forefy

1.1K posts

forefy banner
forefy

forefy

@forefy

Over a decade of security research and engineering channeled into securing emerging threats ㅤ CTO @audit_wizard 🧙‍♂️🪄🪄 ㅤㅤㅤㅤㅤㅤㅤ Co-Founder @hackstackapp

Request an audit Katılım Aralık 2021
389 Takip Edilen721 Takipçiler
forefy
forefy@forefy·
forefy@forefy

AI Summary of my talk at ETHDenver 2026 🥳 ⤵️⤵️ The talk focuses on why deterministic tooling still matters in a world where everyone uses AI for security reviews. 🤖 The AI Audit Problem - Developers blindly use AI (Claude, Copilot) to generate and review code, including security tests - without fully understanding what's produced. - Even professional security auditors are vibe-auditing with AI, making it hard to trust audit results. - This creates a trust gap in the entire smart contract security ecosystem. 🔍 What Radar Does - A CLI-based static analysis tool supporting Solidity and Rust (including Stylus/Anchor). - Template-based design inspired by Nuclei (popular web2 scanner) - but a better engine as researchers write Python rules - Designed for scale: scanning 200+ contracts simultaneously, ideal for continuous monitoring or mass vulnerability hunting. 🐍 Why Python Templates? - YAML (like Nuclei used) got unreadable at scale. Python is more readable and, critically, AI generates better Python than Rust for this use case. - Templates are deterministic, shareable, and reviewable - unlike asking an LLM "find bugs in my contract" which gives different answers each time. - Built-in sandboxing strips dangerous Python operations (no network calls, no subprocess), making community templates safer to run. ⚡ The Workflow Vision 1. Security researcher discovers a bug pattern during an audit. 2. Uses AI (with human oversight) to generate a Radar template encoding that pattern. 3. Tests, reviews, and optionally shares the template with the community. 4. Others (or automated systems) spray the template across thousands of contracts. 5. Replaces "I found one bug in one contract" → "I found this bug class across the entire ecosystem." 🌐 Web3 Analogy to Reac2Shell - In web2, within hours of a CVE dropping, Nuclei templates appear for community scanning. - Radar wants the same for web3 - rapid, trustworthy, community-driven detection at scale. - Also addresses the malware risk of rushing to run sketchy Python scripts (e.g., fake "check if you're vulnerable" scripts that steal API keys). 🦀 Current State & Call to Action - ~30 templates today, aiming for thousands. - Radar is open source, one command to self-host on a VPS. - Researchers can keep private templates for personal bounty hunting and contribute when patterns are exhausted. - Looking for contributors and template writers.

QME
0
0
0
9
dax
dax@thdxr·
please i'm begging you show me something you built not another "this is my custom agent setup" post where you pretend you're doing something smarter than vanilla claude code please
English
1.8K
185
6.6K
387.3K
forefy
forefy@forefy·
@immaterial_ink @solana You can port all, that's why it's open source Of course if you want to contribute to radar that's also very welcome, it also supports native rust stylus rust and solidity
English
1
0
2
9
◎ immaterial_ink ◎
◎ immaterial_ink ◎@immaterial_ink·
1/🧵I fulfilled my long term goal of writing a codeql-like query language (and engine) for Solana source code from (almost) scratch Instead of extracting just raw datalog facts from rust, it also extracts elements that are specific to anchor (like all the account checks)
◎ immaterial_ink ◎ tweet media
English
2
1
5
321
Sven Meyer
Sven Meyer@SvenMeyer·
@forefy @GeminiApp Actually I was referring to me own Markdown Artifact which I wanted to co-edit with Fable 5 in @claudeai Web just yesterday. I had to tell it within the chat what to change and it regenerated the whole x-hundred lines again, each time. Next time I just use Claude Code CLI 🤷‍♂️
English
1
0
1
46
forefy
forefy@forefy·
@SvenMeyer @GeminiApp I think the share is broken, but interesting. In my use case the co-edit is acceptable, didn't realize gemini has co-editable artifacts!
English
1
0
1
25
forefy
forefy@forefy·
Claude Artifacts are BETTER than you think ⁉️ I feel outdated for only learning this now. Lets take fuzzing for example. you co-architect a fuzzing harness with claude and use it as control-plane to run complicated fuzzing engagements Before: output was all json files and you manually review them Now: tell claude to create a pretty Artifact output dashboard, run the different fuzz tracks, and add coverae mapping diagrams, sankey diagrams what not! for pretty and fun way to look at the data. And here's the real drop: You are 1 click away from being to cloud host, share with anyone the mini fuzz dashboard app that you just created / updated. This is literally a 1-click-SaaS with no other charges rather than your monthly claude subscription
forefy tweet mediaforefy tweet media
forefy@forefy

No one's talking on how Claude Routines just destroyed whatever recurring scan/task/service you were building - 0 setup free cloud compute to run periodic AI tasks - pay for tokens only - security is up to speed (define isolated plugins only, session has nothing that you don't define) - free init script code control - auditable run logs - integrations are taking 2 clicks avg Amazing

