vermsec

Claude Security is now in public beta for Claude Enterprise customers. Claude scans your codebase for vulnerabilities, validates each finding to cut false positives, and suggests patches you can review and approve.

My take on Anthropic's new Mythos model: Don't worry about it. It might be amazing, it might be disruptive. But there's nothing you can do about it. Ignore the hype, keep your head down and keep learning, growing and creating. Adopt this: Relentless Optimism.

In the latest release of JXScout Pro, I've added support for file system ingestion, allowing you to leverage JXScout's pipeline to analyze JS files from different sources like Chrome Extensions and wayback machine Docs available here: docs.v2.jxscout.app/docs/tutorial/…

Happy Arcanum-versary! @arcanuminfosec 's 1st giveaway for the week is FOUR seats to our EPIC Advanced Client-Side Hacking course by myself and @xssdoctor ! 👍 1 Like = 1 Entry! ♻️ 1 Share = 2 Entries! Winners announced 1/21! Syllabus for the course below 👇

🎉Giving away 5x yearly bbradar[.]io Pro subs! 👉Get Live notifications on Discord for new programs and scope changes. 👉Search for assets and find matching programs. 👉View Latest assets/targets/scopes. To enter: ✅Follow @Kle0z . ✅Like this post. ✅Share this post. Winners will be announced on the 30th Of January.

@zseano Congrats Sean!! 🎉🥂

eeeeek i'm getting married tomorrow!!!

@zseano So sorry to hear that Sean😔

Unexpectedly lost my dad early hours this morning… completely out of the blue. He was fit & healthy and now he’s gone 😭 lost for words on how I feel. RIP Dad ❤️❤️ love & miss you forever

Vibe coders coming up with their next prompt

@jobertabma @NahamSec @stokfredrik @Hacker0x01 vermsec

Hey hackers! We're running a beta for Hai for Hackers, our AI security agent. If you're interested, please reply with your HackerOne username (we will probably limit to ~100 hackers for now). After it's been enabled, you can start using it by clicking the Hai button in the top right corner of the app. It’s free to use (with a limited daily budget for now). It is like any other AI you’ve interacted with, with the added benefit that it has access to a whole bunch of HackerOne data, like reports and programs. We’re shipping improvements to Hai almost every day. Here are some neat use cases: - “take all the learnings from STÖK, jhaddix, and nahamsec's recon strategy and build one for me!” - “write a python script for a typical recon process” - “i need an XSS payload that doesn’t use single or double quotes” - “my XXE payload doesn't call back to my server, what could go wrong?” - “write a response for report #133337” The beta also comes with Hai Plays for you, which allows you to build your own security agents in HackerOne. You can create them at hackerone.com/settings/hai_p…. Some of the cool use cases we’ve seen so far are: - write reports with minimal input from you (efficiency++!) - convert reports into blogposts with a single prompt - AI mentor to give feedback about your communication and increase the likelihood of a reward In the background we’ve been working on agentic behavior, which we expect will soon come to Hai for Hackers as well. These AI agents can act like your hacking buddy and hack alongside you. We’ll keep you in the loop on our progress.

Are you an ethical hacker ready to hunt bugs IRL? Or just starting out in cybersec? Join #GOhack25 in Zurich, Nov 6–8! Hands-on sessions for beginners & pros; live bug bounty challenge Meet the community, win prizes Bug bounty ticket: just CHF 13.37 gobugfree.com/de-CH/go-hack-…

🚨 Calling all Ethical Hackers! 🚨 Get ready for the @zkb_ch #GOHack Challenge. Join us April 30-May 7 and vie for a slice of the CHF 15,000 bounty pool. Register on the GObugfree platform today! 👉 gobugfree.com/programs/zkb #BugBounty #CyberSecurity #GOHack #ITmadeinChreis5

@BadAt_Computers Me too lately and no matter how good I plan my day somehow it gets postponed :/

Sometimes I hate this lack of focus I have when studying. I have had all day after work and after biking to just sit down for 2 hours and work through some material, but here I am waiting till 11 to start this :/.

@G0LDEN_infosec Hell yeah!

stream again tomorrow :) nothing like a Friday night stream session :)

Finally dropped my new tool! Gungnir is a continuous CT log scanner that prints out domains to stdout! Check it out! youtu.be/i5dunw_tAT4

The portswigger labs run continues! To GLORY! twitch.tv/g0lden1_

@G0LDEN_infosec I’ve been considering it too! Let me know when you start😁

Has anyone done the Senior Web Pentester (CWEE) stuff on HTB academy yet? If so I would love to hear your thoughts :)

@xnl_h4ck3r LMAOO🤣🤣

I need to always keep learning and work hard, so I don't turn into this loser 🤘😂

@pry0cc That neck turn tho!

@TomNomNom 🤣🤣🤣

Happy new year everyone!! Let's crush big bounties in 2024!💪