Claude Code is Proto-AGI | Daniel Miessler
Why Claude Code represents the biggest leap in AI capabilities since ChatGPT July 8, 2025 I’ve had a number of thoughts around Claude Code in…
Category: Mix
The Real Future of Tech · Joseph Thacker
In 2016, my friend Daniel Miessler wrote a book called “The Real Internet of Things.” It’s a quick little read that he later put on…
If This Isn’t Intelligence, I Don’t Know What Is
pnpm install -g ccusage I have a friend named Marcus Hutchins who doesn’t believe modern AI is intelligent. He thinks it’s basically autocomplete. We actually…
Dalfox 2.12 Released ︎ | HAHWUL
More powerful XSS scanning, Integration Dalfox v2.12.0 has been released. It’s been about three months since the previous version, 2.11, and this update includes various…
AI’s Morose Mania
I think, looking back, we might say that the first week of July 2025 was the start of AGI. Like, proto-AGI. All because of Claude…
The End of Work | Daniel Miessler
Table of Contents The feeling If you’re like me, you’ve had this strange, uneasy feeling about the job market1 for a few years now. It’s…
We’re All in Fractal Microcults
I think we’re all in microcults now. Fractal microcults. Infinitely small ones. Cults of one. Not everyone, of course, but so many of the people…
![[tl;dr sec] #286 - Securing Vibe Coding, Finding Secrets "Oops Commits", Backdooring IDE Extensions](https://image.cybernoz.com/wp-content/uploads/2025/07/tldr-sec-286-Securing-Vibe-Coding-Finding-Secrets-Oops.png)
[tl;dr sec] #286 – Securing Vibe Coding, Finding Secrets “Oops Commits”, Backdooring IDE Extensions
Rules files to vibe securely, earning $25K from dangling commits, compromising the extension marketplace of Cursor, Windsurf, and other VS Code forks I hope you’ve…
What CISA’s BOD 25-01 Means for API Security and How Wallarm Can Help
The US government has taken another significant step towards strengthening cloud security with the release of CISA’s Binding Operational Directive (BOD) 25-01. Aimed at improving…
Why Prompt Engineering and Context Engineering Both Miss the Point
There’s a popular idea going around right now about renaming “prompt engineering” to “context engineering.” The argument is that context engineering better captures the true…
What the NULL?! Wing FTP Server RCE (CVE-2025-47812)
While performing a penetration test for one of our Continuous Penetration Testing customers, we’ve found a Wing FTP server instance that allowed anonymous connections. It…
![[tl;dr sec] #285 - AI Red Teaming, Detection Engineering Field Manual, Building AppSec Partnerships](https://image.cybernoz.com/wp-content/uploads/2025/06/tldr-sec-285-AI-Red-Teaming-Detection-Engineering-Field.png)
[tl;dr sec] #285 – AI Red Teaming, Detection Engineering Field Manual, Building AppSec Partnerships
Can LLMs red team AI, intro to detection engineering, how to scale security impact via cross-team partnerships I hope you’ve been doing well! At BSidesSF…