Is Pre Big-Bang Agnosticism a Belief?
I’ve been having a conversation with a friend about whether atheism and agnosticism is a belief. First off, let’s synchronize. If one were to claim…
Category: Mix
Neovim Line Manipulation: Copy and Move Like a Pro
Neovim command sequences visualization (click for full size) After returning to Neovim recently, I’ve discovered some powerful techniques for manipulating lines that have significantly improved…
Fixing Opencode Transparency in Ghostty Terminal
How to make Opencode respect your terminal’s transparent background July 18, 2025 Opencode running with transparent background in Ghostty (click for full size) If you’re…
![[tl;dr sec] #288 - Prompt Injection in Malware, Preventative Security, Top Bug Bounty War Stories](https://image.cybernoz.com/wp-content/uploads/2025/07/tldr-sec-288-Prompt-Injection-in-Malware-Preventative-Security.png)
[tl;dr sec] #288 – Prompt Injection in Malware, Preventative Security, Top Bug Bounty War Stories
Checkpoint finds malware containing prompt injection, why preventative security is hard, @Rhynorater talk sharing 11 of his most impactful and technically challenging vulnerabilities I hope…
Fail-Open Architecture for Secure Inline Protection on Azure
Every inline deployment introduces a tradeoff: enhanced inspection versus increased risk of downtime. Inline protection is important, especially for APIs, which are now the most…
How security leaders are scaling testing with bug bounty programs
For security leaders protecting fast-growing organizations, the pressure is on to identify vulnerabilities before threat actors do. Continuously testing environments, cost-effectively and at scale, is…
Watch the on-demand webinar: Shift left without the strain | Blog
Rob Samuels | 14 July 2025 at 13:00 UTC Shifting security left promises faster, safer software delivery – but for many teams, that promise is…
Intigriti teams with NVIDIA to launch bug bounty and vulnerability disclosure program (VDP)
With an expanding threat landscape, a surge in AI-driven products, and a commitment to innovation, NVIDIA is enhancing cybersecurity with a proactive approach by tapping…
Replacing Cursor With Neovim and Claude Code
My three-paned Ghostty / Neovim / Claude Code Setup (click for full size) It kind of sucks right now to be a (neo)Vim user if…
How to find more vulnerabilities using GitHub search
Bug bounty hunters who spend time in content discovery and reconnaissance are always rewarded well for their efforts, as they often come across untested and…
![[tl;dr sec] #287 - fwd:cloudsec Talk Recordings, How Figma Only Runs Approved Software, Auditing Code with AI](https://image.cybernoz.com/wp-content/uploads/2025/07/tldr-sec-287-fwdcloudsec-Talk-Recordings-How-Figma-Only.png)
[tl;dr sec] #287 – fwd:cloudsec Talk Recordings, How Figma Only Runs Approved Software, Auditing Code with AI
45 excellent cloud security talks, how Figma rolled out the binary authorization tool Santa, AI bug finding tools and paper I hope you’ve been doing…
Understanding the NCSC’s New API Security Guidance
Legislative, regulatory, and advisory bodies the world over are waking up to the importance of API security. Most recently, the UK’s National Cyber Security Centre…