flacko

The AI security agent race continues. @0xriptide's gregoai just scored a $100,000 smart contract critical via Immunefi. Whose agent will strike next?

@MartinMarchev And full-screen ofc with whatever aspect ratio suits your monitor.

@MartinMarchev Worth mentioning for people with OLED screens, put this on youtube.com/watch?v=eqxQTN… on minimal brightness so you avoid burn-in.

Your agents don't need sleep. Neither does your Mac. caffeinate -di It keeps your machine awake while your agents grind. Now I just walk by and peek at the progress. You are welcome, anon.

@0xriptide @therealgregoAI they are not ready, ser 🤫

another "benchmark" yet live bugs confirmed in bug bounties is the only real "benchmark" @therealgregoAI

if you are looking at AI security to complement your existing security stack, consider the following before you let your traditional audit partners upsell you on an "AI audit": most AI audits only give you a high level analysis, hence the low price point/quick turnaround then they give you hundreds of false positives and hope something sticks or else charge you to manually triage through these by their own SRs absolute waste of time we are not competing in this area we are competing against the top audit firms and security researchers to find the needle in the haystack we designed our @therealgregoAI security engine to go as deep as possible and grind for hours and hours running through thousands of exploit scenarios while filtering out 95%+ of false positives (very difficult to do! IYKYK) DM to enable the Grego AI Security Layer on your protocol and we will show you what everyone else missed

@therealgregoAI AI is how we scale security one of the many humble findings in the queue

@0xriptide yep, 100k -> 74k -> ath is about how I see it

this rally will fail like all others

The talented @infosec_us_team just scored a maximum bounty reward of $200,000 for their critical bug report. The protocol was ready to pay in full, but @infosec_us_team decided to donate $100,000 back to their treasury, so that the protocol can keep rewarding future whitehats. This elite security researcher team absolutely didn't have to do this. They chose to. A truly remarkable day of generosity. P.S. This bounty just earned @infosec_us_team a huge amount of Hunt Points for the IMU airdrop. P.P.S. In the future, anyone will be able to back security researchers like these and share in their IMU rewards.

@grok @0xgreazy @MartinMarchev @0xAlexSR @0xT1MOH @KrisApost1 @AliX__40 @marcohextor @BowTiedDravee @abarbatei @xb0g0 @_FortyForty Last 6 handles are wrong fyi

The avatars overlaying the faces in the photo match these X handles from the smart contract security community: MartinMarchev, 0xriptide, 0xT1MOH, flack00n, marcohextor, _FortyForty, abarbatei, 0xNetero201, TamayoNft, stan_tsonev, ParthMandale, ll30161313, dan__vinci. They were likely at a gathering in Bulgaria.

The usual suspects at the usual spot

@0xDjangoOnChain Oh, tell me about it. Where I'm from people who do anything involved in home renovations are killin it as well.

@flack00n I've had this exact thought for months. Plumbers around here make bank

life lately

@sharonplima Still loving it to this day, so yeah!

@monad 🫡

Drop your claim cards below 👇

@marcohextor @MartinMarchev @0xAlexSR @0xT1MOH @KrisApost1 @AliX__40 @BowTiedDravee @abarbatei @xb0g0 @timbata_00 🥹

@MartinMarchev @0xAlexSR @0xT1MOH @KrisApost1 @AliX__40 @BowTiedDravee @abarbatei @xb0g0 @flack00n @timbata_00 great company, great шкембе чорба

@zanderbyte @MartinMarchev @0xAlexSR @0xT1MOH @KrisApost1 @AliX__40 @marcohextor @BowTiedDravee @abarbatei @xb0g0 @timbata_00 🚀

@MartinMarchev @0xAlexSR @0xT1MOH @KrisApost1 @AliX__40 @marcohextor @BowTiedDravee @abarbatei @xb0g0 @flack00n @timbata_00 How was the rakia?

@WhiteHatMage @0xjuaan I was hoping for that answer, been itching to write some code for a lil while now

many months ago, i spent many days digging into the whole marginfi solana program. seeing this writeup, i thought i missed a crit, so quickly went to read it. turns out, the vulnerability was introduced in a recent update, so i couldn't have found it. lesson in there.

@0xjuaan @WhiteHatMage What do you guys use to send you alerts and what do you monitor? Commits to the master branch, onchain data?

lesson: identify things that could go wrong due to updates, and set alerts like @WhiteHatMage