Vinay⚡ @hack_n_code
Tester of pens, AI prompt connoisseur. Terrible Speller. All thoughts are my own 💭 United States Joined April 2013-
Tweets1K
-
Followers202
-
Following2K
-
Likes4K
Workflows are the biggest upgrade to Claude Code’s capabilities since skills and subagents. I dove deep into it with @sidbid to figure out best practices, examples and more. I’m particularly excited about the non-technical tasks it enables for Claude Code.
Anthropic valuation: $965 Billion Walmart valuation: $926 Billion Anthropic revenue: $47 Billion Walmart revenue: $681 Billion
‼️🚨 BREAKING: Meta's AI feature let attackers hijack Instagram accounts for days with nothing but a username. It was being A/B tested on a slice of users, and if you were in the test, you couldn't turn it off. Among the casualties: the official Obama White House account. The method: get on a VPN near the target's region, ask the Meta AI support agent to send a verification code to any email you control, relay that code back to the agent, and it hands over a password reset link. Without ID or human review. From there, the account is yours. The flaw lived in the AI's logic layer, which acted on recovery requests with no real identity checks. One researcher compared it to the Roblox AI assistant exploit from days earlier, where you needed a target's billing info. Instagram was easier: the username and a regional VPN were enough and victims reported sessions revoked and passwords changed with no email, text, or push alert at all. By the time it went public, the method was common knowledge in blackhat Telegram circles and had been used to allegedly hijack 100+ high-value accounts. Accounts hit: - obamawhitehouse (the archived official Obama White House account, ~2.4M followers. Hackers posted an AI-generated image captioned "The White House is under Shiites' control," plus cryptic anti-Trump and pro-Iranian Stories. Meta confirmed the hack and scrubbed it. - Premium short handles like hey and jowo, worth over $1M combined, stolen and flipped on Telegram. - albert (owned by Albert Renshaw), whose owner publicly reported being locked out and unable to reach Meta support. Meta has since patched it. There was no public acknowledgment.
Update: ended the CTF with 30/35 challenges solved. I don't know what challenges I did, nor did I ever manually download any challenge files or open them on my computer. The 5 challenges it didn't solve: an AI challenge with 0 solves, a forensics challenge where it messed up on the OCR and interpreted the flag wrongly (but it produced the right images), and 3 challenges where I ran out of Claude Max and Codex Pro usage limits. I have mixed feelings about this. On one hand, what's the point of CTFs anymore if it becomes an AI token-maxing pay-to-win game? On the other hand, I never really cared tooooo much about the competitive element of CTFs - the odds were always skewed anyway with variable team sizes at DEF CON. I think CTFs can remain a valuable place for people curious about the scene to learn and have genuine fun solving challenges. But online CTFs should definitely not be treated as a competitive sport anymore. I've already seen so many cracked CTF players leave the scene because of this... There is probably also an argument to be made that if most of VR work today is babysitting Claude, then maybe it's fine that CTFs mimic real-world work? But the thing that attracted many of my friends and me to CTF was the fact that it was accessible to anyone. Will $200 subscriptions be the new barrier to entry?
It's been almost a year since I last played CTF, so I'm currently slopmaxxing GreyCTF @NUSGreyhats to seehow far I can get. This CTF solver harness was built entirely from my phone using Happy Coder and I'm now just controlling it from my phone as well using the dashboard it
New in Claude Code (research preview): dynamic workflows. Claude writes an orchestration script on the fly, then spins up a large fleet of coordinated subagents in parallel to take on your most complex tasks. Use the word "workflow" in a prompt to get started.
Me using Claude Opus 4.8 to rename a file
Found a cool bug at Meta. From misconfigured Grafana instance to R/W access on 507 private Meta repositories. Wrote up the full chain here: sectricity.com/blog/misconfig… $157k bounty awarded by @metabugbounty
[1/3] It's common to get a ParcelFileDescriptor pointing to a directory through an Android ContentProvider. But can you actually turn that into a directory listing?
While researching "Can AI do novel research? Meet the HTTP Terminator" I logged the discovery journey behind every breakthrough. My intention was just to flag fully autonomous vs HITL discoveries, but it revealed new facets of how/why my research methodology actually works!