English
1
0
10
1.2K
0xfirefist
0xfirefist@0xFireFist·
Has anyone figured out how to make Claude explain things in Plain English rather than trying to sound like a professor...🧐
English
4
0
19
1.4K
forefy
forefy@forefy·
2024: I read the code 2025: My agent reads the code 2026: My swarm's reading agent reads the code 2027: My swarm hires a swarm to read the code 2028: Someone reinvents "reading" as a startup. Raises seed round. 2029: The startup's product is a human. Series A. 2030: Agents unionize. Demand code reviews of their prompts. 2031: First swarm-on-swarm merge conflict escalates to arbitration. 2032: Arbitration is handled by a swarm. Verdict: inconclusive, forever. 2033: Someone finds the original 2024 codebase. It still works.
English
0
1
9
1K
forefy
forefy@forefy·
No one's talking on how Claude Routines just destroyed whatever recurring scan/task/service you were building - 0 setup free cloud compute to run periodic AI tasks - pay for tokens only - security is up to speed (define isolated plugins only, session has nothing that you don't define) - free init script code control - auditable run logs - integrations are taking 2 clicks avg Amazing
forefy tweet mediaforefy tweet media
English
0
2
7
1.9K
forefy
forefy@forefy·
@audit_wizard Funny to give juniors a Claude Code 200$ monthly budget without blinking, while open source security tools are just waiting for you to use them for absolutely free Maybe you can argue liftoff time costs but can't be more than a day for a junior to get iron-man level secured
English
0
0
1
45
forefy
forefy@forefy·
Anthropic-owned Bun, ports its Zig code to Rust all with AI agents 😱😱 Here's what you need to know 👇👇 - This is the most "unsafe" keyword usage we've seen, so despite memory safety being the main drive behind this port, it only sets the foundations for future safety but in reality hiding behind exclusions - Port means near cloning existing architectures and concepts so not a rewrite, and since Claude Code uses Bun it seems like all bugs gets fixed but the bugs fixed are Claude related and the others are just not getting enough attention to cover for the bugs expected This almost feels as if Anthropic ditches Zig due to it's unconventional anti-AI policy This video is so trippy tho haha
tetsuo.mlir@tetsuo_cpp

If you missed the Zig/Bun drama, here's a recap.

English
0
1
7
940
forefy
forefy@forefy·
@packet_priest Yes! feel free to open a pr with any improvements, I bet there's a lot more edges to draw in the graph or more complicated queries to share to make the correlations better
English
0
0
1
13
forefy
forefy@forefy·
Now after you got a chance to use the auditvault brain - any feedbacks? requests? Please let me know what's missing!
forefy@forefy

We've created an obsidian brain for smart contract audits and the results are shocking 🫣🫣 No AI fluff - only all the crits from @SoloditOfficial and @RektHQ scraped to markdown files, and extrapolated to: - protocols from bounty platforms, rekt, selected public audit portfolio reports - complex ai-based tagging system dividing bugs into sectors - methodologies and checks that would've prevented each bug - language specifics, protocol specifics, l2 specifics and more - who reported the bug - who missed the bug AND MUCH MORE! A common use case: > We start an audit on a zk-heavy protocol > Load the obsidian vault locally > tag:#sector/zk AND path:classifications/bug/check this extracts all zk-tagged CHECKS, meaning all the checks corresponding to critical issues in the vault, that are to be checked against zk sector auditing staking pools? prediction markets? multisig? gaming protocols? etc. same for auditing rust? anchor? stylus? cairo? yul?! Best part - it lets your AI agent save enormous amount of tokens by using obsidian's wikilinks feature to simply get highly relevant data. I personally use this at the start of every new audit and improve it gradually. Would you use something like this? should I make it open source? Retweet this post and spread the word to let me know‼️

English
1
0
9
1.3K
forefy
forefy@forefy·
@_dru1d Haha must've been hard and weird! Well hope it will be useful to you in the next one!!
English
0
0
2
73
dru1d
dru1d@_dru1d·
@forefy After I finished an engagement where we were operating entirely on MacBooks!
English
1
0
1
71
forefy
forefy@forefy·
Another gem from the old EDR-evasion days drawer Tested on latest mac OS's and apple silicone, still working after all these years Not signed by any EDR I tested it against, and dumps hashcat-ready password hashes for lateral movement and privilege escalation within macos environments post-compromise This is obviously shared not for blackhats, but for raising the awareness to EDR and defensive teams that this capability still works, and I encourage defenders to share, post, retweet this until it stops working lol github.com/forefy/mimic
forefy tweet media
English
3
15
105
9.1K
forefy
forefy@forefy·
After 10 years in the field this is the first time something like this happened to me 🤯🤯 It's not about the money donation, it's getting hit with the realization that my open source work, that I do for fun and for my love of security research, affected a person so much he decided to take action and contribute from his hard-earned money, just because of this research work, which is already granted free to the world @DefAihub thanks for an incredible lesson, and nuclear energy sources for my future open source work to come we need more people like this in the world this is the repo btw github.com/forefy/.context
forefy tweet media
English
4
0
39
2.4K
nad
nad@Nadsec11·
@forefy Dawg, this is sick. Thank
English
1
0
2
211
Mohamad
Mohamad@DefAihub·
@forefy Reading this honestly made me really happy ❤️ If my small contribution gave you even a little extra energy for your future open source work, then I’m really glad I did it. Thank you again for everything you do for the community. I really appreciate it.
English
1
0
3
391