Aman

@beatsieboyz @0xSlowbug Yeah

@0xSlowbug @0xSlowbug where did you study about DLT systems?? Any resources for that if you can share??

It's been a hell of a year. Took sometime off hunting to learn various languages go, move and c++. Studied DLT systems, crosschain bridges etc. Restarting hunting with these arsenals. Seen a lot of success stories... Its time to make mine Will update here in 3 months

@nooz0x @HackenProof Hyperbridge?

Yeay, I was awarded for a valid submission on @HackenProof hackenproof.com #hackenproofed #bugbounty

Now it's working fine. Come join it now.

@sherlockdefi @rj_eth26 Is it coming in this week?

@rj_eth26 We have one that may be coming up in 1-2 weeks (not fully confirmed), keep your eyes out.

Sherlock created an audit team assembly system based on deep performance data. Most security firms rely on fixed in-house teams or assign researchers based on availability. Over time, we kept seeing the same gaps: auditors placed on codebases that didn’t match their strengths, and blind spots no small static team can realistically cover. Every researcher in our network is scored on accuracy, severity classification, specialization, and false positive history. When a private audit starts, we assemble audit teams based on who is most likely to catch what matters in that specific codebase.

🚨Echo Protocol exploited for ~$73M on Monad >the admin private key was compromised > the attacker granted himself an admin role and removed the original admin > minted 1000eBTC out of thin air > borrowed wbtc on Curvance No issues or bugs on the Curvance side.

@deadrosesxyz Sir no need to sorry, you are one my favorite auditor, i still remember when I find a medium in yieldoor.

@WebdevAnas sorry for the frustration. we're actively working to make the mobile experience better 🙏

been grinding @ParlayItGG tournament and honestly the platform is pretty solid 👀 the UI is clean and easy to use, new markets keep getting added everyday which is good for finding opportunities 📈 but one thing that is frustrating me — every time i try to approve trading key

@kenzowhitehat Bro, what's even happening? The moral is so down, one side hacks are happening and on the other side paths of security researcher closing.

🚨ALERT: THORCHAIN APPEARS EXPLOITED FOR OVER $7.4M Thorchain seems to have been hit by an attack involving Bitcoin, Ethereum, BSC, and Base. On-chain investigator ZachXBT reports losses surpassing $7.4+ million.

@zandyor Really bro, keep up the good work. May God make us all able to help people..

I know this is has been one of the toughest times financially and with everything going on, a lot of people could really use some help right now giving back some of what God gave me even if I took a hit as well, $7,500 ($750 each) 10 winners just reply ❤️

@MatusK279 @immunefi How long does it take to confirm? I am interested in bug bounty.

I just found a confirmed bug on @immunefi #immunefitribe immunefi.com/s/ss/?severity…

@MatusK279 @immunefi Smart contract or dlt

@Bryan_Conquer22 Let's connect sir in these hard times.

Auditors need to connect more now than ever. Drop a comment and connect with other security researchers and developers.

@4gontuk @immunefi How do you see the future for security researcher?

Should I start hunting on @immunefi ?

@4gontuk @immunefi You answer this question sir.

End of an era. I've never had a front-row seat to a product going from 0 to 100 back to 0 before. I still remember in 2022 when @sockdrawermoney said audit contests are a great thing for the Web3 space and that others should launch contest platforms. That was part of the green light that encouraged us to create Sherlock's audit contest platform. The irony is that I truly think Code4rena died due to competition. Sherlock was the 2nd entrant to the field, and Cantina and Immunefi came 1-1.5 years later and turned the space into a bloodbath where fees to audit contest platforms approached zero. I think if there had only been one audit contest platform (impossible I know), it would have been a very healthy, lucrative business. And the irony is that I think we'd see more contests and higher SR payouts in that scenario than we do today. On the bright side, I think competition made Sherlock's audit contest platform a much better product. Our customer-facing dashboards are more user-friendly. We reinvented our judging process 4x and it's now 10x better than it was 3 years ago. And our team as a whole was forged by fire thanks to the intense competition. I am a better founder and CEO because of the experience. I'm really grateful for the lessons that we learned by competing against Code4rena. Their team was truly mission-driven and cared about security outcomes in a way that some others sadly didn't (and still don't). Sherlock has fought hard to keep the security-first ethos in the audit contest space and in all our products. And we'll continue to fight hard for this. For any team that experiences a gap in the market due to Code4rena's exit, I hope you'll ask protocol teams and security researchers you trust for their recommendation. I'm grateful for everything Code4rena has given to the space and our team. And I look forward to Sherlock continuing to carry the torch of a security-first approach in audit contests.

@thisvishalsingh Sure sir, will study each of them.

I have studied all of these and each one of them is valuable in my zkp learning journey. Don't doubt it.

@thisvishalsingh Can you suggest some sources to learn zk proof.

How to Read a ZK Protocol? How to find High impact Vulnerability in zkp? - When reading any ZK protocol, ask these questions: - What is the statement? - What is the witness? - What is public? - What is private? - What does the prover control? - What does the verifier check? - Where does randomness come from? - What is committed? - What is challenged? - What is revealed? - What remains hidden? - What assumptions are required? - What happens if inputs are malformed? - What edge cases exist? - What exactly does verification guarantee? These questions are simple. But they are powerful. They turn you from a passive reader into an active reviewer. That is how you begin thinking like a ZK engineer. And eventually, like a ZK security researcher who find High impact bugs!!

@panditdhamdhere Let's go sir

Deploying on Ethereum Mainnet. Pray for me. Jay defi 💪🏼

@mphrediction @kreoapp Done sir, inshallah

Kreo hit $50m in TLV in less than 3 months! 🎉 As a thank you to our supporters, I am giving away $1,000 to ONE lucky winner. Follow & Retweet to confirm your entry. 🤝