![[tl;dr sec] #266 - AI CVE Analysis, Hijacking Abandoned S3 Buckets, Doing Less in AppSec](https://image.cybernoz.com/wp-content/uploads/2025/03/tldr-sec-266-AI-CVE-Analysis-Hijacking-Abandoned-S3.png)
[tl;dr sec] #266 – AI CVE Analysis, Hijacking Abandoned S3 Buckets, Doing Less in AppSec
I hope you’ve been doing well! Recently Overheard It’s late so you must forgive me for the brief intro. Some recent snippets from my life:…
Category: Mix
Hive Five 210 – We Are Destroying Software
Started watching the second season of Severance. It’s. So. Good. And that soundtrack is such a classic. It reminds me of the Succession theme song.…
UL NO. 458: Ollama Vulnerabilities, Rating AI Using AI, The Mantis Hack-back Framework
SECURITY | AI | PURPOSEUNSUPERVISED LEARNING is a newsletter about upgrading to thrive in a world full of AI. It’s original ideas, analysis, mental models,…
Performance Improvements to table sorting and Repeater | Blog
Daniel Allen | 11 September 2024 at 06:53 UTC Performance is a critical factor in the usability and efficiency of any software, and Burp Suite…
![[tl;dr sec] #267 - China on the NSA, Passkeys, Prioritizing CVEs with AI](https://image.cybernoz.com/wp-content/uploads/2025/03/tldr-sec-267-China-on-the-NSA-Passkeys-Prioritizing.png)
[tl;dr sec] #267 – China on the NSA, Passkeys, Prioritizing CVEs with AI
Insights from Chinese intel reports on the NSA’s TTPs, understanding and testing passkeys, how Databricks leverages AI to focus on business critical CVEs I hope…
Hive Five 211 – Stop Working So Hard
A while ago I asked what you wanted me to improve. This led to me revamping part of my premium offering. Instead of a constant…
Using the Smartest AI to Rate Other AI
The structure of the rate_ai_result Stitch Since early 2023 I’ve wanted a system that can assess how well AI does at a given task. And…
Introducing Burp Suite’s game-changing performance update | Blog
Amelia Coen | 12 September 2024 at 11:55 UTC Hands-on security testers need the best tools for the job. Tools you have faith in, and…
![[tl;dr sec] #268 - AI-powered Burp Suite, OAuth Vulnerabilities, Subtle LLM Backdoors](https://image.cybernoz.com/wp-content/uploads/2025/03/1743080265_tldr-sec-268-AI-powered-Burp-Suite-OAuth-Vulnerabilities-Subtle.png)
[tl;dr sec] #268 – AI-powered Burp Suite, OAuth Vulnerabilities, Subtle LLM Backdoors
How Burp Suite is adding AI-powered features, understanding and mitigating OAuth vulns, a PoC to subtly backdoor an LLM I hope you’ve been doing well!…
Hive Five 213 – Agency > Intelligence
I have a confession to make: I’m using a Chrome-based browser again. This time, I’m trying out Microsoft Edge. The friction of using Firefox is…
UL NO. 459: New Active 0-day Exploitation, AI That Sees Your Open Apps, The RebootAI Project
SECURITY | AI | PURPOSEUNSUPERVISED LEARNING is a newsletter about upgrading to thrive in a world full of AI. It’s original ideas, analysis, mental models,…
ZAP 2.16 Review | HAHWUL
2025년 시작과 함께 ZAP 2.16이 릴리즈되었습니다 이번 업데이트는 기능적으로 추가된 부분들이 있어서 대표적인 기능 3가지 위주로 정리하면서 리뷰할까 합니다. Client Spider Client Spider란 기능이 추가됬습니다.…