Make Burp Suite your own: high-powered extensibility to customize and enhance your testing. | Blog
Amelia Coen | 10 January 2025 at 15:53 UTC Extensibility in Burp Suite is about giving you and your team the power to customize, enhance,…
Category: Mix
![[tl;dr sec] #269 - New AI Security Tools, Ransomware in AWS, How to Hack AI Apps](https://image.cybernoz.com/wp-content/uploads/2025/03/1743077918_tldr-sec-269-New-AI-Security-Tools-Ransomware-in.png)
[tl;dr sec] #269 – New AI Security Tools, Ransomware in AWS, How to Hack AI Apps
AI-powered web vuln scanner agent and Baby Naptime, 2 tools + guides on preventing ransomware in AWS, detailed guide on hacking AI agents/apps I hope…
Hive Five 215 – Prompt Your Way To Personal Growth
I was struggling to create tasks the way I wanted them formatted and feed them into Obsidian, so I let Cursor write the raw JavaScript…
Frontview Mirror: 2025 Edition | Daniel Miessler
UL Member Content Table of Contents As with every piece in this series, I won’t pretend I can see what’s coming. Because I can’t—and nobody…
Dalfox 2.10 Released ︎ | HAHWUL
Mar 24, 2025 Swift, Sharp, and Set to Go! Greetings, fellow security enthusiasts! Dalfox v2.10.0 has arrived, and it’s an update worth celebrating. This release…
8 Tips for writing effective bug bounty reports
So, you’ve found a valid security vulnerability in one of your bug bounty programs, now it’s time to write the report. Finding the vulnerability was…
The future of security testing: harness AI-Powered Extensibility in Burp | Blog
Amelia Coen | 13 February 2025 at 13:52 UTC Our commitment to innovation At PortSwigger, we’re always striving to push the boundaries of what’s possible…
![[tl;dr sec] #270 - APT Attack Simulation, AWS Phishing, 7 Security Flywheels](https://image.cybernoz.com/wp-content/uploads/2025/03/1743075542_tldr-sec-270-APT-Attack-Simulation-AWS-Phishing-7.png)
[tl;dr sec] #270 – APT Attack Simulation, AWS Phishing, 7 Security Flywheels
I hope you’ve been doing well! This is a story, all about how… Recently some friends and I saw a Fresh Prince of Bel Air…
Hive Five 216 – The Hacker Always Wins
Habits are so good. They even compound! But, they can be hard to start and maintain. I’ve successfully started new ones and then stacked on…
![[tl;dr sec] #271 - Threat Modeling (+ AI), Backdoored GitHub Actions, Compromising a Threat Actor's Telegram](https://image.cybernoz.com/wp-content/uploads/2025/03/1743072871_tldr-sec-271-Threat-Modeling-AI-Backdoored-GitHub.png)
[tl;dr sec] #271 – Threat Modeling (+ AI), Backdoored GitHub Actions, Compromising a Threat Actor’s Telegram
Threat modeling (with) LLMs, tj-actions woes, reading a threat actor’s Telegram C2 I hope you’ve been doing well! Working on Your Personality One family ritual…
Security Update: Publicly Exposed Ingress NGINX Admission
A series of vulnerabilities, known as IngressNightmare (CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, CVE-2025-1974), have been identified in ingress-nginx, a widely used Kubernetes ingress controller. When exploited together,…
Intigriti insights into latest beg bounty scam
The Intigriti team have recently observed an abuse scenario, trending across the industry, where malicious actors are posing as legitimate white-hat hackers, deceiving targeted companies…