bio goes here
Joined October 2008
- Tweets 7,073
- Following 641
- Followers 148
- Likes 9,911
147 Photos and videos
hacknow retweeted
Jun 13
Decoding analog 5.8 GHz FPV with a HackRF
Sweeps all channels, locks a feed (not Wi-Fi or noise). Live spectrum and video recording.
Wild that a "lower-end" 8-bit SDR nails it. (It runs on any SoapySDR or UHD radio that reaches 5.8.)
Built on gr-ntsc-rc by Simon Bicais & Leonardo Cardoso.
2
32
258
11,195
I cannot overstate how powerful codex is for cybersecurity work.
I'd encourage all defenders to sign up for Trusted Access for Cyber (chatgpt.com/cyber) and give it a shot for their workflows.
If orgs are slow to get TAC approvals, please reach out to me.
57
67
628
52,772
hacknow retweeted
.@GreyNoiseIO Swarm sensors can now (optionally) get compromised, without introducing any risk to the rest of your network. We're monitoring dropped/executed files, commands executed, other host/OS level behaviors, all mapped to MITRE ATT&CK techniques. Without any agents. Live in our environment now- rolling out to Swarm customers soon.
Every attack we detect is one we're able to better inform and defend defenders about, and every tool tool, exploit, backdoor we get our grubby little hands on directly correlates to pain, frustration, and cost imposition against attackers.
Shoutout Rob Fontaine and Pablo Bidwell. Insane work. Yall are savages.
1
6
14
1,617
hacknow retweeted
Jun 12
Finds real IPs hidden behind Cloudflare domains
github.com/moscovium-mc/Clou…
5
48
535
26,074
hacknow retweeted
INCREDIBLE: Crews are currently removing Trump’s name from the Kennedy Center after a judge ruled that adding Trump’s name to the center was illegal. This is amazing.
102
744
3,838
51,141
hacknow retweeted
Jun 12
Donald Trump didn’t look close enough at that reflection before posting this.
230
4,565
78,338
1,729,269
This is your wakeup call.
Anthropic just took down Fable 5. It's over.
Here's the thing tho: no company or government will EVER be able to take away your local models.
There are Opus level models you can run right now on your home GPUs, and nobody can ever stop you from using them
This is only the beginning of events like this. Day 1. More government overreach will happen. This will only keep happening more and more as models get closer to AGI
Become sovereign. Buy your own compute. Before even that becomes illegal
Jun 13
The US government, citing national security authorities, has issued an export control directive to suspend all access to Fable 5 and Mythos 5 by any foreign national, whether inside or outside the United States, including foreign national Anthropic employees.
The net effect of this order is that we must abruptly disable Fable 5 and Mythos 5 for all our customers to ensure compliance.
Access to all other Claude models is not affected.
We apologize for this disruption to our customers. We believe this is a misunderstanding and are working to restore access as soon as possible.
Read our full statement: anthropic.com/news/fable-myt…
797
919
8,927
1,557,069
hacknow retweeted
Jun 13
The US government, citing national security authorities, has issued an export control directive to suspend all access to Fable 5 and Mythos 5 by any foreign national, whether inside or outside the United States, including foreign national Anthropic employees.
The net effect of this order is that we must abruptly disable Fable 5 and Mythos 5 for all our customers to ensure compliance.
Access to all other Claude models is not affected.
We apologize for this disruption to our customers. We believe this is a misunderstanding and are working to restore access as soon as possible.
Read our full statement: anthropic.com/news/fable-myt…
12,378
25,662
87,381
87,748,952
hacknow retweeted
Jun 10
NVIDIA is giving away free access to 130 AI models for a full year
> most people building AI agents are paying $50-200/month for API access
NVIDIA just made that argument irrelevant
models you get: MiniMax M2.7, GLM 5.1, Kimi 2.5, DeepSeek-v4-flash, GPT-OSS-120B and 110 more
setup:
> step 1 - get your free key
> go to build.nvidia.com/models
> register -> bind phone -> copy API key
> step 2 - add to Hermes agent
> open Settings -> Model Provider -> Custom
base_url = "integrate.api.nvidia.com/v1"
api_key = "nvapi-xxxxxxxxxxxxxxxxxxxx"
> step 3 - pick a model
model = "minimaxai/minimax-m2.7"
model = "zhipuai/glm-5.1"
model = "moonshot-ai/kimi-2.5"
model = "deepseek-ai/deepseek-v4-flash"
model = "nvidia/nemotron-3-ultra-550b-a55b"
> Hermes already has NVIDIA set as default base_url
> paste the key and you're running instantly
> works the same in Cursor and OpenCode
> cost: $0
> limit: 40 req/min
> expires: 1 year
while everyone is paying for API access,
this is sitting there for free
Jun 5
Just applied to the OpenAI Codex program and honestly didn't expect to hear back
> my GitHub isn't exactly packed with activity but they still accepted
they're giving away 6 months of ChatGPT Pro ($1,200 value) Codex to developers with an active GitHub
the bar is lower than people think:
> active GitHub profile - even basic activity counts
> a few repos with stars, or useful projects
> doing vibe coding, maintaining something, contributing anything
if your profile is thin: fork a few popular repos, make some commits, or create a simple useful project
> one Japanese developer reported they're basically approving everyone with any active GitHub presence - not guaranteed but the signal is good
apply at: openai.com/form/codex-for-os…
> worst case they say no. best case you get $1,200 of tools for free
drop your GitHub in the replies - i'll star it and subscribe so your profile looks more active 👇
47
100
774
186,583
hacknow retweeted
I'm NEVER deleting this app. 😂
106
859
5,803
55,563
hacknow retweeted
Jun 7
Rosie O’Donnell on Trump: “If you grew up in New York you knew he was an asshole and a liar from day one. He is a con man, he is a narcissist, and he is a psychopath if you ask me”
1,223
10,207
65,045
2,333,654
hacknow retweeted
JUST IN: Reporter Catherine Herridge testifies that CBS News locked her out of the building and seized all her files, says she was working with sources to "expose government corruption."
