11364
• Articles: @officercia • Blog: officercia.mirror.xyz • X: x.com/officer_cia
+ 1 awesome crypto news ranking solution, made by charliemktplace!
Please like & RT!
• x.com/officer_cia/status/1820188337270911430?1
#finance #offtopic
We are not living in the most calm era... But how do you know exactly where it is "hot" right now?
We can estimate where military activity is now taking place thanks to this service. Please use this service responsibly and for civilian purposes only. Stay safe!
• x.com/officer_cia/status/1819938782352740677?1
#security #opsec #osint
GM frens! 🌞
If you enjoyed yesterday's read 👆 then you're going to love what we have in store for you on our Discord 🚀
Be the first to get all the latest Glider news, Remedy updates, and more. Plus, you'll have a direct line to ask all your questions and learn some insights 👀
See you there 🫡
It’s influenced by codeQL, Nuclei, on-chain SemGrep and it works with deployed smart contracts. Although, we deal with source code as it offers you more information in contrast to bytecode!
It also already led to a critical bug disclosure to Nouns DAO and a $30k bounty reward!
Please apply: x.com/officer_cia/status/1818684266454093854?1
#audit #web3 #security
🧢 You discovered a vulnerability two years ago and remember a part of it, but you see no way of utilizing it, let alone imagine you can earn $30,000 from it today! Well, you CAN - here's how 👇
Hexens' Head of Audits, @0xkasper, one of the first Glider users, has already discovered multiple critical vulnerabilities across the Ethereum ecosystem. We can now share one of those with you publicly.
During bug bounty research two years ago, Kasper caught a quite complex attack vector in a delegation process of one of the governance contracts. It could have been exploited by burning a delegator's voting power or blocking the token from undelegating, voting, or transferring.
After he designed and executed a query, Glider exposed the replication of the bug’s logic in the @NounsDAO governance. The team was already aware of the issue, although at first glance it seemed unexploitable.
After a more thorough research, the engineering team agreed it wasn’t just a self-harm bug and announced a mitigation plan to NOUNS holders.
Resolving the case took just three days, and Kasper received a bounty of $30,000. You could be next 🚀
Hey folks! As you know we at Hexens are developing post-deployment security tooling for security researchers (everything is free to use).
With glide.r.xyz ’s closed beta we are approaching two dozens of criticals found & addressed already.
And that’s just Ethereum mainnet with just ~15 users =]
More chains to be integrated soon ❤️
We plan to open the applications for Glider Eth Mainnet more broadly in the coming days, but if you'd like to apply now, just fill in this form: https://exty84bdiei.typeform.com/glidermainnet
More technical details:
https://vxtwitter.com/xyz_remedy/status/1817868525815427412?s=46&t=nNz7iZXXX0AEnEo41VKdPg
Docs: https://glide.gitbook.io/main
Feel free to ask questions <3
And some evil people are circulating malicious tales about me. It's funny to read all of that. They believe I'm an anti-Semite, a Jew, a hacker, a fed, a secret billionaire... You are all wrong, and I don't have the stamina to refute it all. This is complete nonsense.
Me just being me. Trust me, if I had done everything listed above, I would have been in a crazy asylum a long time ago. Period.
#offtopic
Please like & RT!
• x.com/officer_cia/status/1816890334808285628?1
#audit #web3
officercia.mirror.xyz/z7UhL4a_R5L0iPiAufCx7OXC24-onnNg92RzcwPP1VQ
Читать полностью…
I'll respond to any inquiries straight away: I will not be creating any additional chat rooms, and Guild 3.0 chat has been deleted. This response is for those who write to me saying, "Hey, you banned me in chat." I simply erased the chat, not banning anyone. It might not appear immediately because of a Telegram error.
P.S.
I'm surprised people think I banned them. Calm down your ego.
#offtopic
Friends, as you are aware, I have been ill for a month and am unable to work, which has negatively impacted my situation.
I’ll get back to work and will answer everyone in DMs once I’m 100% healthy. Hope you understand.
• x.com/officer_cia/status/1815050243206979868?s=46
Date: 2024-07-16
Bug bounty program was added to Remedy:
Site Sentry now monitors an additional 60 domains connected to Square Space (shared by 0xngmi).
Site Sentry successfully detected the DNS takeover earlier today, hoping this tool helps in identifying any future victims.
This is a temporary measure, some domains may be removed as the situation settles.
