Your offensive security partner. Unleash an automated hacker against your attack surface with Orion.
Joined October 2022
- Tweets 54
- Following 12
- Followers 252
- Likes 10
13 Photos and videos
Ophion Security retweeted
11 Mar 2025
Presenting on some fun stuff with @OphionSecurity this year at @_kernelcon_ and @bsidesseattle. Come for the talk, stay for the vulnerabilities. #vulnerabilities #bugbounty #attacksurfacemanagement
2
1
1,077
30 Jan 2025
Live chat histories contain treasure trove of data. From answers to security questions to credentials and more. We found a way to access it all in Cisco's Webex Connect. Read here: ophionsecurity.com/post/cisc… #vulnerability #vulnerabilitydisclosure #attacksurfacemanagement
1
2
405
9 Jan 2025
We are actively scanning Microsoft's GitHub organization and more than 150k repositories and 5k users. You can do the same for your organization starting today. Check out the demo: app.storylane.io/share/uj1vg…
#githubactions #githubsecurity #attacksurfacemanagement
1
207
7 Nov 2024
Thanks for the shout! We love all the episodes coming out! Looking forward to sharing more research blogs in coming months.
24 Oct 2024
New Episode is live covering the craziness with Zendesk and the nuances of how "informative" report disclosure should be handled.
Also, some badass write-ups from @OphionSecurity and a new song drop from @realytcracker!
youtube.com/watch?v=yHQZUTsA…
1
2
1,439
5 Nov 2024
Endless security reviews, questionnaires, and compliance can be a nightmare when selling to enterprises. 🛡️ What if you could handle it all in one platform? Pentests, Questionnaires, & more. Check it out: ophionsecurity.com/use-case/… #Cybersecurity #SaaS #SecurityCompliance
1
6
1,315
17 Oct 2024
A simple cookie value allowed disclosing chats of hundreds to thousands of users through a Live Chat integration. Learn more on blog one of two from our Live Chat security research. ophionsecurity.com/post/live… #vulnerabilitydisclosure #livechat #ophionsecuritylab
189
Ophion Security retweeted
15 Oct 2024
Yay, I was awarded a $37,500 bounty on @Hacker0x01! hackerone.com/ophionsecurity. Had a fun time hacking AWS at @HackerOne's LHE on Edinburgh. #TogetherWeHitHarder
17
20
425
20,039
12 Sep 2024
How should at-scale offensive scanning work? What values do they provide to companies? Checkout a recent podcast @mallocsys did with FireTail's Jeremy Snyder about it: youtube.com/watch?v=RBg75xUk…
295
7 Sep 2024
That’s what we call 0 bullshit, no FUD hacking. Research ➡️ find vulns ➡️ write exploits ➡️ report.
7 Sep 2024
Flight from Vegas after Defcon got delayed…hacked for 2 hours during the delay…reported a P2 on Square…got paid. I love hacking. #bugbounty #hacking
362
Ophion Security retweeted
7 Sep 2024
Flight from Vegas after Defcon got delayed…hacked for 2 hours during the delay…reported a P2 on Square…got paid. I love hacking. #bugbounty #hacking
11
11
279
14,817
31 Jul 2024
Increase your sticker game with these stickers next week at BlackHat and DEF CON. #hackersummercamp #defcon #blackhat2024
31 Jul 2024
390
27 Jul 2024
There is no such thing as too much data when building context based scanners. More data -> more knowledge -> more research -> more vulnerabilities to identify and resolve 💻
27 Jul 2024
Currently monitoring almost 1million records and assets through automation in one of our test deployments. Might have automated too hard.
10
2
302
30 May 2024
Orion in the real world 🤩
30 May 2024
🛡️ Vulnerability of the Week: Going from High to Critical in 5 Minutes to get millions of customers' PII
When testing a company, I found a vuln where authenticated users could pass enumerable account tokens to access another user's PII: DoB, Address, Phone, Transaction history, account balances and more. #attacksurfacemanagement #bugbounty 🧵
550
28 May 2024
Traditional ASMs are too noisy and full of false positives. An offensive context-based approach to attack surface management reduces vulnerabilities and helps internal teams identify and mitigate more vulnerabilities. Learn how Orion can help you today. ophionsecurity.com/start-tri…
2
1,087
9 May 2024
We had an amazing time at BSides SF meeting with everyone and discussing pain points with traditional attack surface management. Thank you for having us @BSidesSF! #attacksurfacemanagement #bsidessf
1
3
376
16 Apr 2024
16 Apr 2024
Nothing better than when a product you have been developing for past few months finds another critical on a Monday evening.
392
Ophion Security retweeted
16 Apr 2024
Nothing better than when a product you have been developing for past few months finds another critical on a Monday evening.
1
6
1,961
9 Apr 2024
Attack Surface Management should be proactive not reactive. Meet the Ophion team at BSides SF to learn how Orion can help you identify and monitor for vulnerabilities in your assets including supply-chain dependencies, SaaS deployments, on-premise applications and more. #bsidessf
224
4 Apr 2024
Ophion Security will be at BSides SF from May 04 - 05, 2024. Come check out our booth and learn how Orion, our Attack Surface Management product can be your offensive security partner. Check out our subscription packages at ophionsecurity.com/subscript…
183