Mike Leffer
@mikeleffer
Followers
1K
Following
2K
Media
81
Statuses
846
President @spearbit / @cantinaxyz | Investor @ Riptide Ventures
Baltimore, MD
Joined January 2019
Proud to share that Cantina is now SOC 2 Type II certified. Continuous improvement is the mission. Onward!
Cantina is now SOC 2 Type II certified. Security isn’t something we just deliver, it’s something we live. This milestone reflects our commitment to continuously leveling up our own operations to match the standards we bring to Web3. One step in a long journey, with more to
1
0
11
"It's too good to be true"
We’ve been working behind-the-scenes on something groundbreaking. If you want early access to the only Web3 AI security tool that truly focuses on signal over noise, you can now join the waitlist.
0
0
6
You’re not going to believe the results we’ve been getting - so why not see it for yourself. Join the waitlist here:
cantina.xyz
Join the waitlist for Cantina Code Analyzer. AI-powered security tool that surfaces only critical issues, reducing false positives and review fatigue.
We’ve been working behind-the-scenes on something groundbreaking. If you want early access to the only Web3 AI security tool that truly focuses on signal over noise, you can now join the waitlist.
1
0
8
“It’s too good to be true”
If you're reading this and want early access to something we're building, DM me. It's an eye opening moment when you see it in action.
0
0
5
Looking to hire two interns in India to work with me on triaging/tooling and more. This is an in-person opportunity only in a beautiful beach city for 6 months. If you’re into blockchain security or development, DM me. Benefits: weekly Ice creams treats (the best in the
31
5
191
Good PoCs get noticed. Valid PoCs get paid. @Coinbase and Cantina shared what separates accepted submissions from the rest - clear logic, executions, and reproducible results. That’s the standard for Coinbase’s $5M onchain bug bounty with Cantina. More details below.
2
7
26
Bug Bounties Without Barriers: What Makes a PoC Valid? Lessons from the Coinbase Bug Bounty
0
20
58
What does a valid bug bounty submission actually look like, and why do most PoCs miss the mark? On Oct. 21, join Alexis Williams, Staff Blockchain Security Engineer at @Coinbase, and @_hrkrshnn, CEO of Cantina, for a live conversation on what gets accepted, what gets rejected,
8
7
42
In Web3, every second counts. @Hypernativelabs alerts teams to the threat. Cantina neutralizes it. Together, we’re redefining Managed Detection and Response (MDR) for organizations. Read more: https://t.co/vunXAyPINP
4
13
40
When staking becomes infrastructure, the margin for error disappears. 🪐 @Ventuals has launched a $1,000,000 bug bounty in the Cantina. vHYPE, vault logic, and role management contracts are now open for review.
2
2
37
Thanks @rplusq ! We really enjoy working with you as well.
It's really hard choosing which vendor to go with, I've worked with 5+ providers in the past and it never gets easier. But for our latest @WalletConnect audit, we worked with @Spearbit, and it was the first time I didn't feel like a client waiting for a PDF.
0
0
3
Excited to launch @0xPolygon's $1,000,000 bug bounty for @Agglayer !
What does it take to secure the backbone of Ethereum’s scaling ecosystem? @Agglayer by @Polygon is putting that question to the test with a $1,000,000 bug bounty on Cantina. Its cross-chain infrastructure is live for public review. Link below.
0
0
2
Milestone unlocked: over $1,000,000 in bug bounty payouts through Cantina. This reflects the scale of security work happening across and the depth of talent behind every submission. Thank you to everyone contributing. Let’s keep raising the standard, together.
3
2
34
Congrats @el_hajin ! Many more to come
Bounty payouts continue on Cantina. @el_hajin has earned $10,000 for his latest contribution. Known for top-tier performance across security competitions and high-signal audits, Elhaj brings a high standard of analysis and precision across every engagement. Well done.
0
0
4
We’re hiring 🪐 Cantina is looking for Security Researchers to join our network and work on deeply technical smart contract and protocol audits. The ideal candidate is: •Experienced in Solidity and EVM vulnerabilities •Curious, rigorous, and collaborative Link below:
10
18
209