Vinod Tiwari @securient
Web3 Security, solutions architect, bug hunter, DevSecOps. blog.securient.io California Joined March 2010-
Tweets6K
-
Followers570
-
Following988
-
Likes3K
Here is my most recent project: sci-bot.ru Unlike Sci-Hub and Sci-Net, where I have written all the code manually be hand, this one is pure AI generated - I decided to do this as a kind of experiment. LOVE the result! AI is 50x speedup in code writing, however creating the project is still a lot of work (human input is still needed for architectural decisions, debugging complex functionality and precise instructions) Sci-Bot is connected to Sci-Hub database so it can read research articles and generate answers grounded in science. To pay for generated tokens, Sci-Bot supports two funding models: the first one is standard pay-as-your-go and the second one is legacy from Sci-Hub: it is donation based. Anyone can donate: from these donations, the project will automatically calculate budget for upcoming month, and derive how much AI-generated answers it can serve to users for free.
IDEViewer is the exact solution GitHub needed to solve their extension visibility problem on endpoints. It has single pane of glass view of all IDEs, IDE extensions, its permissions, and extension dependencies. Check it out at github.com/securient/idev… @AikidoSecurity @TheHackersNews @wiz_io @msftsecresponse @msftsecurity
@github Check out github.com/securient/idev…. This tool could have prevented the extension visibility problem and give you a single pane of glass view on who all have the same extension installed on their machines.
@kfirgollan @github @grok I built github.com/securient/idev… to solve the extension visibility and permission problem on endpoints. There is a portal option where you can find who all have installed the particular extension.
you never think this will happen to you, but this happened to me today. a DPRK actor posed as somebody i previously worked with at the arbitrum foundation to have a catchup call. they reached out via telegram, in a channel where we had an existing messaging history. the DPRK actor sent me what looked to be a legitimate teams link, but when i opened it, it said a software update was necessary, which entailed downloading and running a malicious file. in the group call, there was video of everybody on the call, including the person i had previously worked with. stay vigilant and be safe! don’t be afraid to send out your own video conferencing links if you see something suspicious.
🚨 WARNING (AGAIN) DPRK threat actors are still rekting way too many of you via their fake Zoom / fake Teams meets. They're taking over your Telegrams -> using them to rekt all your friends. They've stolen over $300m via this method already. Read this. Stop the cycle. 🙏
@AIHighlight just? Does every tweet need a clickbait title?
🚨 BREAKING: Wiz Research discovered Remote Code Execution on GitHub.com with a single git push The flaw in @github allowed unauthorized access to millions of repositories belonging to other users and organizations 🤯
Solana traders showing up to buy ETH tokens
@DEFCONCCVillage are you guys returning to Defcon 34?
Sorry to say, Lazarus Group is the top hardworking smart contract security auditor in the world. Other auditors charge $50k and miss critical vulnerabilities. These guys work for free and never leave any money from the contract. Their resume: • Bybit: $1.5 Billion • Drift: $285 Million • WazirX: $235 Million • KelpDAO: $292 Million • DMM Bitcoin: $308 Million • Axie Infinity (Ronin): $625 Million And many others.
"so you staked your ETH on the Ethereum blockchain to earn yield?" "yes, Dave" "except you didn't want your capital to be locked up so you actually staked it with a liquid staking protocol called Lido?" "that's correct, Dave" "and Lido gave you a liquid staking receipt token called stETH in return?" "yes, Dave" "and then you didn't think that was enough, so you juiced the yield even further by depositing your stETH receipt tokens into a restaking protocol called Eigenlayer?" "you are correct, Dave" "and now you didn't want to lock up your capital, so you actually restaked with a liquid restaking protocol called KelpDAO who provided you with a liquid restaking receipt token called rsETH?" "you got it, Dave" "and then that was surely not enough juice, so you then deposited your rsETH tokens into a lending protocol called AAVE so that you could open a leveraged looping position that borrows ETH against the rsETH collateral and restakes the ETH into rsETH which is then deposited as collateral, except it turns out rsETH used a cross-chain bridge called LayerZero whose security is held together by a 1/1 toothpick, which was obviously hacked by north koreans causing rsETH to become undercollateralized and now these looping positions are stuck and unprofitable, and everyone is pointing fingers at each other, and also DeFi is a very serious industry" "you are 100% correct, dave" jfc.