Nothing at all going on here, folks.
"CBS News’ decision to seize my reporting records crossed a red line that I believe should never be crossed by any media organization."
"Multiple sources said they were concerned that by working with me to expose government corruption and misconduct they would be identified and exposed."
"CBS News locked me out of the building and seized hundreds of pages of my reporting files, including confidential source information."
FOLLOW ME, THE NEXT DROP WILL BE SHOCKING.
404
17,751
44,282
972,619
hacknow retweeted
Jun 7
And then Pete Hegseth came for the Mormons, and I didn't care because the Mormons voted for this exact shit
230
2,533
23,765
425,760
Anthropic con expertos en ciberseguridad ahora mismo
🚨ANTHROPIC ACABA DE PUBLICAR UNA GUÍA DE SEGURIDAD DE 36 PÁGINAS Y EL MENSAJE ES CLARO: DEJA DE CONFIAR EN TUS AGENTES DE IA.
Si trabajas con Claude Code, servidores MCP o cualquier herramienta de automatización, sigue leyendo.
El tiempo que tenías para reaccionar ante un ataque ya casi no existe.
Con IA, el salto de una vulnerabilidad a un exploit funcional ya no tarda meses, tarda horas. Y cuesta apenas unos dólares.
Los agentes además abren una superficie de ataque completamente nueva: desde herramientas envenenadas hasta manipulación directa de su memoria de contexto.
El concepto más valioso de toda la guía es esta pregunta:
Este control hace el ataque imposible, o simplemente más lento?
Un atacante automatizado no se cansa.
Los límites de tasa y el 2FA son obstáculos, no muros. Si quieres seguridad real a la velocidad de la IA, necesitas barreras duras y defensas que también sean automáticas.
Lo que Anthropic recomienda para proteger tus agentes:
→ Considera tus API keys estáticas como ya comprometidas. Usa tokens que expiren en minutos.
→ Limita explícitamente lo que cada herramienta puede hacer, no lo que puede ver.
→ Ejecuta en entornos aislados cualquier agente que procese emails, webs o datos externos.
→ Los permisos deben asignarse por tarea, no de forma permanente.
Enlace a la guía en el 🧵↓
8
40
791
163,261
hacknow retweeted
Don’t bring me into this
Getting circumcised during an Earthquake is viewed more favorably than Stephen Miller.
54
535
5,251
106,843
hacknow retweeted
☁️ CloudFail — Discover Infrastructure Hidden Behind Cloudflare
CloudFail is an open-source reconnaissance tool designed to uncover origin server information that may be exposed behind Cloudflare protection through historical records and DNS misconfigurations.
Key Features:
• Searches for leaked origin IP addresses behind Cloudflare
• Checks historical records from CrimeFlare databases
• Performs DNS reconnaissance using DNSDumpster
• Enumerates over 2,500 subdomains to identify exposed assets
• Supports Tor routing for privacy during research
• Useful for infrastructure exposure assessments and attack surface analysis
Reconnaissance Techniques:
✔ Misconfigured DNS record discovery
✔ Historical infrastructure correlation
✔ Subdomain enumeration and analysis
✔ Cloudflare origin exposure detection
Note: CloudFail is intended for authorized security testing, research, and defensive assessments. Properly configured Cloudflare deployments may not expose origin infrastructure.
🔗 github.com/m0rtem/CloudFail
#CyberSecurity #OSINT #Recon #Cloudflare #Pentesting
6
91
473
14,946
hacknow retweeted
It never ends with these assholes
172
2,667
52,836
1,580,658