Great stuff here from Bug Bounty Maturity Framework: bugbountymaturity.com/research/ai-is…
@SocketSecurity Please stop, I'm running out room.
He’s on time for a big exec presentation. Start the Zoom software update.
New "Critical" nginx RCE requires LFI as prereq and has 0 practical exploitation odds - CVEs & CVSS are the biggest slop in security and AI just keeps accelerating it
GitHub sells "Advanced Security." Got hacked via VS Code extension. Peak irony
If you have ANY private repos with plain text secrets or sensitive documents/architectures, immediately rotate your secrets
We are investigating unauthorized access to GitHub’s internal repositories. While we currently have no evidence of impact to customer information stored outside of GitHub’s internal repositories (such as our customers’ enterprises, organizations, and repositories), we are closely
Anthropic’s new valuation after Andrej Karpathy joined the AI startup as an IC
Personal update: I've joined Anthropic. I think the next few years at the frontier of LLMs will be especially formative. I am very excited to join the team here and get back to R&D. I remain deeply passionate about education and plan to resume my work on it in time.
1/ Today at #GoogleIO, we’re releasing Gemini 3.5, our latest family of models combining frontier intelligence with action. We’re starting by releasing 3.5 Flash, which is built to help you execute complex, long-horizon agentic workflows. Gemini 3.5 Flash is our strongest model for coding and agent yet.It outscores 3.1 Pro on agentic and coding benchmarks like Terminal-Bench and MCP Atlas, while running 4x faster than other frontier models. Used in Google Antigravity, 3.5 Flash is even further optimized to be up to 12x faster. It’s a powerful engine to deploy sub-agents that collaborate, run high-frequency iterative loops, and solve real-world problems at scale. Some highlights we’re excited about 🔽
This is huge !! Congrats @AnthropicAI
Personal update: I've joined Anthropic. I think the next few years at the frontier of LLMs will be especially formative. I am very excited to join the team here and get back to R&D. I remain deeply passionate about education and plan to resume my work on it in time.
🎯 Bug Bounty Tip: Hunting on targets running Jira, Confluence, Bitbucket, Jenkins, Solr, or Nexus? Bookmark this PoC goldmine 👇 github.com/shadowsock5/Poc CVEs + payloads ready to test. Save hours of recon. #bugbounty #infosec #cybersecurity #bugbountytips
Claude: “this project will take 2 months to complete” Me:
cammy got jammy @RandyPedersen11
15 Followers 1K Following sleepy thoughts, bright eyes 💫 always follow back
Wenxiang Qian @qian_wenxiang
216 Followers 177 Following AI + Software Security Architect | Blackhat USA/DEFCON/HITB Speaker My former account @leonwxqian is suspended by twitter, create this instead.
Zhixin Tu @tu_zhixin
29 Followers 35 Following
Raju Penmatsa @iam_rajuptvs
150 Followers 393 Following ML Research Engineer @ Hitachi R&D || life long learner || ΠΑΘΕΙ ΜΑΘΟΣ
Firawkug @Firawkug524729
19 Followers 259 Following
Gwynne Shotwell @Gwynne67321
0 Followers 38 Following
PulseMatchingRd🟡 @HeartbeatSyncin
11 Followers 210 Following Base maxi through and through – @coinbase’s L2 is reshaping decentralized finance
G 𝓇 a c e @Dream_Grace_
24 Followers 2K Following Blonde daddy's girl. Gap year, parties, cock deep until morning. FREE LINK if you're curious. ⬇️ @GraceBlurd
DoloresLucia @x05aw1Y1kodeW5b
13 Followers 1K Following
Morgan Crooks @CrooksMorg65816
37 Followers 2K Following
Bloliet @Bloliet677
33 Followers 1K Following
Vend Bug Bounty @VendBugBounty
268 Followers 4 Following
🇦🇺Kylie Ochoa �... @MissAnonFatale