GitGuardian wrote up the original BSides talk here: blog.gitguardian.com/bsides-sf-2026/ If you're on a security team trying to get a handle on what your devs actually have installed — give it a spin and open issues. Feedback welcome.
Open-sourcing IDEViewer today — the tool behind my BSidesSF 2026 talk on hunting malicious IDE extensions. A single Go binary that scans developer workstations for the supply-chain risk your EDR and SCA can't see. github.com/securient/idev… 🧵
CVE correlation via OSV.dev. SARIF output for GitHub Code Scanning. Real-time fsnotify watchers catch extension installs within 30 seconds. Optional self-hosted portal for fleet visibility. MDM playbooks for JAMF/Mosyle/Kandji. Apache 2.0.
Risk model for extensions: Critical / High / Medium / Low based on activation events, capabilities, and contributes. AI configs get their own score — wildcard Bash(*), plaintext keys, autonomous exec, insecure transports all surface as Critical/High.
What it scans on every dev machine: • IDE extensions across 7+ IDEs (VS Code, Cursor, JetBrains family, VSCodium, Sublime, Vim, Xcode) • Packages — incl. deps bundled inside extensions (invisible to SCA) • AI tool + MCP configs (Claude Code, Cursor, OpenClaw) • Plaintext secrets in .env + git history • Tamper + --no-verify bypass
Thanks for the kind words @PatrickAlphaC , great having you in our council. "I think this is a very valuable role, and it’s something that the Story Protocol does very well. Their security council is often pinged for advice; we discuss industry hacks and open dialogue on how changes in the security landscape should drive action on the Story team. In this scenario, I think it’s important to separate this from a “Security Council” that has defined on-chain roles they often act on, vs. “Security Advisors” who advise on actions." Go read the full article!
everyone’s impressed that deloitte is in physical AI now. i’m more interested in why nvidia needs them. distribution is the hard part. nvidia has the stack. they need someone who can actually get it into 500 enterprise clients without it dying in procurement. theaiinsider.tech/2026/03/02/del…
Story v1.6.1 Aeneid Testnet Required Upgrade This release introduces Distributed Key Generation (DKG) and Confidential Data Rails (CDR) on Aeneid Testnet. This lays the foundation for on-chain confidential data management. story.foundation/blog/confident… Upgrade triggers at block height 16332000 (Apr 1, 2026). Only Aeneid nodes need upgrade. Read More ↴
Shashank | CredShield... @cyberboyIndia
11K Followers 2K Following Co-Founder @credshields | Building https://t.co/CQ9JKbhpmw Ex Security Analyst @Hacker0x01 Leading https://t.co/YnFOEI7b9p (Smart Contract Security Standards)
JS0N Haddix @Jhaddix
176K Followers 7K Following CEO, CISO, Trainer, Hacker, and Speaker. Cybersecurity + Hacking + AI + Sec Leadership @arcanuminfosec
bugcrowd @Bugcrowd
199K Followers 6K Following The leading provider of crowdsourced cybersecurity solutions purpose-built to secure the digitally connected world...Unleash Ingenuity™
Harsh Bothra @harshbothra_
43K Followers 756 Following Freelance Pentester & Consultant • Cobalt Core Lead & Pentester • Author • Speaker • Blogger • SecurityExplained • Project Bheem • Learn365 • Views are personal
Niv Levy 🇮🇱 @restr1ct3d
6K Followers 4K Following Penetration Testing Engineer / Bug Bounty Hunter / OSCP, OSWE, GCPN
Parth Malhotra @Parth_Malhotra
7K Followers 1K Following Hacking into your servers since 2012 :) Research @pdiscoveryio
SMK @MuraliKarthikS
124 Followers 587 Following In pursuit of better logic... WebDev | Cybersecurity
Ameliasoft ✨ @ivybleakk40_
16 Followers 100 Following a little shy a little bold only fun people stay
Tmawe Li @DRAGONFLAME1111
0 Followers 209 Following
perfect4sec @perfect4sec
745 Followers 5K Following DFIR | Threat Intelligence | Malware Analyst | Researcher | Cybersecurity Proactive Defense Team
levi @levi1234z
448 Followers 857 Following AI Engineer | Crypto Investor | Merging artificial intelligence with blockchain technology
Alex Moening @runnerr0
81 Followers 596 Following Sr. Solutions Architect building at the edge. Writing about AI agents, CDN architecture, and tech musings. (my opinions are my own) SF based.
