XBOW (@Xbow) / X

XBOW

329 posts

XBOW

@Xbow

Bringing AI to offensive security by autonomously finding and exploiting web vulnerabilities. xbow.com

Seattle, Washington, USA

Joined May 2007

Pinned
XBOW
@Xbow
Nov 12, 2025
Expert-level pentesting. On demand. Starting today. → Launch in minutes → Results in 5 days → Validated, reproducible, compliance-ready 🗓️ Live demo walkthrough tomorrow: xbow.com/pentest-webinar
00:00
21K
XBOW
@Xbow
4h
Samsung SDS announced that it is partnering with XBOW as part of its overall initiative to further strengthen their cybersecurity capabilities. The announcement notes that Samsung SDS is now leveraging XBOW to uncover hidden vulnerabilities through attack simulations,
352
XBOW
@Xbow
5h
The financial sector is feeling the impact of AI-driven threats. We're heading to the @FSISAC 2026 EMEA Summit to meet with security leaders tackling a common challenge: how to defend at machine speed when attackers are no longer constrained by human scale. Autonomous offensive
318
XBOW
@Xbow
Jun 10
"Right now, what we're seeing is like returning to the early 2000s," says @fede_k, head of security labs at XBOW. "Yes, we have security findings, but now the problem is triaging. Now the problem is routing. Now the problem is: is this real or not?" Hear more in the clip below
00:00
1K
XBOW
@Xbow
Jun 10
“AI is changing the story of design flaw identification, says XBOW security researcher @pwntester in the clip below. Get more of his thoughts on business logic flaws and how to address them in his new blog: bit.ly/4fKEpsP
00:00
909
XBOW
@Xbow
Jun 9
Security outcomes improve when great technology is paired with trusted expertise. It was great spending time with the @GuidePointSec team and customers at the GuidePoint Security Golf Classic at Terry Hills yesterday. As organizations face a growing volume of vulnerabilities
619
XBOW
@Xbow
Jun 8
“Is my application security program built for a world where everyone is a coder?” That’s one of the questions our CISO @nicowaisman says CISOs should ask themselves to ensure their security programs adapt to the cybersecurity landscape as quickly as it evolves. Mary Pratt
15 tough cybersecurity questions every CISO must answer
From csoonline.com
671
XBOW
@Xbow
Jun 8
How does AI pentesting work? What should you look for? Get some guidance in our blog post "How to Evaluate an AI Pentesting Vendor: A Decision Framework for Security Leaders." bit.ly/4edHyPM
663
XBOW
@Xbow
Jun 8
The volume of vulnerabilities is growing. The number of security engineers isn't. Join XBOW at @owasp Global AppSec EU 2026 in Vienna, June 25-26, to see how autonomous offensive security is helping AppSec teams continuously identify and validate real, exploitable risk. Stop by
720
XBOW
@Xbow
Jun 5
• Why can't traditional pentests keep up with modern attack surfaces? • What stops an autonomous pentesting agent from causing real damage in production? • How do you audit what the AI actually did during an assessment? XBOW CISO @nicowaisman answers these questions, and
00:00
865
XBOW
@Xbow
Jun 5
“If you have exploit proofs, you can provide that plus-one modifier and really point your developers to remediate the top tier of real risk that’s been validated,” says @moderna_tx Deputy CISO Farzan Karimi about partnering with XBOW in a new Cyberscoop article. @gregotto's
825
XBOW
@Xbow
Jun 4
One theme came up repeatedly at InfoSecurity Europe: ➡️ Security teams want proof, not possibility. Great discussions all week with leaders thinking about autonomous offensive security and operational validation at scale. Thanks to everyone who connected with our team by
700
XBOW
@Xbow
Jun 4
Security teams are still organized around reporting cycles, but today’s AI threats require continuous, autonomous offensive security. On June 10, XBOW CISO @nicowaisman will join @moderna_tx Deputy CISO Farzan Karimi to discuss what changes when offensive security becomes
1.5K