Claudio Moletta

@David_mduw Claude

I'm one person. I work 10 hours a week on my SaaS. In the last few weeks, Claude Code has: → Written 40 blog posts → Shipped 60 SEO pages → Drafted every tweet I've posted → Handled my replies, emails, analytics → Run 5 scheduled workflows every day I just wrote up the full stack. Every skill, every scheduled task, every MCP server, every folder. Comment "claude" and follow me. I'll DM the full PDF.

@chalaska Good to meet you Chris. 👍

Genuinely curious, how many Aussie designers, founders and builders are here on X? Wanting to connect with you all!

Thanks for reading this far. Found this thread useful? • Follow me for more offsec & consulting insights • Like/Repost the quote below so others can find it

6️⃣ Brain & Body Last but not least, you only have one body and one brain. Take care of them. Sleep 7–8 hours. Exhaustion kills attention to detail. Eat well. Good fuel = better work. Take annual leave. Rest is part of performance. Do focused work during your mental peak. When stuck, get sunlight and reset. Strength train. A strong body supports a sharp mind.

I’ve spent 18 years in consulting. Milan, London, Sydney. Building things, breaking things, fixing things, leading teams, and learning (constantly) from people smarter than me. I’m not claiming to have it all figured out. Far from it. But here are the lessons that shaped how I work, and might help newcomers entering this challenging but incredibly rewarding industry.

What if offsec consultancies had a "Michelin Star" rating? 😉

Wife says wifi is slow. Most likely it’s just her laptop, but hey, man’s gotta buy his toys 😂 just don’t tell her.…

Fast forward to 2025, and during post-Assumed Breach exercise presentations, I still hear non-tech executives dismissively say, "If you had network access, it’s game over anyway." Perhaps boosting "user awareness" should start at the top of the organisation.

@dinodaizovi @FFmpeg It’s reasonable to expect organisations that profit from OSS projects to either fund them or contribute to their development. We see great programs to incentivise content production (YouTube, X, …), why not for OSS developers?

The main reason why FAANG companies submitting vulns to OSS projects like @FFmpeg hits different is because it's big corporations punching "down" at indie hackers. Vulnerability research and advisories started from indie hackers punching "up" at big corps' commercial software.

@hakluke Augment almost everyone, replace a few.

Hackers! Will AI replace us, or augment us?

If you're interested in learning more about initial compromise through phishing attacks, I highly recommend reading his excellent blog post from my colleague Ben. blog.silentgrid.com/adversary-driv…

N8N experts, I’ve noticed that whenever I attempt to create a relatively simple workflow, I revert to using bash or Python scripts and cron jobs. It simply feels much easier to me. Could you please explain what I’m doing wrong? What’s all the hype about this tool these days?

We, offsec people, act like every vuln must be fixed now or chaos ensues. And the faster a patch lands, the faster I can pin a CVE to my ego. Guilty, I’ve been there. OSS real security hero move: find the bug -> understand it -> implement the fix -> then go and take the deserved credit. I’m also for earlier disclosure: it helps security vendors ship mitigations/detections while maintainers craft safe patches.

I've been researching the Microsoft cloud for almost 7 years now. A few months ago that research resulted in the most impactful vulnerability I will probably ever find: a token validation flaw allowing me to get Global Admin in any Entra ID tenant. Blog: dirkjanm.io/obtaining-glob…

@awilkinson Try Bevel, I’ve been using the app for a couple of weeks and I like it so far.

Is there a good app that analyzes Apple health data and draws correlations and conclusions? For example: - On days you exercise you sleep longer - This drug affects your heart rate Etc