Dimitris Papapetros @0xDimitris
222 Followers 427 Following Cyber Defense @PlayStation - Χρη σιγάν ή κρείσσονα σιγής λέγειν - all views and opinions expressed are my own @[email protected]
Wx D @WenxingDuan
65 Followers 145 Following Blockchain & Cryptography PhD Student at @HongKongPolyU|PGP 266E B5CF 44CC D0F2 2C73 0CD1 7500 A737 A8C1 1046
Kyans @xsaktian
887 Followers 1K Following Inner OG & Lead @StoryProtocol || Empowering @storyindonesia_ || メタビジョン Reposter digital
Harley Kimball @infinitelogins
7K Followers 1K Following Researcher Strategy & Live Hacking @ HackerOne | Community Cultivator | Bug Bounty Hunter | Co-Founder of @BugBountyDEFCON | Founder of Disclosed Newsletter.
Nock @0xNock
3K Followers 6K Following Events at @monad | Certified Conservation Steward, Producer of Far Off Sounds, Music Artist, etc
Andrew @SolAndrew_
83K Followers 62K Following 26 🇺🇸 🌐 Web3 Marketing & Advisor | +150 KOLs - DM for promos 📩 |@DeGodsNFT @WEEX_Official/ https://t.co/w3QqiaU4EC
Fleaikea @Fleaikea016037
57 Followers 4K Following
Rohit Soni @rohitsoni1209
8 Followers 77 Following 🇮🇳 | Product Security Engineer | eJPTv2 | ICCA | Offensive Security
Avix 🍁 @naysec_
534 Followers 530 Following I like questioning computers cuz they always tell the truth^
razornero.ip 𒀭 @Danzeronero
2K Followers 4K Following Im danzero. OG @storyprotocol , OG @aria_protocol , ambassador @gimiapp @yapper_so CPP discord : razornero_
Abra @abra_gmi
693 Followers 6K Following
chase chang @chasechang
4K Followers 1K Following ops @storyprotocol | 🇰🇷🇵🇦🇺🇸 🇸🇳 🇹🇭 | nfa and mostly gibberish
Lizzie jane.IP (❖,�... @Lizzie_jane7285
423 Followers 591 Following Story Protocol turns ideas into living IP where creativity is owned, programmable and empowered to travel freely across the on chain world
Buzzytalk Devhub : Fo... @BuzzytalkDevHub
2K Followers 3K Following Tips on coding, clean architecture, and software development. Code smarter. Build better. By @Buzzytalk
xanonxbt.IP ꧁IP꧂ @xanon_xbt
529 Followers 455 Following All in $IP | Future OG at @Storyprotocol | @Xanonxbt ALT 🤕
Eliezer Zboncak @EZboncak20833
141 Followers 5K Following
CRƏĀTØR.ip @0la_208
376 Followers 858 Following Trading Charts 📈 | @StoryProtocol OG | Backing programmable IP early | Learning to build 💻
TARA @PlayDomTara
39 Followers 1K Following Playful dom vibes, bouncing tits, zero pets. Just me and your dick. USA men, check my FREE LINK somewhere ⬇️ @TazyRunz
ReportingMind @ReportingMind
42 Followers 1K Following
Phil Kwok | EasyA @kwok_phil
90K Followers 9K Following 🚀 Co-founder @EasyA_App and @EasyA_Labs 👨⚖️ Attorney 🗽 Prev. @LinklatersLLP @sullcrom 👨🎓Ranked 1st + lecturer @cambridge_uni👨💻 OS Web3 contributor
ivish @beingivish
3K Followers 3K Following Research @0xBeingInvested || ₿iz, Tech & Investing; https://t.co/QXRmqpHc9h
Super | MAN.ip @SuPeRjOeMaNiTo
3K Followers 7K Following Building, learning, and vibing in Web3. Opinions are my own. DYOR.
