BugQuest 2026: 31 Days of Broken Access Control
In March 2026, we ran BugQuest, a 31-day campaign covering everything you need to know about finding and exploiting broken access control vulnerabilities. From understanding…
Category: Mix
What Happens When AI Stops Being Artificially Cheap
The subsidy era is ending. Here’s what comes next. March 28, 2026 I’ve been thinking about what happens when AI inference costs stop being subsidized.…
The Most Important Ideas in AI Right Now
After thinking about this for about a week, and attending the RSA conference during that time, I think there are a few main AI ideas…
AI Unmasked Our Work as Scaffolding
I think AI is revealing that a vast percentage of knowledge work is scaffolding overhead. Maybe 75-99%. In my own field of cybersecurity, 99% of…
We Are Confusing Two Types of AGI
I think the biggest problem with the AGI debate is that we’re confusing two types of AGI. I propose thinking and discussing them as two…
Intigriti Bug Bytes #234 – March 2026
Welcome to the latest edition of Bug Bytes! In this month’s issue, we’ll be featuring: Earning $180K via SSRFs Free Burp Suite Pro licenses for top hackers …
Introducing GraphQL Support for API Scanning
Detectify’s new GraphQL API Scanning uses hacker-led research to provide highly accurate (99.7%), payload-based security testing. It identifies complex vulnerabilities within 20 minutes, helping enterprises…
Introducing IP Range Scanning: continuous Surface Monitoring for your entire network
Most organizations share a common, uncomfortable secret: they can’t answer basic questions about what is actually exposed on their IP ranges. As companies grow, whether…
Vulnerability disclosure for AI safeguards. How open should programs be and what incentives are necessary?
In a recent NCSC blog post on adapting vulnerability disclosure for AI safeguards, the authors posed a series of questions to researchers. Intigriti, being a global crowdsourced security…
Chaining DOM clobbering and CSP bypasses for XSS
At Intigriti, we host monthly web-based Capture The Flag (CTF) challenges as a way to engage with the security researcher community. This month’s challenge, brought…
Claude Code Hacking Skills Video · Joseph Thacker
Hey y’all, Very short post today. This video below went live yesterday. It’s one of my favorite episodes we’ve ever done on the podcast I…
Baking accessibility into our product foundation
TL;DR: Building for everyone, faster. We’re moving from the why to the how. To scale accessibility without losing speed, we’ve overhauled our foundation: A New…