Kanhaiya Sharma
3.5K posts

Kanhaiya Sharma
@krishnsec
APPLICATION SECURITY & RECON | Top 5 P1 warriors @bugcrowd | https://t.co/QhMy9MYvrx

Today, HackerOne joins Project Glasswing, Anthropic's controlled-access program for Claude Mythos 5. We'll use it to harden our own security and evaluate it across the full CTEM workflow, including discovery, validation, prioritization, and remediation. Two things up front, because researchers will ask. Your reports are not training data. Vulnerability submissions stay where they belong: with the customer and the researcher who found them. And AI is not replacing the bounty model. In the first 6 months of this year, researchers earned approximately $47M in bounties through HackerOne, up 25% year-on-year. More AI on offense and defense means more code shipped, more attack surface created, more reports filed, and more bounty work. What we learn from applying Mythos to HackerOne’s internal scope will be shared with the wider community. Read the announcement. bit.ly/3SW96lx




I’ve decided to cap myself at 5 Critical reports/day and around 2 findings on average . Health comes first, so I’ll be cutting back on hacking time starting today. Time to touch some grass 🍀





