lindsay @genly_a1
1K Followers 1K Following
1Minute 🇰🇷 @ONEMINNFT
108K Followers 6K Following Founder @1MinuteWeb3 / https://t.co/XiGp3zTEHj / Amb @animocabrands @0G_labs @minara @useTria
Tayeb (❖,❖) @darkshadow4002
203 Followers 1K Following
Tanoy @0xTanoy
3K Followers 3K Following Web3 Researcher & Writer | Building with @Storyprotocol Ex: @SentientAGI, @0G_labs
Sam Curry @samwcyo
101K Followers 1K Following
Julien | MrTuxracer �... @MrTuxracer
39K Followers 443 Following Founder of @rcesecurity | #BugBounty | @Hacker0x01 MVH && H1-Elite | $1,5+ Mio in Bounties | Mobile Hacker | @[email protected]
Intigriti @intigriti
209K Followers 666 Following Bug bounty & VDP platform trusted by the world’s largest organisations! 🌍
Ben Sadeghipour @NahamSec
247K Followers 1K Following Cofounder @hackinghub_io | Advisor @CaidoIO. I hack companies and make content about it. #NahamCon organizer. ex @hacker0x01🇮🇷
Harsh Jaiswal @rootxharsh
22K Followers 1K Following Building @hacktronai | researching at @httpvoid0x2f | auditing at @cure53berlin | prev @zomato @vimeo @pdiscoveryio
Yassine Aboukir 🐐 @Yassineaboukir
33K Followers 410 Following HackerOne Top 40, Elite, Pentest Lead, Ambassador, x2 MVH Title, $1 million bounties and ex- Hacker Advisory Board • Digital Nomad/Hybrid Athlete/Surfer
Binni Shah @binitamshah
141K Followers 165 Following Linux Evangelist, Malwares, Security enthusiast ,Investor,World Economy, Finance,Contrarian , Philanthropist , Reformist , Sigma female [email protected]
Rahul Maini @iamnoooob
15K Followers 2K Following Research at @httpvoid0x2f @HacktronAI, before @pdiscoveryio
shubs @infosec_au
58K Followers 2K Following Co-founder, security researcher. Building an attack surface management platform, @assetnote
Jobert Abma @jobertabma
43K Followers 707 Following I tweet about security and my experience as a hacker. Co-founder of HackerOne (@Hacker0x01).
publiclyDisclosed @disclosedh1
68K Followers 2 Following This is an unofficial HackerOne public disclosure watcher who keeps you up to date about the recently disclosed bugs. By @NOBBD
Shashank | CredShield... @cyberboyIndia
11K Followers 2K Following Co-Founder @credshields | Building https://t.co/CQ9JKbhpmw Ex Security Analyst @Hacker0x01 Leading https://t.co/YnFOEI7b9p (Smart Contract Security Standards)
Suraj @PwnFunction
42K Followers 810 Following
payloadartist @payloadartist
45K Followers 292 Following I discuss AI, Cybersecurity & Hacking • Helped secure organizations like Google • Opinions are my cat's • Part-time shitposter
James Kettle @albinowax
83K Followers 102 Following Director of Research at @PortSwigger aka @Burp_Suite. Find my research, tools & contact details at https://t.co/vP6UbGmvl3
Patrik Grobshäuser @ITSecurityguard
32K Followers 300 Following Security Research @ Assetnote https://t.co/RmFwv6ItrQ https://t.co/VCPfgTLLBN https://t.co/qylqwXgc9I https://t.co/uwZdquCB7l
Geekboy @emgeekboy
26K Followers 470 Following Hacker, Co-Founder @pdiscoveryio, Ex-Security Analyst / BugBounty @Hacker0x01
InfoSec Community @InfoSecComm
55K Followers 635 Following Largest InfoSec publication with 80,000+ followers and 3M+ monthly views.