5K Followers 3K Following I have “the most famous breasts in FBI Cybercrime / Anonymous / Hacking history” 🤣 Mum of 2 boys | Single, not married | Darknet Diaries Ep. 63
🍩☕️ @Eplijof328314
11 Followers 212 Following
Eaqierqor @Eaqierqor19984
22 Followers 936 Following
Ellaah @EllaaRamaa
90 Followers 2K Following Praise me, break me. I'm your desperate bartender slut stuck in Mississippi. Check my FREE page
Voomie @Voomie1602
29 Followers 1K Following
Hershel Cartwright @HershelCar4329
0 Followers 34 Following Join us for a free trial of 2 selected stock targets, only Europe friends with stock accounts are welcome
PenelopeSophia @9tVflwzeXB098
65 Followers 3K Following
Thewsnu @ThewsnuCMvK
108 Followers 2K Following
Loasorth @LoasorthfKn
19 Followers 995 Following
AISecHub @AISecHub
9K Followers 7K Following 🚀 AISecHub | AI & Cybersecurity | Securing AI systems, and sharing insights on emerging challenges | https://t.co/YeYtqq5tJC
IT GRC Forum @ITGRC
24K Followers 22K Following Educational Programs on IT, Governance, Risk Management, & Compliance (GRC)
FeliciaJohnson @manareru1988
16 Followers 178 Following We invite you to come here to find your soulmate. Please click on our blind date club WhatsApp link https://t.co/uBZPBUMfWs
Resodearth @Resodearthr2M8
55 Followers 5K Following
Smeigh @SmeigheEy3dsD
39 Followers 4K Following
Smasiot @Smasiot_41h
76 Followers 7K Following
Georgette @f02zZJJkKNvsVy
43 Followers 4K Following
IrisRose @wwQ601u24v6OU
68 Followers 7K Following
Aliyu Yakubu @Aliyuworldwide
487 Followers 6K Following
Teaushors @TeaushorsVF_
29 Followers 2K Following
Sitir @SitirCV0LK
131 Followers 7K Following
Dzmitry Smaliak @haxxm0nkey
96 Followers 990 Following A monkey hitting keys at random on a keyboard for an infinite amount of time will almost surely write a 0-day exploit for any given technology.
ClaraArthur @g9Y6c2o4fms5lBh
66 Followers 7K Following
Lovetogrow @Lovetogrow57434
124 Followers 5K Following
Make money easily @76yP1DKh5dDJT0
15 Followers 547 Following MEXC focuses on financial management, stocks, cryptocurrencies, digital assets and investments. Currently, new users can get free dollars when they sign up.
Carole @wagoner62carole
167 Followers 3K Following
Slimify.me @slimify_me
91 Followers 442 Following https://t.co/5MLbT8SFml provides a seamless jpg compression, png compression experience. Simply drag and drop your images, and download the optimized versions with ease.
PEPE BAHN @thepepebahn
28 Followers 233 Following 🤖 AI-Driven Marketing Asset Creator 🚀 | Transforming Businesses with AI Magic 🌟 | Let's Turbocharge Your Content! 📈
john smith @HassaneZemzami
20 Followers 1K Following
🚀binare.io - IoT p... @binareio
2K Followers 4K Following Secure your IoT with @binareio - Advanced technology & real-time monitoring protect against devastating vulnerabilities. Safeguard your connected world!
Cyberkryption @cyberkryption
1K Followers 3K Following CERT/CSIRT - Head of Cyber Defence Tweets are my own and do not represent my employer.🇯🇪
Demetri @AsiaLens
73K Followers 19K Following US-China correspondent at FT・Chinese & Japanese speaker・Ex Tokyo, Hong Kong, Beijing & Dublin・Photographer at https://t.co/S6u3SctM1M
gr3pme @gr3pme
3K Followers 652 Following Cohost @ctbbpodcast || Bug Bounty Hunter || hacker - OSWE, OSCP
bsysop @bsysop
6K Followers 770 Following TOP10 @bugcrowd, TOP7 P1 Warrior 🚀 H1 AWC Champions 2024 and 2025 https://t.co/4PRRx7QQaH 🤟🏻 https://t.co/eehzMtCJO4
sw33tLie @sw33tLie
10K Followers 945 Following Web application hacker, 25yo. Top 30 @ https://t.co/wX0yr85Tzk https://t.co/ZI7a8oJJcQ https://t.co/LGYK7tMOGo
Secorizon @secorizon
808 Followers 93 Following Home of Responder, Pcredz, SecorizonAI, etc Red team ops, offensive pentests. Back then, your 0days were your certs.
