great connections, was curious how Octane uses outbound sent you a DM abt it

Lmk when you're online, wanna talk about something

I started in web3 security by doing code4rena contests in 2022. I made $46.04 on my first one (Nibbl). Got lucky on the second one and made $926.63 (Illuminate) with ~6hrs of focused work. I was hooked. I was already making close to $200k/yr base pay in my full-time job, and this was even better ROI on my time, insane. A few months into this, I won my first contest. A Champion. 1st place, everyone else was behind me. Still, it was a small contest, made only $3561.22 (VTVL). This taught me that everything is possible in this space. I started doing all contests and posted about it on X, then it found me - someone reached out to do an audit for him. "A solo audit?" I said - he nodded. $600 for 6 hours of work - DEAL. After this, in a week I got another solo audit for $1500, which took me ~10hrs - even better. Felt awesome. I later got invited to work with OakSecurity and got paid $3000. I felt rich now. Here I was all-in, spending all my awake time to study and learn, speak to other people, analyse opportunities, I wanted to grow and be better. Was finding more and more vulnerabilities. Now, I joined Spearbit as an Associate Security Researcher position which I was proud of, with an advertised weekly rate of $6250. I don't think I ever ACTUALLY got paid that, but on paper, it looked cool. More solo audits followed - got my first 5 figure deals and it was pure profit. I had a good stream of clients. It was a business. This is ~February 2024. In the end of the year I launched a full-blown web3 security company, Pashov Audit Group. It was really about doing MORE of the good work, for more web3 projects. In 2.5yrs we did 500 audits so I guess that's that... The big lesson in here is that you can start small, very small. Again, $46.04 dollars. I kept going. Added lots of zeroes to that number. Spoke to the right people and teamed up with them. Ignored the naysayers, kept going. I really kept going, still going. Your time to decide now - will you keep going, or will you quit? Choose wisely🙏

@HypernovaX 🚀 I joined @HypernovaX and I'm in the $5k challenge 100% on-chain prop firm, built on top of @HyperliquidX Why is this different from everything that came before? → Rules are applied by smart contracts — no manual approval, no waiting days to receive → Funding up to $200k with instant payments via smart contract → Already raised $3M from investors like Lemniscap and CMS Holdings, with $1M reserved exclusively to pay traders → Everything transparent and verifiable on-chain — no black box GitHub 2 The traditional prop firm model has always had a problem: when traders win, the firm loses — so they end up looking for ways to restrict who is good. Hypernova was built to solve exactly that. Code4rena I'm at the beginning of the challenge. The journey starts now. 👇 🔗 hypernova.xyz #Hypernova #HyperLiquid #PropFirm #CryptoTrading #Perps #DeFi #Funded

AI slop is killing bug bounty programs. Bug bounties are drowning in AI generated “critical” vulnerabilities that look real, but aren’t. THORChain and Code4rena have both shut down their programs. Even curl (Web2) cited “slop” as the reason for closing. So what does this mean for DeFi protocols?🧵

Given that you are on the other side of the fence it wouldn't make sense to you(or you'll just pretend it doesn't). Using your logic, as a project founder, I could start a conditional contest on sherlock then start another a week before the contest finalizes on cantina on the same commit. Then a week into the contest on cantina, mark all the findings from sherlock audit as out of scope. I guess this will make sense to you? Back then, maia dao, had a contest in sherlock and code4rena concurrently. This new rules are just here to frustrate security researchers, and you are here acting like it's a norm

HIGH-UP COME WEB3 SKILLS TO DEVELOP FOR FREELANCING If you want to earn sustainable passive income or work independently, specialize in these highly sought-after domains: 1. Smart Contract Security Auditing: Protocols lose hundreds of millions to exploits. Learning how to identify vulnerabilities (reentrancy, oracle manipulation) using Solidity or Rust can net you massive sums through independent audits and bug bounty platforms like Code4rena and Immunefi. 👇

I was curious how Octane Security pushes Reddit content dropped you a DM 👍

🚀 Hyperliquid is leveling up. Monetrix just launched mainnet! Bringing real on-chain stable yield powered by Portfolio Margin. Fully transparent, natively built on Hyperliquid, with smart rebalancing, audited by Code4rena (0 high severity issues), and only $2M initial cap. You can now mint USDM, stake into sUSDM for automatic yield, provide liquidity on Hybra, and start earning Season 0 points. Want to join early with a 10% points boost? Use my referral: monetrix.xyz/app/dashboard?c… Original post below ↓

it stays delta-neutral on purpose. active rebalancing keeps the position neutral and reduces ADL risk instead of hoping the market behaves. and because it's on hyperliquid, the positions and the rebalances are visible on-chain — not described in a pdf, shown on the chain. completed a @code4rena competitive audit with 0 high severity issues. that's a public model1 many researchers reviewing the code vs a small private team. code4rena has audited defi covering hundreds of billions in TVL with no fund-loss smart-contract-hack record across audited protocols.

Genesis is live and it's a 30-day window, not forever-farming. deposit USDC → earn GEMs (10M hard cap, no infinite inflation) → Genesis weight toward $MTRX priority to mint USDM at mainnet. USDC redeemable 1:1, 3-day queue. audited by Code4rena. my link 👇 monetrix.xyz/app/genesis?cod… am i wrong to like the no-CEX-in-the-path design more than the APR?

Security Before Scale The Audit Commitment No real funds will touch the Rivectum mainnet vault until an external smart contract audit is complete. This is not optional it's a hard prerequisite written into the roadmap. Audit via Sherlock or Code4rena. Full report published publicly on GitHub. After audit: bug bounty via Immunefi. We're not asking anyone to trust us. We're building a system where trust is unnecessary because the code is verified.

also curious if teams closer to contests, bounties, and vuln databases take a shot here @immunefi @code4rena @zellic_io @osec_io @hexens @SoloditOfficial

I felt sad, too when I knew code4rena has fallen. smart contract feel like winter, I think so. In my case, I 'm trying Codehawks. actually just wrote about where to go next, in case it helps →paragraph.com/@cmaluractu/co…

Code4rena Is Shutting Down. Here's Where Beginners Should Go Next.→ paragraph.com/@cmaluractu/co…

I've been building more than 100 days, I finally shipped an article about smart contract auditing on mirror.xyz. This article is for just starting audit of smart contract. Even if AI replace a part of work, ours will remain. #CodeHawks #Code4rena #100DaysOfCode