
Big congratulations to @VulsightSec for scoring their very first paid report on Immunefi. And it's huge, huge payout. Well done! You can pledge behind them here to earn IMU when they find bugs: immunefi.com/pledge/vulsigh…
Zero Cipher
482 posts

@zerocipher002
Senior Blockchain Security Researcher. Move/EVM/Rust. #15 All time Cantina Leaderboard. Founder @VulsightSec

Big congratulations to @VulsightSec for scoring their very first paid report on Immunefi. And it's huge, huge payout. Well done! You can pledge behind them here to earn IMU when they find bugs: immunefi.com/pledge/vulsigh…




i also disclosed a bug to Aptos back in January, which in my opinion was critical, basically could take ownership of every smart contract, my only problem was that i did not have time to construct the full PoC, aptos setup was not friendly enough, run in multiple bugs trying to set up nodes and everything, team ack the bug and fixed it but wanted the full PoC, i got no reward 😂 unfortunately the bug is still in review on @HackenProof

An arbitrary state write bug in Aptos chain was disclosed by @hexens today. This is the worst kind of bug possible on a chain. Why? Not only everything on the affected chain can be stolen but also most assets across all chain can be stolen. Your stablecoins, LSTs, everything


I’d say that getting too many duplicates in old bug bounty programs is a sign that your hunting strategy needs improvement. Duplicates should be rare.



$500,000 to @rileyholterhus through Cantina Bounties. 🪐 The researchers who consistently find the bugs that matter don't chase volume. They follow programs where scope is tight, triage is fast, and rewards match actual impact. Well done, Riley!



Did you know we open sourced a fuzzer, an AI Framework and a VS Code / Cursor Extension for Fuzzing Solidity? - One click to scaffold - One line command to have AI work for you - One command to run a 10x fuzzer All on our Github







