XBOW
@Xbow
Followers
10K
Following
35
Media
59
Statuses
124
Bringing AI to offensive security by autonomously finding and exploiting web vulnerabilities. Watch XBOW hack things: https://t.co/D5Mco1u8zM
Seattle, Washington, USA
Joined May 2007
CEO @oegerikus was hosted today on @FoxNews to discuss how XBOW is changing the game in cybersecurity. "We found a flaw in a well-secured company. They fixed it. Then our AI checked again and found a bypass for their fix. These AIs are pretty clever.". Full interview and
2
3
46
"The ChatGPT moment of cyber hacking hasn't happened yet, it will happen, and offensive actors will use AI we need players like XBOW to help keep the world safe." - @apoorv03, Partner at Altimeter Capital. As attackers arm themselves with AI, we can't afford to fall behind.
1
2
6
Every @TrustVanta user will soon be able to launch XBOW’s autonomous pentesting agents right from the platform they already use. "Security should be accessible without sacrificing rigor." @oegerikus, CEO of XBOW. Our partnership with Vanta makes it easier for startups to prove
2
0
30
RT @niemand_sec: XBOW is moving on from Bug Bounties. As I’ve always said, BBs are a great playground, not just for learning, but also for….
0
5
0
"HackerOne was our live-fire range, and every time we developed a new capability, we set it loose on the platform.". Our Head of Security, @nicowaisman, just announced what’s next for XBOW after our journey on the @Hacker0x01 platform. Read his full announcement:.
A new chapter for @Xbow. We're concluding our primary mission on Hacker1, so it will no longer be competing on the leaderboard. The platform was a critical step in our journey: an invaluable, large scale, live-fire range for developing and improving XBOW.
0
4
41
4/ The full technical breakdown is here: .
xbow.com
OpenAI's initial assessment of GPT-5 showed modest cyber capabilities, yet integrating it into the XBOW platform unleashed its hidden hacking power and doubled our agent's performance
2
6
82
3/ The results speak for themselves:.- 30% fewer iterations to exploit targets.- nearly 2x more vulnerabilities found in real world targets.- improved consistency across different attack scenarios.XBOW's agents are now faster, more consistent, and more effective.
3
5
95
2/ OpenAI's own benchmarks were conservative, showing GPT-5 performing comparably to older models in CTF challenges and unable to solve cyber range scenarios unaided. The breakthrough: not using the model in isolation, but unlocking its capabilities within our autonomous
1
4
78
How XBOW Discovered Multiple Vulnerabilities in Palo Alto’s GlobalProtect VPN:
xbow.com
XBOW discovered multiple cross-site scripting (XSS) vulnerabilities in Palo Alto Networks’ GlobalProtect VPN web application
0
0
8
4/ You didn't really miss our DEF CON talk!. Due to tech issues, our researchers couldn't present. We're recording their session on AI's journey through 1000s of bugs and will share it soon. Stay tuned! @djurado9 @niemand_sec.
1
0
9
3/ You asked for another demo, you got it. Join our Head of Security, Nico Waisman (@nicowaisman ), for a live virtual session next Wednesday, Aug 20th. If you missed the live hack, don't miss this. Registration link in the blog post.
1
0
9
2/ Our own @moyix gave a talk on zero false positives, and it was completely packed. You can get the full recap and download his slides in our new blog post:
xbow.com
A recap of our week at Black Hat and DEF CON, where we put XBOW to the ultimate test: running it live against real targets and discovering dozens of vulnerabilities.
1
1
14
1/ We unleashed XBOW live on real @Hacker0x01 targets. It found dozens of vulns in real-time, with a PoC for every single one. The future is autonomous. 🤖.
1
0
9
Check out the full Critical Thinking episode (@ctbbpodcast) to hear about XBOW’s internals from one of our elite researchers, @djurado9.
HERE'S HOW XBOW works, and we can learn a LOT from it
0
8
45
We're proud to be part of the community!.Our security team is at DEF CON & BBV. Come say hi and chat about AI-powered security. #DEFCON #BBV @XBOW.
Shout-out to @XBOW for being a Platinum Sponsor. Thank you for your trust and support!. XBOW recently climbed to the #1 spot on the H1 leaderboard! Their team will be at DEF CON and BBV, so don’t miss the chance to stop by and learn more about their AI-powered offensive security.
0
1
4
Starting now!
Tomorrow, 10:00 AM @ #defcon33 .@djurado9 & @niemand_sec break down how we built XBOW. Hear about the journey, the challenges, and the most impressive bugs we've found, straight from our top researchers.
1
1
29