justAWanderKid
109 posts
justAWanderKid
@justAWanderKid
The person you have to spend the most time listening to in your life is yourself. Try not to lose that respect.
Katılım Mayıs 2023
428 Takip Edilen65 Takipçiler
justAWanderKid retweetledi
90% of exploited smart contracts were audited.
Companies pay $25K-$500K per audit. Some get 10+ audits.
Still lose millions in seconds.
At what point do we admit the audit model is broken?
English
hacking is so gay right now. before this Ai bs, normies had respect for hackers but now, this idiots sit behind computer and type bunch of prompts and sit until Ai finds them the bug. pathetic.
English
Apart from @sherlockdefi, judges on other platforms just follow what the protocol says. This is very risky because the protocol team is developers rather than experienced auditors. They may not understand some complex bugs that auditors find in contests.
English
@GalloDaSballo Every major social media or website you use is a spyware. Nothing new.
English
So many people jumping into bug bounties right now...
I'm genuinely curious—what's the actual success rate?
Like, what % of hunters actually land their first payout?
Or consistently make money? Feels like 95%+ quit early with zero $$$ 😅
Thoughts? Stats? Your experience? 👇
English
justAWanderKid retweetledi
if you dont understand what it means: you can no longer 'just use aave' anymore if bgdlabs is no longer at the helm securing things people take for granted.
bgdlabs@bgdlabs
BGD will be leaving Aave governance.aave.com/t/bgd-leaving-…
English
If you think you can "follow a roadmap" and get a well-paying "entry-level job" in Web3, you are smoking crack.
People with actual TVL experience and audit contest wins still have to fight hard to get a job nowadays.
You do not stand a chance with a blank sheet of accomplishments in web3.
Genuinely: if you are looking for a quick buck -- crypto is not it anymore.
It's not that I don't want you to become a smart contract engineer or auditor.
I just want you to know what you are up against and make an informed decision.
Pandit | Ξ🦇🔊@panditdhamdhere
In a network of people whose contracts holding millions of TVL without a hack and struggling to find their next role I have seen my CTO friend in not actually getting any role. In my network in last 2 month only 1 dev get hired, that too part time. Web 3 developers are cooked.
English
@justt_N true. there's way to much competition right now and the industry has matured alot. like you can't find bs bug and submit it and get a reward for that anymore lol.
English
Folks who come to Cybersecurity realize the hard truth.
That it’s low salary, competitive, and companies are stingy to hire.
Educational institutes and platforms are too busy promoting, “6 figure salary” “these certs will get you a job” “it’s in DEMAND”.
Almost everyone wants to land a job in offensive security mainly because how glamorous it looks from the outside and heavy usage of buzzwords like "hacking" “Ethical Hacker”.
People who made it in the past made it. It was a different world back then.
But you? You need to put 50x effort and there’s still no guarantee. Multiple certifications, multiple blogs, home labs, degrees, resumes, Linkedin.
But if you nail the networking part. You’ll most likely land something. It’s not last minute one-time show your face thing.
English
@ivan_alexandur It doesn't take genius lvl IQ to figure out whether BB is harder compared to contests or not.
English
I'm not sure if BBs are necessarily harder than contents.
Contents in the last months have become exhausting.
Few contests, lot of participants, conditional pots, everyone trying to invalidate each other bugs, SLOW judging and so on.
Contests at the end of 2025 had almost nothing similar to contests in the beginning of 25, that's how fast things are moving.
In the past few months a lot SRs moved to BBs and found bigger success there, they think BBs are easier.
It's interesting how SRs will show off their skills in the future.
phil@philbugcatcher
Pretty sad that audit contests are over The best path for beginners now is bug bounty, which is a tougher entry point than contests On the bright side, the next cohorts of SRs will likely come out even stronger
English
@officer_secret Damn this is crazy level knowledge. How did you learn about this?
English
We are not living in the most calm era... But how do you know exactly where it is "hot" right now?
We can estimate where military activity is now taking place thanks to this service which provides daily maps of GPS interference (jamming & spoofing).
Current GPS jamming (possible military activity) situation across the globe ⬇️
English
I found out what's worse than finding 2 duplicates in a row, it's 3
this was a high @immunefi
teoslaf1@teoslaf1
I thought I knew what heartbreak was, but I hit 1 Critical and 1 High in 3 days and both were duplicates how does one verify that this was a known issue? @immunefi
English
Also audit firms expect you to be senior level auditor while the pay is not that great like how it used to be in old days. It's time to think about new career for getting rich. Only blackhats make good money now, whitehats are spending their last pennies.
English
Yeah I believe there's no point of continuing Web 3 sec journey. Big companies collab with software chads, it will lead to smart contracts with no bugs in future. Now how far are we from that future? I would say 5 years max. Man i wish i joined Web 3 sec in 2020.
storm@notnotstorm
imagine what happens when a superintelligence starts exploiting vulnerabilities in cryptocurrency smart contracts @paradigm and @OpenAI have teamed up to research this issue
English
Also this shows that US wants to switch to crypto. In order to do this, they have to make this space incredibly secure so people will actually switch.
English