brymko

540 posts

brymko

@brymko

Exploit Dev, Security Researcher, Hobby Quant, Solving Problems Ex ctf @FluxFingers, @allesctf, @Sauercl0ud Affiliated @the_secret_club

Singapore Katılım Ocak 2019

341 Takip Edilen873 Takipçiler

brymko@brymko·2d

@dystopiabreaker this is critical if claude made the serverity guidelines

English

118

⚡️🌙@dystopiabreaker·3d

can you spot the critical vulnerability in this?

English

358

82.7K

brymko@brymko·18 May

@v12sec bro

275

V12@v12sec·18 May

you can now Buy Now Pay Later pay for v12 credits with Klarna and Afterpay we call this "PoC now, pay later". we also wanted to add Affirm but they rejected our application🤡🤡 we also enabled USDC payments🎉

V12@v12sec

unauthenticated root RCE on TerraMaster TOS4 NAS appliances. (+free additional LPE) something light for sunday. bigger stuff this week! :-)

English

8.4K

brymko@brymko·16 May

@offensive_con Ticket says otherwise 🫡

English

932

offensivecon@offensive_con·16 May

Offensivecon is coming to Tokyo! 🔗 offensivecon.jp Ticket shop, sponsorships and CFP are already open...

English

292

35.9K

brymko@brymko·15 May

@Highentropy001 @Anneallab @solana @tethergold @orogoldapp Anneal should also pls run claude on it's protocol security bc there are like 3 crits in there

English

M@rt@Highentropy001·15 May

@Anneallab @solana @tethergold @orogoldapp To my knowledge, no Solana options venue has combined those three And here we @Anneallab are🙌🙌🙌

English

M@rt@Highentropy001·15 May

Onchain options never produced a Deribit, not because nobody tried. The problem is that bespoke options do not fit the tools crypto already has. Here's a note on why I think they need P2P, agents, and ZK, in that order. 👇👇

English

202

brymko@brymko·13 May

@S1r1u5_ but saw some "llm" rce's on the timeline that.. were not bugs

English

387

s1r1us (mohan)@S1r1u5_·13 May

thats not lot of browser entries, which kinda confirms my suspicion that zdi mostly got dos’d with bugs on slop software or slop reports?

Hossein Lotfi@hosselot

We have received 6 browser entries for #Pwn2Own Berlin 2026: * Mozilla Firefox renderer: 3 * Apple Safari renderer: 2 * Microsoft Edge renderer + Sandbox escape: 1

English

7.2K

brymko@brymko·13 May

@S1r1u5_ ff killed some with a recent patch atleast. Not sure about the rest

English

455

brymko@brymko·9 May

@FutureDies publicly available info ?

Français

709

Dariia Porechna 🇺🇦@FutureDies·9 May

RIP elliptic curves you were beautiful

English

119

16.6K

brymko@brymko·9 May

@anzuukino2802 not an rce and also not a bug lol

English

721

Yuu@anzuukino2802·8 May

This was supposed to be my PoC for a Claude Code RCE aimed at Pwn2Own Berlin 2026, but ZDI never got back to me about my entry registration. It looks like I won't be able to register it at all...

English

324

27.5K

brymko@brymko·9 May

@zeyu1337 hdl mala is bait spicy 🤨

Indonesia

zayne (zeyu) zhang@zeyu1337·9 May

@brymko sukiyaki. I would have ordered mala but white people are too weak

English

zayne (zeyu) zhang@zeyu1337·9 May

if we become friends and you are not chinese, you will go to Haidilao with me. it's like my initiation ceremony for friendship. in particular, the one in London Paddington

English

996

brymko@brymko·8 May

@NotDeGhost 💀💀💀

QME

532

Robert Chen@NotDeGhost·8 May

4 years until Solana is bug free

Cat McGee@catmcgee

vibecoded a thing

English

143

21.9K

brymko@brymko·22 Nis

@CarryWorm is that a new memecoin ?

English

Nico Gründel@CarryWorm·20 Nis

Got a GT3 S/C allocation. Chat should I pull the trigger?

English

392

brymko@brymko·10 Nis

@S1r1u5_ slack is the original vibe coded app before ai was even big

English

s1r1us (mohan)@S1r1u5_·8 Nis

man, who the heck vibecoding notifications at slack? can you please revert the slop?

English

1.3K

brymko@brymko·7 Nis

@S1r1u5_ haha exactly my thoughts

English

s1r1us (mohan)@S1r1u5_·7 Nis

@brymko x.com/S1r1u5_/status…

s1r1us (mohan)@S1r1u5_

claude seems nerfed for the last 3 days. I assumed it's just me, but 5 other people independently brought up the same thing. is anthtropic prepping an announcement and moving inference to capybara xD?

QME

s1r1us (mohan)@S1r1u5_·7 Nis

Holy!!! if you're already using claude opus 4.6 for exploit dev, you know how capable it is. if there is no chart crime, the jump to mythos looks crazy!

English

211

15.3K

brymko@brymko·7 Nis

@S1r1u5_ If anything im curious if you guys also seen a massive drop in 4.6 perf over the last few weeks.

English

brymko@brymko·7 Nis

@S1r1u5_ Whats the definition of trials here ? Sounds to me that it already starts with prior information.

English

689

brymko@brymko·5 Nis

yea cause the train will be delayed 30

Roi Semo רועי סמו روعي سمو ⬱🍅🇮🇱🇪🇺🇺🇦🇦🇲🇲🇲@RS_Glide08

"I can...roll up to the train station 10 minutes before departure" you can do it... with *german* high speed rail. with chinese HSR you can't, because their stations are located far from the city center and have airport-style boarding.

English

434

brymko@brymko·28 Mar

@h0mbre_ lost 15 kg since mid december with a claude meal plan

English

1.9K

h0mbre@h0mbre_·28 Mar

Claude is somehow better at kernel exploitation than creating meal plans. It's wild how bad it is

English

839

42.2K

brymko@brymko·22 Mar

sadly compliance will always be a synonym for “least amount of effort put in to pass”. Real operational and technical security doesnt have a 1 to 1 payoff as it only provides foundational work and has no direct impact on growth. I hope to see a return to these values after pe shits the bef

English

zayne (zeyu) zhang@zeyu1337·22 Mar

delve situation is terrible but there are probably other compliance startups just like delve. "fast compliance" is a myth and compliance should be an artifact that comes naturally with good security. if you're in the compliance space and want to deliver actual value to your customers we should chat. our pentests actually find critical vulnerabilities. hacktron.ai/blog/cve-2026-…

English

1.6K

brymko@brymko·16 Mar

@JustWantToQ1 yeah its not csgo and doesnt use the source 1 engine anymore. This guy is just stealing old stuff for publicity

English