As a pentester, you sometimes spend hours reading obscure docs about a library you never heard of, chaining vulns, and praying your work turns into something useful. Xbow-dude did all that in 12 minutes. SSRF -> expression injection -> RCE.

Man you gotta love container escapes. The amount of times I’ve seen companies rely on containers to isolate tenants. you are an escape away from a complete compromise of your cloud solution.

RT @moyix: Albert's excellent blog post on "model alloys" – a clever technique for combining the strengths of different models without maki….

RT @Xbow: When simple attack vectors fail, XBOW doesn't give up. ⚡️New discovery: Arbitrary file read in WordPress Ninja Tables plugin. H….

RT @Xbow: Sometimes the most illogical approach wins. XBOW discovered XSS in Salesforce Aura by testing aura.format=JSON - which counterin….

RT @TheStoicEmperor: Many advancements come from people trying to teach themselves something and tripping over a better way to do it.

Way to start the quarter! (worldwide leaderboard)

I can’t believe how many pentesters, red teamers, and bounty hunters missed this bug (myself included!) A prime example of why we need to scale up with AI.

RT @Xbow: The top hacker in the US is not a human, but a machine. @XBOW founder and CEO @oegerikus and @apoorv03 of @altcap joined @Bloombe….

Hacking with friends always pays off :) thank you HackerOne & Salesforce for such an amazing event! This time I teamed up with Kcho, @djurado9 and @niemand_sec to land a few crits that got us the eliminator award 😊.

RT @YuG0rd: 🚀 We just released my research on BadSuccessor - a new unpatched Active Directory privilege escalation vulnerability.It allows….

RT @moyix: Woohoo!! I'll be going to Las Vegas this August to talk at @BlackHatEvents USA about how we built an AI agent for finding vulns….

RT @nicowaisman: Bribing sub-contractors is not new (re: @coinbase), how you though about what that means for your open source supply chain?.

RT @moyix: Another nice 0day found autonomously by XBOW :D

I always tell my social engineering pentest clients to test from the perspective of a malicious insider, especially low-level roles like support staff or contractors. Sure, you can go after them legally for breaking contracts, but only *after* the damage is done.

RT @OpenAIDevs: You can now connect GitHub repos to deep research in ChatGPT. 🐙 . Ask a question and the deep research agent will read and….

Sorry not sorry 😜.

RT @djurado9: XBOW is hiring!! If you want to join our team and work with some of the most talented people I have ever met, don't miss your….

I’m thrilled to announce that I’ll be joining the brilliant minds at the XBOW team next week!.After 10 years of breaking things for a living, it’s time to get back to building… this time, building an AI product that breaks things in a scalable, safe, and automated way 🦾

RT @lbeurerkellner: 👿 MCP is all fun, until you add this one malicious MCP server and forget about it. We have discovered a critical flaw….