Serhii | HackenProof

Thank you, team! Btw, it’s my first time visiting Cluj-Napoca! It looks like an amazing place!

📢 Hiring Fullstack Developer for a Spain-based crypto company. HackenProof is helping a reputable crypto company in Spain fill one engineering position: — Fullstack Developer (C# · Python · PostgreSQL · React/Vue) Financial systems experience required. This is a direct position with the client (not with HackenProof). Role descriptions in the comments below👇 #CryptoJobs #Web3 #Blockchain #Hiring #Fullstack #Engineering

A $225K bounty win for @0zSchnack 🫡 Not one, not two, but three $75K payouts — an impressive streak. HackenProof salutes you. Keep hunting 🔥

We just shipped two new open-source security skills for Claude Code: Fix Verifier - paste a vulnerability description, point it at your fix, and it tells you if the patch actually works. Checks for incomplete fixes, missed instances of the same pattern, regressions, and smart contract-specific issues like reentrancy guard coverage and storage layout breaks. Works on any codebase, no account needed. Report Handoff - generates structured handoff summaries for client teams after triage: report link, severity, bounty payout recommendation from program policy, and a clear explanation of what to fix. Both are free, open source, and available now in the HackenProof skills marketplace. Install in Claude Code: /plugin → Marketplace → hackenproof-public/skills github.com/hackenproof-pu…

Can you crack the code? Write your answer in the comments ⬇️

Did you know that the HackenProof MCP can be used to discover issues in your own codebase? Here's how 👇 Connect the MCP server to Claude Code, open your project, and your AI assistant now has access to both your source code and your bug bounty reports at the same time. Here's what your pipeline can look like: 1/ A researcher submits a report on HackenProof 2/ You ask Claude: "Fetch new reports and check them against our code" 3/ Claude pulls the report, reads the vulnerability description, finds the affected file in your repo, and tells you if it's real 4/ Then (the coolest): "Search our codebase for similar patterns" - one report becomes a full scan This gets super powerful with large codebases or multiple implementations. Each report teaches the AI a new attack pattern to look for - the more reports you have, the deeper the scan gets.

📌 Two open roles in security — payments industry. We're helping a Global Payment Orchestration Company find: Information Security Engineer Application Security Engineer Direct hire. Full details in the comments 👇

A $250,000 payout on HackenProof says a lot 💰 Could this be the highest payout yet for an AI Auditor? This massive critical was discovered by @therealgregoai. Huge congrats from HackenProof 🎉

Most CTOs watch hackathons from the outside. @d0rsky is mentoring from the inside — live at @ETHGlobal Cannes right now. 🧠 If you're building something and have security questions, he's the person you want to talk to. Find him at the venue or drop us a DM. #ETHGlobal #Web3Security #BugBounty

Paid submissions? Let’s talk We need to be honest about what’s happening to bug bounty right now We live in AI era, where submission volume is growing fast, but signal is not A lot of reports getting lost, delayed, or stuck in review loops And this hurts everyone - especially professional whitehats with real findings Over the last months, we’ve been trying to fix this step by step Reputation points system was first you submit spam → you get penalty points → you lose ability to submit simple incentive on quality Then - MCP Which helps teams triage faster, identify duplicates, reduce review time. Many companies already using it. And now we are introducing a new option - submission fees. We’ve been hearing this request from many companies and honestly, it feels like a next logical step to make the game more fair for everyone. This is optional, not default, and not something every company will enable. Fees going to be small ($1-$5), so this is not about monetization too This is about adding a bit of friction, so people think twice before submitting something they are not confident in Because today, there is almost no downside to spam. With $20 subscription, any user can generate thousands of reports even without understanding of them. At the same time, we fully understand concerns, whitehats are our biggest asset and we still want new researchers to join the space, so we added: • free credits for new users (via coupons) • support for high-signal researchers Goal is very simple - improve signal without losing important reports I will keep you in a loop once any of HackenProof clients will enable it Lets fix bug bounty together

📢 Big news from @suidevelopers and @SuiNetwork! A new bounty target is live: Bella Ciao — next-generation Sui VM execution layer rewrite with enhanced performance and new Move capabilities — offers a wide range of bounties: Critical: $100,000 - $1,000,000 High: $10,000 - $50,000 Medium: $5,000 - $10,000 Low: $2,500 - $5,000 Start the #bugbounty hunt right now: hackenproof.com/programs/sui-p…

✅ [New bug bounty] Earn up to $2,000 with @pumbua You will be rewarded based on these tiers: Critical: $1,000 - $2,000 High: $700 - $900 Medium: $200 - $500 Low: $50 - $100 Start the #bugbounty hunt right now! hackenproof.com/programs/pumb-…

🚨 New Flash Pool from Agent-X 🛡 Audited by @hackenclub 📈 Earn up to 120% APY 📅 Staking in $HAI available until March 25, 2026 🔒 21-day pool duration 🎯 Rewards distributed in USDC on March 30, 2026 🏁 DualDefense contest live on @HackenProof

We ran @HackenProof MCP Server (AI powered Triage assistant): - Read and search reports (filter by severity, state, labels, text) - Retrieve full report details (descriptions, reproduction steps, attachments, comment history) - Check program scope and rules (verify target, reward structure) - Reference official severity classifications (web/mobile, smart contract, blockchain guidelines) - Take triage actions (change status, assign severity, add labels, post comments) More here: hackenproof.com/blog/for-busin…

We’re slowly rolling out MCP to all @HackenProof clients. Call it a public beta. If your triage team is drowning in AI-generated reports, DM me. As a bonus, we’ve open-sourced our triage skills repo. Use it, fork it, build on top of it - even if you’re not using HackenProof (yet). github.com/hackenproof-pu…

$3,300 per referral, on average. The HackenProof Referral Program has been going strong for over a year now. You get a 20% share from every client — currently the highest rate in the bug bounty industry. If you’ve got a solid network, it’s time to put it to work. Ready to scale your earnings? Details 👇 docs.hackenproof.com/welcome/referr…