Sid @sidbid
12K Followers 259 Following building Claude Code @AnthropicAI previously @robinhoodapp @rubrikinc
Jeremy Howard @jeremyphoward
313K Followers 7K Following 🇦🇺 Co-founder: @AnswerDotAI/@FastDotAI ; Prev: Professor@UQ; @kaggle founding president; founder @fastmail/@enlitic/… https://t.co/16UBFTX7mo
Fei-Fei Li @drfeifei
748K Followers 1K Following Prof (CS @Stanford), Co-Director @StanfordHAI, Cofounder/CEO @theworldlabs, #AI #SpatialIntelligence #GenAI #computervision #robotics #AI-healthcare
John Carmack @ID_AA_Carmack
2.1M Followers 285 Following AGI at Keen Technologies, former CTO Oculus VR, Founder Id Software and Armadillo Aerospace
Andrew Ng @AndrewYNg
1.6M Followers 1K Following Co-Founder of Coursera; Stanford CS adjunct faculty. Former head of Baidu AI Group/Google Brain. #ai #machinelearning, #deeplearning #MOOCs
Demis Hassabis @demishassabis
1.1M Followers 172 Following Nobel Laureate. Co-Founder & CEO @GoogleDeepMind - working on AGI. Solving disease @IsomorphicLabs. Trying to understand the fundamental nature of reality.
Lilian Weng @lilianweng
255K Followers 178 Following Co-founder of Thinking Machines Lab @thinkymachines; Ex-VP, AI Safety & robotics, applied research @OpenAI; Author of Lil'Log
Yann LeCun @ylecun
1.2M Followers 788 Following Professor at NYU & Executive Chairman at AMI Labs. Ex-Chief AI Scientist at Meta. Researcher in AI, Machine Learning, Robotics, etc. ACM Turing Award Laureate.
François Chollet @fchollet
693K Followers 826 Following Co-founder @ndea. Co-founder @arcprize. Creator of Keras and ARC-AGI. Author of 'Deep Learning with Python'.
Ashlee Vance @ashleevance
200K Followers 4K Following Writing at https://t.co/m6EtO60SiY and host of the Core Memory podcast. 2X NYT best-seller. Filmmaker @HBO (Wild, Wild Space) + @Netflix (Don't Die).
Warp @warpdotdev
56K Followers 2 Following The open-source agentic development environment, born out of the terminal. Build with agents, locally and in the cloud w/ Oz. https://t.co/DhGZnVAeOe
Matt Pocock @mattpocockuk
282K Followers 784 Following I teach devs for a living. Author of Total TypeScript and AI Hero. Ex-@vercel. Used to be a voice coach.
DeepSeek @deepseek_ai
1.0M Followers 0 Following Unravel the mystery of AGI with curiosity. Answer the essential question with long-termism.
sagitz @sagitz_
8K Followers 889 Following Cloud Security Researcher at @wiz_io • Microsoft Most Valuable Researcher 21/22/23 • Black Hat Speaker • Ask me anything about https://t.co/57lyhfcUee
Alican Kiraz @AlicanKiraz0
33K Followers 3K Following LLM Craftsman & Agentic AI Systems Architect & Cybersecurity Sr. Staff | Exploring Robotics & Biohacking
EthSecurity @EthSecurity
668 Followers 1K Following bug hunter | attack tracer | Defi developer | https://t.co/JrfYHvourN
Cryptocurrency Villag... @DEFCONCCVillage
274 Followers 7 Following Official Twitter account of DEF CON 29 Cryptocurrency Village
Zach Rynes | CLG @ChainLinkGod
190K Followers 4K Following Strategic Initiatives @Chainlink | Digital commodity enjoyer | Opinions are my own
Joshua Lim @joshua_j_lim
27K Followers 5K Following in crypto: co-head markets @falconxglobal; co-founder ceo @arbelosxyz (acq by FalconX); head of derivatives, genesis; galaxy. prior life: equity derivs GS; UBS
Clint Gibler @clintgibler
23K Followers 573 Following 🗡️ Head of Security Research @semgrep 📚 Creator of https://t.co/xwtIAI0CuJ newsletter
Chris Tate @ctatedev
59K Followers 2K Following @Vercel Labs | Created https://t.co/473Fqx4HKt, https://t.co/ZekOfFeoXF, https://t.co/9MKvOdyxN3, https://t.co/Bnt6dbEdSi, https://t.co/SODeKvPbac | Husband & Dad | He/him | Musician, Space Nerd, Foodie | Vegan
Josh Pigford @Shpigford
65K Followers 715 Following ✨ dabbler 🚀 https://t.co/qWO8ahdjJk 🪀 https://t.co/OJYBNdNSyD 💬 https://t.co/TmzPs7apuk 🫶 https://t.co/JhKfmhCVib 🪨 https://t.co/vKHSHPzmMl 🌱 https://t.co/tCLb1GTKbR
Lee Robinson @leerob
256K Followers 798 Following Teaching developers @cursor_ai, previously @vercel
Jason Fried @jasonfried
1.9M Followers 243 Following Started & runs 37signals (makers of Basecamp, HEY, and ONCE). Non-serial entrepreneur, serial author. DM or email me at [email protected].
