professional valorant player #pentester
Joined January 2021
- Tweets 730
- Following 246
- Followers 44
- Likes 597
ₛₐGₑ retweeted
XBOW raised $117M to build AI hacking agents.
Now someone just open-sourced it for FREE.
Strix deploys autonomous AI agents that act like real hackers - they run your code dynamically, find vulnerabilities, and validate them through actual proof-of-concepts.
Why it matters:
The biggest problem with traditional security testing is that it doesn't keep up with development speed.
Strix solves this by integrating directly into your workflow:
↳ Run it in CI/CD to catch vulnerabilities before production
↳ Get real proof-of-concepts, not false positives from static analysis
↳ Test everything: injection attacks, access control, business logic flaws
The best part?
You don't need to be a security expert. Strix includes a complete hacker toolkit - HTTP proxy, browser automation, and Python runtime for exploit development.
It's like having a security team that works at the speed of your CI/CD pipeline.
The best part is that the tool runs locally in Docker containers, so your code never leaves your environment.
Getting started is simple:
- pipx install strix-agent
- Point it at your codebase (app, repo, or directory)
Everything is 100% open-source!
I've shared link to the GitHub repo in the replies!
ₛₐGₑ retweeted
All IDOR thread✨
hackerone.com/reports/725569 hackerone.com/reports/544329 hackerone.com/reports/439729 hackerone.com/reports/661978
hackerone.com/reports/723118 hackerone.com/reports/751577 hackerone.com/reports/788375 hackerone.com/reports/258260 hackerone.com/reports/547663 hackerone.com/reports/587687
#infosec #cybersec
ₛₐGₑ retweeted
A long time ago, i was using (Frogy Recon Tool) and the results were more than amazing
now its back as 2.0 and now i like it so much
github.com/iamthefrogy/frogy…
by the amazing @iamthefrogy
Just want to share here if someone wants to check it
#bugbountytips #bugbountytip
🔥Best IDOR Checklist
✅ Join Telegram For More Content: t.me/brutsecurity
#infosec #cybersec #bugbountytips #BugBounty
ₛₐGₑ retweeted
“🎯 Secret ChatGPT Prompts That 10x My Bug Bounty Success Rate ⚡” by Qasim Mahmood Khalid
#bugbounty #infosec #hacking systemweakness.com/secret-ch…
I have released the first half of "Binary Exploitation 101", a beginner-friendly guide to binary exploitation. You can learn from classic buffer overflow to ret2dlresolve through CTF-like challenges. I am working on the second half now. Stay tuned🔥
r1ru.github.io/categories/bi…
ₛₐGₑ retweeted
Built a JS secrets hunter for my testing workflow 🔍 Nothing new - just a more structured version of existing JS recon tools:
✅ Auto discovery
✅ 40+ patterns
✅ Multi-threaded
✅ Clean output
github.com/Mah3Sec/JSHawk
#bugbountytips #infosec #CyberSecurity #PenTest
ₛₐGₑ retweeted
New Executive Offense Newsletter - Building AI Hackbots, Hard-Earned Lessons Pt 1
(and course giveaway)
executiveoffense.beehiiv.com…
Giveaway: Retweet this post and be entered to win a seat in Q4s courses! ("Red Blue Purple AI" or "Attacking AI")
Three winners will be chosen next Friday!
ₛₐGₑ retweeted
Microsoft is Offering FREE Azure 2025 Certification Courses!
No Fee, Completely Free
These 20 Courses Includes Video Tutorials, Hand's on Labs and Notes.
Don't miss these courses if you want to make your career in 2025:
ₛₐGₑ retweeted
Happy to share my latest project—a CTF challenge that brings together web and network security! 🔒💻
This hands-on challenge is now publicly available for the community to explore and solve.
💾GitHub Repo: github.com/PMMALI2000/Netsqu…
📖 Write-up: infosecwriteups.com/a-step-b…
ₛₐGₑ retweeted
🔥Quick NextJS Website Recon Tip by renniepak
A quick way to find "all" paths for Next.js websites:
👇DevTools->Console
console.log(__BUILD_MANIFEST.sortedPages)
javascript:console.log(__BUILD_MANIFEST.sortedPages.join('\n'));
🧾 Source - Linkedin
