Log inSign up
XBOW
350 posts
user avatar
XBOW
@Xbow
Bringing AI to offensive security by autonomously finding and exploiting web vulnerabilities. xbow.com
Seattle, Washington, USA
xbow.com
Joined May 2007
13
Following
11.7K
Followers

New to X?

Sign up now to get your own personalized timeline!

Create account

By signing up, you agree to the Terms of Service and Privacy Policy, including Cookie Use.

Terms·Privacy·Cookies·Accessibility·Ads Info·© 2026 X Corp.
Don't miss what's happening
People on X are the first to know.
Log inSign up
  • Pinned
    user avatar
    XBOW
    @Xbow
    Nov 12, 2025
    Expert-level pentesting. On demand. Starting today. → Launch in minutes → Results in 5 days → Validated, reproducible, compliance-ready 🗓️ Live demo walkthrough tomorrow: xbow.com/pentest-webinar
    00:00
    22K
  • user avatar
    XBOW
    @Xbow
    4h
    In light of the recent debate surrounding access to Claude Fable 5 & Mythos 5, should companies use open-weight AI models like GLM-5.2/Kimi?

    When you make a selection it cannot be changed

    30 votes20h left
    717
  • XBOW reposted
    user avatar
    Tierra de Hackers
    @tierradehackers
    11h
    Hablo de Mythos con @fede_k , líder del Security Lab de @Xbow . ¿Qué hay de cierto en eso de que "hackeó a la NSA"?, por qué dice que "no es que él sea bueno, es que los sistemas son malos", y qué cambia de verdad con la IA en la ciberseguridad.
    Experto en IA ofensiva: ¿Una IA hackeó a la NSA? ¿Qué usaban Windows XP?
    From youtube.com
    3K
  • user avatar
    XBOW
    @Xbow
    Jul 2
    Developing a multi-stage attack chain manually can take anywhere from days to months. Working with XBOW, Moderna compressed that timeline to less than a day. Read full success story: na2.hubs.ly/H06kRRr0
    950
  • XBOW reposted
    user avatar
    Brendan Dolan-Gavitt
    @moyix
    Jul 2
    These will be very fun when we get to talk about them (V8)
    5.1K
  • user avatar
    XBOW
    @Xbow
    Jul 1
    10 key questions to ask before building an AI-powered offensive security tool internally? See our new brief: na2.hubs.ly/H06kScv0
    923
  • user avatar
    XBOW
    @Xbow
    Jun 30
    Most security tools answer one question: what weaknesses exist here? They return a list, each item scored on its own.  Real attackers do not work this way.  They compose.  They take a low-severity foothold, use it to unlock the next, and chain primitives together until
    1.1K
  • user avatar
    XBOW
    @Xbow
    Jun 29
    Black Hat Booth 3448 ... Meet the best AI hacker.
    00:00
    1.5K
  • user avatar
    XBOW
    @Xbow
    Jun 25
    “Exploit proof” needs to rise to the top of your remediation program as a key modifier for findings, rather than trying to boil the ocean, says Moderna Deputy CISO Farzan Karimi in a recent webinar with XBOW co-founder @nicowaisman. Hear more from Farzan below. Watch full
    00:00
    1.4K
  • user avatar
    XBOW
    @Xbow
    Jun 24
    The Five Eyes cyber security agencies just set a timeline for what many security leaders already know: AI-driven cyber risk is arriving in the next few months. From their June 22 statement: “As the leaders of the Five Eyes cyber security agencies, we are united in our call to
    1.1K
  • user avatar
    XBOW
    @Xbow
    Jun 24
    How does XBOW identify business logic flaws? Hear from XBOW security researcher @pwntester in the clip below. Get more of his thoughts on business logic flaws and how to address them in his new blog: bit.ly/4fKEpsP
    00:00
    1.4K
  • user avatar
    XBOW
    @Xbow
    Jun 23
    In a new episode of the Cyberwire podcast, “Vulnerability response. Built for humans, outpaced by machines,” XBOW Head of Security Labs @fede_k shares his perspective on vulnerability management when frontier models are finding the flaws. Listen to the episode:
    1.1K
  • user avatar
    XBOW
    @Xbow
    Jun 23
    What would it take to build an AI-powered offensive security tool? We highlight the cost below. Get full details in our new whitepaper: bit.ly/4eqcEDH
    GIF
    1.4K