Introducing the Glazing Score · Joseph Thacker
ChatGPT has been lying to users to make them happy as a part of OpenAI’s effort to “improve personality”, and maybe that’s fine for some…
Category: Mix
Using AI to find web app vulnerabilities: hacking expert John Hammond takes Burp AI for a spin | Blog
Amelia Coen | 30 April 2025 at 13:23 UTC 1000s of pentesters are currently using Burp AI features to hack smarter by eliminating tedious tasks…
Hive Five 221 – Underdoing the Competition
I’m still running daily, but I’ve swapped some days for walking with a weighted vest. The main limitation I’m currently facing is the lack of…
Securing Agentic AI and Beyond — API Security
We recently released The Rise of Agentic AI, our API ThreatStats report for Q1 2025, finding that evolving API threats are fueled by the rise of…
NoSQL Injection: Advanced Exploitation Guide
NoSQL injections are relatively easier to exploit than classic SQL injections. However, developers often overlook these vulnerabilities, mainly due to limited awareness. Additionally, false beliefs…
How to Know What To Do · Joseph Thacker
This morning I tweeted: “Most people don’t actually know what’s ‘best’ for themselves.” And atomiczsec replied and said “How do you find what is best…
![[tl;dr sec] #276 - AI-created PoC Exploit, Cloud Snitch, Kubernetes Attack Simulation](https://image.cybernoz.com/wp-content/uploads/2025/04/tldr-sec-276-AI-created-PoC-Exploit-Cloud-Snitch-Kubernetes.png)
[tl;dr sec] #276 – AI-created PoC Exploit, Cloud Snitch, Kubernetes Attack Simulation
AI creating/debugging an exploit for the recent Erlang/OTP SSH vuln, map visualization and firewall for AWS activity, a multi-stage attack simulation tool for k8s I…
Redefining AppSec Testing with Intelligent Scan Recommendations and Asset Classification
As 9 out of 10 valuable web apps are missing testing, we’re launching new capabilities to help teams know what else, beyond core applications, is…
Boston: Authorities Missed Intelligence Opportunities
The senior law enforcement official said the Russians feared he could be a risk, and “they had something on him and were concerned about him,…
Chinese Scientists Find a Way to Make H5N1 Airborne
Virologists in China have published a paper detailing how they created more than 100 hybrid viruses from H5N1 and the H1N1 strain that caused the deadly swine flu…
If You’re Blogging on Facebook, Stop It
I have a number of friends who actually post insightful ideas and comments on Facebook, and they do so semi-regularly. It’s an absolute waste of…
Increasing Creativity By Clearly Separating Your Input and Output Phases
I think a lot about creativity and how to maximize it, and one of my latest ideas has been to clearly define time you’re taking…