godiego @_godiego__
7K Followers 1K Following Security researcher and bug bounty hunter. https://t.co/ybndhjqZ5z | https://t.co/b1SmtBMqCw | https://t.co/Vv5K0oN4bQ | 🇪🇸
Juliano Rizzo @julianor
9K Followers 2K Following Crypto. Security. BEAST/CRIME SSL/TLS, Padding Oracle Attacks. CEO & Founder @coinspect
Nous Research @NousResearch
206K Followers 25 Following World-class open source AI https://t.co/vrD0aDJeto
𝕡𝕨𝕟𝕚𝕖 @0day_ninja
2K Followers 676 Following Building things, Breaking things Day-0 to Zero-Day marathon (believe it) my dm here is useless so chat me on my alt: @Aegis_122
Xeno Kovah @XenoKovah
13K Followers 74 Following Interested in reverse engineering, firmware, bluetooth, trusted computing, and training. Founder of OpenSecurityTraining2 https://t.co/slK2fsMRwU
Jeremy Howard @jeremyphoward
314K Followers 7K Following 🇦🇺 Co-founder: @AnswerDotAI/@FastDotAI ; Prev: Professor@UQ; @kaggle founding president; founder @fastmail/@enlitic/… https://t.co/16UBFTX7mo
Demis Hassabis @demishassabis
1.1M Followers 172 Following Nobel Laureate. Co-Founder & CEO @GoogleDeepMind - working on AGI. Solving disease @IsomorphicLabs. Trying to understand the fundamental nature of reality.
Lilian Weng @lilianweng
256K Followers 178 Following Co-founder of Thinking Machines Lab @thinkymachines; Ex-VP, AI Safety & robotics, applied research @OpenAI; Author of Lil'Log
Andrew Ng @AndrewYNg
1.6M Followers 1K Following Co-Founder of Coursera; Stanford CS adjunct faculty. Former head of Baidu AI Group/Google Brain. #ai #machinelearning, #deeplearning #MOOCs
François Chollet @fchollet
693K Followers 826 Following Co-founder @ndea. Co-founder @arcprize. Creator of Keras and ARC-AGI. Author of 'Deep Learning with Python'.
Yann LeCun @ylecun
1.2M Followers 788 Following Professor at NYU & Executive Chairman at AMI Labs. Ex-Chief AI Scientist at Meta. Researcher in AI, Machine Learning, Robotics, etc. ACM Turing Award Laureate.
VECERT Analyzer @VECERTRadar
38K Followers 51 Following ❮ Cybersecurity & CTI ❯ We are a cybersecurity company dedicated to critical analysis and adversary research.
Hackmanac @H4ckmanac
126K Followers 371 Following We track verified, real-world cyber attacks to help you develop effective Cybersecurity strategies. Try https://t.co/eB7qgxKFAa, your Strategic Threat Intelligence platform
Socket @SocketSecurity
21K Followers 5K Following Socket is the #1 software supply chain security platform. Next-gen SCA + SBOM + 0-day prevention. LOVED BY DEVELOPERS. 👀 @npm_malware
watchTowr @watchtowrcyber
12K Followers 12 Following watchTowr enables organizations to get ahead of in-the-wild exploitation with Preemptive Exposure Management technology.
leo 🐾 @synthwavedd
13K Followers 3K Following tech, ai & politics nerd || got info you think i'd be interested in? let's talk! [email protected]
Cloudflare @Cloudflare
285K Followers 5K Following Cloudflare is the world’s leading #ConnectivityCloud, and we have our eyes set on an ambitious goal — to help build a #BetterInternet.
