Reflected XSS: Advanced Exploitation Guide
Cross-site scripting vulnerabilities are, by no doubt, one of the vulnerability types that’ll keep haunting applications for a long time. This seamless injection bug can…
Category: Mix
Reflected XSS: Advanced Exploitation Guide
Cross-site scripting vulnerabilities are, by no doubt, one of the vulnerability types that’ll keep haunting applications for a long time. This seamless injection bug can…
Reflected XSS: Advanced Exploitation Guide
Cross-site scripting vulnerabilities are, by no doubt, one of the vulnerability types that’ll keep haunting applications for a long time. This seamless injection bug can…
Safeguarding digital playgrounds. Gaming and eSports insights.
According to Statista, revenue for the gaming and esports industry is expected to demonstrate an annual growth rate (CAGR 2025-2029) of 5.56%, resulting in a…
Why I Think Karpathy is Wrong on the AGI Timeline
Andrej Karpathy came on Dwarkesh’s podcast recently, and I have a number of thoughts. Many are saying that Karpathy thinks AGI is 10 years away,…
Product comparison: Detectify vs. Escape
Escape Pros Escape provides deep, contextual visibility by integrating with internal developer and cloud tools. Its AI-powered assessment finds complex business logic vulnerabilities like BOLA…
Why I Think Karpathy is Wrong on the AGI Timeline
Andrej Karpathy came on Dwarkesh’s podcast recently, and I have a number of thoughts. Many are saying that Karpathy thinks AGI is 10 years away,…
![[tl;dr sec] #301 - Security Leadership Master Class, DEF CON Cloud Village Talks, AI-Powered Honeypot](https://image.cybernoz.com/wp-content/uploads/2025/10/tldr-sec-301-Security-Leadership-Master-Class-DEF-CON.png)
[tl;dr sec] #301 – Security Leadership Master Class, DEF CON Cloud Village Talks, AI-Powered Honeypot
I hope you’ve been doing well! Reflections and Cooking First off, thanks so much to everyone who reached out with kind and encouraging words after…
When Authentication Fails — Exposing APIs to Risk — API Security
Authentication issues seem like low-level attacks. But authentication today – especially API authentication – can be more difficult than people expect. Companies rely on APIs…
Extending your lifespan through attention
One of the most surprising things I’ve ever learned is that novelty and attention extend your lifespan. Or, more precisely, attention and novelty slow time.…
Why API security is different (and why it matters)
Two months in at Detectify and I’ve realized something: API security is a completely different game from web application security. And honestly? I think a…
The Government Solution to AI Inequality Might Be UBI + Really Good Games
Or maybe 99-1. UBI is an obvious choice for calming the masses when the world turns into a lopsided 90-10 barbell. But I don’t think…