Find the list of monitored domains here: https://gist.github.com/0xKoda/07c07e25a0be33aadfb0578d79af6f36
Join Site Sentry: /channel/+lP4Tn49176FmMzBk
EthCC is in full swing, and we're soo excited to meet you all 🚀
Here's what we have going on today 👇
Our Head of Audits, @0xkasper, will be sharing valuable insights at SecrueFi on Glider.
He will discuss how he's leveraged the technology to find multiple crits, providing you with knowledge that can be applied in your own work.
Come say hi 👋
We're going to EthCC next week and we'd love to meet as many of you as we can ✨
Come party with us and our friends at 1inch and Union and get ready to to dive deep into the degen rabbit hole at the most legendary event of ETHCC 7 week – Degen Night Market! We’re taking over the Gare Maritime Food Market and turning it into a Crypto Wonderland where food, fun, and fantastic networking collide.
The capacity is limited so RSVP quick!
🧢We've been busy making R.xyz and Glider better, here's what we've been up to 👇
🔒 You can now terminate sessions on other devices for enhanced security
🪲 Want to share your success with friends? You can now do that with the ability to share your bug report success on X directly from R.xyz with one tap 👀
🛡️ We have integrated pre-KYC in account settings for faster payouts 🙌
📚 Easy access to Bug Bounty Guidelines & Glider Docs in the Resources tab
🆕 New Glider's onboarding flow for a structured start
🖥️ We have now resized Glider's code editor for greater comfort
Let us know how you like the new changes 🚀 If you have suggestions on how we can improve further or think of a feature that you'd like to have - join the Community and share them in the Feature Requests channel 💊
Thank you fam! ❤️
• x.com/officer_cia/status/1819534178892890194?1
#offtopic
🧢 Here are some of the Bug Bounty programs on R that you should absolutely try your hand at 👇
JoJo Exchange - $30,000
Metis - $200,000
BOB - $250,000
1inch - $500,000
And more 👀
Sign up on R.xyz to start hunting and join our Discord to learn about new programs 💊
Just an amazing (!!!) OpSec app for your Nintendo Switch: x.com/officer_cia/status/1818441227219444112
#opsec
Happy Monday everyone! We come with some Glider news 🧢
Yet another critical vulnerability was discovered by 0xKasper using Glider 🚀 The vulnerability was discovered on NounsDao
Check out the vulnerability disclosure here 👀
Follow my side-channel!
• t.me/officercia
No spam, no ads, no noise.
#offtopic #blog
I haven't known what to write on my personal blog lately...I must be having a creative crisis. Maybe that’s because I still haven't fully recovered from my illness.
• x.com/officer_cia/status/1817739894090785270
#offtopic
GM fam 🚀
If you have any questions about Glider, drop them in the comments and we’ll answer them 💬
You can also join our Discord for insights, discussions and Glider related resources 🫡
Please like & RT!
• x.com/officer_cia/status/1762826617624187257
#telegram
⚡ Calling all Web3 Security firms ⚡
Let us join forces and together fortify our blockchain ecosystems!
We're excited to offer Glider Ethereum mainnet access to all our Web3 cybersecurity comrades. Time to level up our defense game!
Start finding bugs at scale now👉🏼 https://exty84bdiei.typeform.com/gliderpartners
The DeFi Encyclopedia
Link: mirror.xyz/leosagan.eth/eF4m7u3DlWhqvUqz6DiZ_YevcWViCWPxO-JYfsJiulM
#defi #web3
Never Miss a Bug Bounty Program again 🪲
Here is where you can get your latest news and updates on Remedy Bug Bounty Programs (aside from the most obvious - R.xyz) 🧢
🧬 Remedy Discord
🦉 Web3 Bug Bounty Alerts Telegram Group
🛸 Bug Bounty Radar (bbradar.io)
🔮 Bounty Vision (bounty.vision)
Happy Hunting 💊
Android malware (.apk) can be spread through a fake video by manipulating the telegram file extension. 0x6rss (X App) showed how it is done in the video below!
• x.com/officer_cia/status/1811176228918817226
#security #OpSec
Friends, I haven't posted in a while since I've been quite sick.
I am quite concerned about that. But I'm hoping to get better soon so I can continue to write and work! Stay safe!
Move your funds on all chains ASAP if you created your wallets using CoinStats!
• x.com/officer_cia/status/1804613273033338968
#security #alert