9985WX (I regret not getting the 9995). It’s actually absurd, since I bought everything in October I think it’s gone up total like.. $30,000? Maybe a little more?

English

Nate@nnwakelam·1d

I have so little self control the next big bounty I get there's a 100% chance I'm going to buy more GPUs

English

4.6K

Corben Leo@hacker_·1d

Yup. Data centers developers wanting to build here in South Dakota are getting lots of pushback from the public.

English

662

Thomas Hochman@ThomasHochman·1d

I have enormous respect for Semianalysis, but people in this ecosystem consistently fail to appreciate that the energy bottleneck isn’t physics per se but 1. policy and 2. social license to operate

Dwarkesh Patel@dwarkesh_sp

Every year someone names a new bottleneck for AI compute scaling. @dylan522p on why power isn't gonna be the big one over the next few years: fundamentally there's many different ways to generate power (rather than just one company that can produce the EUV tools needed for the chips themselves) and the supply chains are simpler and easier to ramp. You can do jet engines bolted to the ground. Ship engines. Diesel recips from auto manufacturers with declining volumes. Fuel cells. Each category alone delivers tens of gigawatts by end of decade. Combined, hundreds. Even if energy costs double, a GPU goes from $1.40/hr to $1.50/hr. Nobody notices a dime when the models are improving so fast the value dwarfs the cost. Even if you don't add more power, but simply add more batteries, you can unlock 20% more of the US's terawatt scale power grid. This is because grid utilities want to make sure they're sized for peak summer load that hits a few hours a year. With enough batteries, you can make this guarantee, even without turning on more power plants! Fundamentally, there's a lot of different ways to bring power online over the next few years. Building more logic and memory is far more difficult and centralized, so that's where Dylan thinks the bottleneck will be.

English

275

38K

Corben Leo@hacker_·2d

@Emad777_ @banteg I think it’s emergent from its ability to understand & reason through code. That’s different than being able to produce great code

English

420

Emad777@Emad777_·2d

@hacker_ @banteg Being fantastic at hacking is just an emergent behavior of being great at coding - I don't think anthropic trained the model to do thousands of blackbox security testing against web apps or whatsoever to make a model just dedicated for security testing.

English

445

banteg@banteg·2d

anthropic had mythos internally since 2026-02-24, so the leaked claude code (2026-03-31) was being written by it for over a month. if you checked the code, knowing these pieces of information will help you temper your expectations.

English

129

3.8K

242.7K

Corben Leo@hacker_·3d

Whoops.... github.com/apache/httpd/c…

English

117

1.5K

268.9K

Corben Leo@hacker_·3d

@rtwlz was so close :(

English

115

Riley Walz@rtwlz·3 Nis

Ever wanted to NAME A STREET? We’re auctioning off the naming rights to an actual alley in San Francisco. Highest bidder can name it whatever they want. Ends Tuesday at 1pm PT

English

222

4.2K

6.7M

Corben Leo@hacker_·4d

@sw33tLie @intigriti amen

English

292

sw33tLie@sw33tLie·5d

@intigriti client side stuff are boring

English

847

Intigriti@intigriti·6d

what’s a bug bounty take you’ll defend like this

English

142

24.7K

Corben Leo@hacker_·6d

@HackingDave 100%

1.1K

Dave Kennedy@HackingDave·6d

Dude Claude is total trash - seen massive degrading of code quality, bugs, and more over the past several weeks. This week, I can’t even use it or rely on it to complete basic bug fixes or implementations. Codex has been performing substantially better. Anyone else ?

English

359

829

99.8K

Corben Leo retweetledi

Narendra Modi@narendramodi·3 Nis

Good Friday reminds us of Jesus Christ’s sacrifice. May this day further deepen the values of harmony, compassion and forgiveness. May brotherhood and hope guide us all.

English

6.4K

40.9K

420.1K

47.8M

Corben Leo@hacker_·31 Mar

@S1r1u5_ @moyix @Miles_Brundage Yeah, previously have been just going off of this...

English

s1r1us (mohan)@S1r1u5_·31 Mar

@moyix @Miles_Brundage yep, its not even that hard as compared to stripped binaries, its just js

s1r1us (mohan)@S1r1u5_

claude code has always been open source for anyone who knows the strings command 😁

English

449

Miles Brundage@Miles_Brundage·31 Mar

People who know things, is this Claude Code leak thing real / important?

English

312

122.1K

Corben Leo@hacker_·28 Mar

@_jensec if your ASM is so good, surely it’ll make more money being run against their bug bounty program…

English

822

Jenish Sojitra@_jensec·28 Mar

Why ASM/recon product fails? I see many bug bounty hunters having great recon workflows when turned into ASM product to sell to companies, it almost never worked out and almost all of them fails, why is that?

English

7.7K

Corben Leo@hacker_·24 Mar

@sw33tLie @claudeai better than cleanshot?

English

853

sw33tLie@sw33tLie·24 Mar

I wanted a screenshot tool for macOS better than anything out there, so I built one with @claudeai Native Swift. No Electron. Annotate, record screen, scroll capture, auto-redact PII, beautify, upload to Drive & more — one flow. Free & open source forever. macshot 🔗👇

English

164

23.2K

Corben Leo@hacker_·21 Mar

@Fried_rice Amazing

English

6.3K

Chaofan Shou@Fried_rice·21 Mar

vibe coded a fuzzing ai agent last month and let it run for a week using my $200 claude max. it then found 21 high/critical vulnerabilities in Chrome.