Log inSign up
OpenHack
45 posts
user avatar
OpenHack
@OpenHackAI
Open Source Security Agent
San Francisco, CA
openhack.com
Joined June 2025
1
Following
341
Followers

New to X?

Sign up now to get your own personalized timeline!

Create account

By signing up, you agree to the Terms of Service and Privacy Policy, including Cookie Use.

Terms·Privacy·Cookies·Accessibility·Ads Info·© 2026 X Corp.
Don't miss what's happening
People on X are the first to know.
Log inSign up
  • Pinned
    user avatar
    OpenHack
    @OpenHackAI
    Jun 3
    Introducing OpenHack. An Open Source Agentic Security Scanner that hunts and verifies vulnerabilities using open source models exclusively. Upto 40x cheaper, it is on par with Claude Opus 4.6 on CVE-Bench. Check it out at openhack.com!
    00:00
    22K
  • user avatar
    OpenHack
    @OpenHackAI
    Jul 1
    welcome back Fable 5
    300
  • user avatar
    OpenHack
    @OpenHackAI
    Jun 25
    Open source models are the only way forward - Cannot be banned - All restrictions can be removed in post training - Cannot be slowed down / degraded by the big labs - Self hosted, fully in house inference
    253
  • user avatar
    OpenHack
    @OpenHackAI
    Jun 11
    OpenHack just crossed a 100 stars on GitHub! 🎉 Thank you for your all your support!
    00:00
    998
    user avatar
    OpenHack
    @OpenHackAI
    Jun 11
    Check out OpenHack's repo here:
    GitHub - openhackai/OpenHack: Open Source Agentic Security Scanner
    From github.com
    131
  • user avatar
    OpenHack
    @OpenHackAI
    Jun 11
    Full blog post on OpenHack’s new open source security harness is out now!
    Introducing OpenHack — the open-source AI security agent
    Introducing OpenHack: Open-Source AI Security Agent
    From openhack.com
    403
  • user avatar
    OpenHack
    @OpenHackAI
    Jun 10
    OpenHack is now open source using the MIT license! 🎉 Live on Github here:
    GitHub - openhackai/OpenHack: Open Source Agentic Security Scanner
    From github.com
    18K
  • user avatar
    OpenHack
    @OpenHackAI
    Jun 10
    Claude Fable 5 literally flags a simple port scan and switches back to Opus. This is why we're building OpenHack and betting hard on open source models.
    02:40
    user avatar
    OpenHack
    @OpenHackAI
    Jun 3
    Introducing OpenHack. An Open Source Agentic Security Scanner that hunts and verifies vulnerabilities using open source models exclusively. Upto 40x cheaper, it is on par with Claude Opus 4.6 on CVE-Bench. Check it out at openhack.com!
    882
  • OpenHack reposted
    user avatar
    Ananay
    @ananayarora
    Jun 4
    Excited to launch OpenHack! 🚀 A fully open source agentic security scanner to hunt and verify security vulnerabilities. Upto 40x cheaper, it is on par with Claude Opus 4.6 on CVE-Bench for finding logic based vulnerabilities in web apps.
    user avatar
    OpenHack
    00:00
    user avatar
    OpenHack
    14K
  • user avatar
    OpenHack
    @OpenHackAI
    Jun 3
    Replying to @OpenHackAI
    We're giving away free credits for everyone to try out OpenHack! Install using `pipx install openhack` and signup to get started.
    565
    user avatar
    OpenHack
    @OpenHackAI
    Jun 3
    OpenHack is a fully open source harness. Check out the Github repository:
    GitHub - openhackai/OpenHack: Open Source Agentic Security Scanner
    From github.com
    483
  • user avatar
    OpenHack
    @OpenHackAI
    May 14
    Fun fact: In March 2022, the maintainer of node-ipc deliberately introduced malicious code into versions 10.1.1 and 10.1.2 that would overwrite files with heart emojis (❤️) on systems with IP addresses located in Russia or Belarus. (1/n)
    user avatar
    OpenHack
    @OpenHackAI
    May 14
    ‼️ Another day, another NPM package compromise node-ipc versions 9.1.6, 9.2.3, and 12.0.1, which together have over 800,000 weekly downloads, were published containing an obfuscated stealer/backdoor in the CommonJS bundle that activates on import.
    395
    user avatar
    OpenHack
    @OpenHackAI
    May 14
    This was done as a form of protest against Russia's invasion of Ukraine. The destructive code used an IP geolocation service to identify affected users and then overwrote accessible files, permanently deleting their contents. These malicious versions were online for about five
    244
    user avatar
    OpenHack
    @OpenHackAI
    May 14
    Subsequent versions (11.0.0 and later) included the "peacenotwar" dependency, which dropped text files on users' desktops as a declared form of "non-violent protest". This incident affected major projects including Vue.js framework and Unity 3D gaming engine. The vulnerability
    173
  • user avatar
    OpenHack
    @OpenHackAI
    May 14
    ‼️ Another day, another NPM package compromise node-ipc versions 9.1.6, 9.2.3, and 12.0.1, which together have over 800,000 weekly downloads, were published containing an obfuscated stealer/backdoor in the CommonJS bundle that activates on import.
    975
    user avatar
    OpenHack
    @OpenHackAI
    May 14
    The malware performs host fingerprinting, enumerates local files, steals credentials including AWS, Azure, GCP keys, SSH private keys, Kubernetes configs, Docker tokens, GitHub CLI tokens, and AI tool configurations, then exfiltrates them via DNS TXT queries and HTTPS POST to
    383
  • user avatar
    OpenHack
    @OpenHackAI
    May 14
    Microsoft surpassed Claude Mythos using their new harness, MDASH (multi-model agentic scanning harness)! MDASH uses GPT-5.4, Claude Opus 4.6, Sonnet 4.6 and absolutely smashed it on CyberGym. microsoft.com/en-us/security…
    2.1K
  • OpenHack reposted
    user avatar
    Ananay
    @ananayarora
    May 14
    Microsoft just dropped and just surpassed Mythos using Claude Opus 4.6, Sonnet 4.6 and GPT-5.4. Proof that a great harness goes a really, really long way.
    18K