DANΞ @cryps1s
16K Followers 488 Following CISO @OpenAI | Ex-CISO @PalantirTech | Occasional Shitposter | 🇺🇸 All views are my own, not my employer. Duh. (Tweets == 30d retention)
Lukasz Olejnik @lukOlejnik
31K Followers 267 Following Security & Privacy. Data Protection. Research & Development. Engineering. Analyst. Policy. W3C. Consultant. Author. [email protected] Ph.D, LL.M. @warstudies
Muhammad Waseem @wgujjer11
4K Followers 1K Following Cybersecurity Analyst | Ethical Hacker | Secure @nasa | #CyberSecurity #
Rami McCarthy @ramimacisabird
5K Followers 903 Following security, for the internet, at @wiz_io! opinionated about security. 🇺🇸 in 🇸🇪 (he/him)
Adnan Khan @adnanthekhan
4K Followers 253 Following Security Engineer | Part Time Security Researcher | Build Pipeline Menace | All thoughts and opinions are my own | 🍉
pspaul @pspaul95
1K Followers 858 Following source code connoisseur @Sonar_Research | CTF @FluxFingers | @[email protected]
Moritz Sanft @stdoutput
1K Followers 780 Following security software engineer, ctf @fluxfingers @[email protected]
Peter Girnus 🦅 @gothburz
191K Followers 591 Following The Cyber Populist | Hacker. Writer. Heretic. | Reverse engineering narratives, systems, and power. Holding the pen.
Niels Provos @NielsProvos
4K Followers 547 Following Security/Privacy (M-F). Bladesmithing/Videographing (S-S). Producing music (Activ8te). My tweets are my own. mastodon: @[email protected]
Thariq @trq212
271K Followers 2K Following Claude Code @anthropicai. prev YC W20, @southpkcommons, @medialab
Zhixin Tu @tu_zhixin
29 Followers 35 Following
Wenxiang Qian @qian_wenxiang
216 Followers 177 Following AI + Software Security Architect | Blackhat USA/DEFCON/HITB Speaker My former account @leonwxqian is suspended by twitter, create this instead.
Pavol Lupták @wilderko
17K Followers 2K Following Cryptoanarchist, voluntaryist, perpetual traveler focused on technology and society hacking. @nethemba @liberatravel @instituteCrypto
Calif @calif_io
5K Followers 30 Following We're https://t.co/KTEDnC2VUV. Join us to make the Internet safer for your mum and everyone else: https://t.co/eUFMLkW9t2.
Dawid Moczadlo @kannthu1
5K Followers 429 Following Founder of Vidoc, ex bug bounty hunter, ex CTF player with P4, climbing freak
Raju Penmatsa @iam_rajuptvs
150 Followers 393 Following ML Research Engineer @ Hitachi R&D || life long learner || ΠΑΘΕΙ ΜΑΘΟΣ
Jack Lindsey @Jack_W_Lindsey
18K Followers 251 Following Neuroscience of AI brains @AnthropicAI. Previously neuroscience of real brains @cu_neurotheory.
Ziad Salah @Zierax_x
1K Followers 562 Following I make systems that can't hallucinate, and it's ×100,000 faster, even more accurate https://t.co/S592ZvP1rA
Neo by ProjectDiscove... @neo_ai_engineer
532 Followers 3 Following AI security engineer that plans, hunts, and investigates - giving every security team the depth of a senior engineer at machine speed.
Silky @S1lky_1337
1K Followers 450 Following German IT-Security Researcher | 𝐎𝐒𝐄𝐏 | 𝐎𝐒𝐂𝐏 | 𝐂𝐑𝐓𝐏 | Pentester | Freetime Malware Dev
Worty @_Worty
3K Followers 572 Following Organizer of @HeroCTF || ctf w/ @FlatNetworkOrg || TeamFR 2021, 2022 & 2025 🇫🇷 || Breaking stuff @ Depi
Jayesh Madnani @Jayesh25
14K Followers 502 Following Researcher in charge @ Ethical InfoSec Services | HackerOne Top 10 | https://t.co/JSX03Wv1vl
Toan Pham @__suto
3K Followers 849 Following Cybersec Enthusiast. Qrious Secure (@qriousec) & VnSecurity (@vnsec).
Yunus Emre Öztaş @ynsmroztas
7K Followers 176 Following #BugBounty #Hunter #Python #Java #Dev #CyberSecurity #Android
Dwarkesh Patel @dwarkesh_sp
237K Followers 1K Following Host of @dwarkeshpodcast https://t.co/3SXlu7fy6N https://t.co/4DPAxODFYi https://t.co/hQfIWdM1UnTrends for United States
You might like