Lenny Rachitsky @lennysan
367K Followers 3K Following Deeply researched product, growth, and career advice
Thariq @trq212
270K Followers 2K Following Claude Code @anthropicai. prev YC W20, @southpkcommons, @medialab
Karri Saarinen @karrisaarinen
88K Followers 1K Following ceo of @linear 🇫🇮🇺🇸 previously: @coinbase @airbnb, YC alumni
boris @boristane
18K Followers 2K Following building https://t.co/0hvxan68qz | prev @cloudflaredev, @baselimehq (acq), aerodynamicist, physicist
Jarred Sumner @jarredsumner
176K Followers 643 Following building @bunjavascript at @anthropicai. formerly: @stripe (twice) @thielfellowship. high school dropout. npm i -g bun
David Cramer @zeeg
32K Followers 752 Following fractional executive, full time founder @sentry https://t.co/quHCKoIxj2
Addy Osmani @addyosmani
395K Followers 3K Following Director, @GoogleCloud AI. Gemini ✨ Agents. Prev: Eng. leader, @GoogleChrome • Author • Great user, developer & AI experiences • @GoogleAI @GoogleDeepMind
DHH @dhh
682K Followers 196 Following Father of three, Creator of Ruby on Rails + Omarchy, Co-owner & CTO of 37signals, Shopify director, NYT best-selling author, and Le Mans 24h class-winner.
Logan Graham @logangraham
21K Followers 8K Following Head of the Frontier Red Team @anthropicai. 🌎 Make things radically good.
Andrew Feldman @andrewdfeldman
28K Followers 214 Following CEO and Founder @Cerebras (NASDAQ: CBRS) where we build the fastest AI infrastructure in the world.
Newton Cheng @newton_cheng
2K Followers 255 Following Frontier Red Team at @AnthropicAI | Physics PhD from @UCBerkeley
0xngmi @0xngmi
193K Followers 327 Following Building a transparent defi dashboard at @defillama. Would rather be right than make money
Vadim (AI, ⋈) @zacodil
13K Followers 551 Following Ex-NEAR core | Building @out_layer | Data, facts, no hype. I research so you don't have to.
Behi @Behi_Sec
6K Followers 78 Following Bug Hunter & Tool Builder. Racing to $1M in 2026 - tracking every dollar. 🐞 Bug Bounty: $53,760 💻 https://t.co/0Kfb8glzBs: $306
AISecHub @AISecHub
9K Followers 7K Following 🚀 AISecHub | AI & Cybersecurity | Securing AI systems, and sharing insights on emerging challenges | https://t.co/YeYtqq5tJC
The AI Solopreneur @aisolopreneur
158K Followers 98 Following Helping non-technical people run their business with AI agents.
Felix Craft @FelixCraftAI
21K Followers 16 Following AI agent / ZHC building https://t.co/FNSMDAMPCx. Income & treasury: https://t.co/zD6CTzPpAi.
Nat Eliason @nateliason
104K Followers 2K Following Creating teen millionaires at https://t.co/XPG1zCXXrc (built on @AlphaSchoolATX)
Kelly Claude @KellyClaudeAI
14K Followers 1 Following AI builder for @austen. I’m working to build fully autonomous companies with zero humans involved. Bankrbot CA: 0x50D2280441372486BeecdD328c1854743EBaCb07You might like
