🧠 Can agent memory scale without losing reasoning? 🔥 We’re excited to share our latest work, SimpleMem, a principled memory framework for LLM agents built around semantic lossless compression. 📉 30× fewer inference tokens 📈 +26.4% avg F1 (vs Mem0) ⚡ 50.2% faster retrieval

CVE-2025-38352 - In-the-wild Android Kernel Vulnerability Analysis + PoC faith2dxy.xyz/2025-12-22/cve… PoC: github.com/farazsth98/poc…

V8 in-the-wild the_hole exploit Bug analysis ([email protected]): retr0.zip/blog/cve-2025-… Documented PoC (j j) github.com/mistymntncop/C… #infosec

Link is here: github.com/jarrodwatts/cl…

Fixed a little sth in invoke-AADIntReconAsOutsider by Dr. Nestori Syynimaa. The Tenant Name was missing due to recent changes by MS. You can still get this info via DKIM if they use Exchange Online or authenticated to ANY tenant via Graph in some cases. github.com/Gerenios/AADIn…

If you’re doing security testing and not bookmarking this, you’re missing out 👀 PayloadsAllTheThings has a clean web version 👇 swisskyrepo.github.io/PayloadsAllThe… #bugbounty #infosec

Spent some time porting DumpGuard to C as a BOF. Abuses Remote Credential Guard to pull NTLMv1 hashes without going near LSASS or needing admin. Shoutout to Valdemar Carøe for the original research. github.com/0xedh/dumpguar…

Exploiting a 13-years old bug on QEMU Learn how to cheese kpwn challenges running on a Ubuntu 24.04 container using a nday on QEMU kqx.io/post/qemu-nday/

Polymarket: polymarket.com/?via=signup_wi… Radar: hipcityreg.github.io/situation-moni…

v6.3 of GAP Burp Extension is available: ✅ A small improvement to the link finding regex ✅ Some small performance improvements ✅ A change to prevent possible memory leaks github.com/xnl-h4ck3r/GAP… #BugBounty 🤘

Evasive Remote Memory Write New Medium post, in this article, I’ve developed a custom technique for remotely writing arbitrary data (such as shellcode) into another process’s memory space without relying on the heavily monitored WriteProcessMemory API medium.com/@s12deff/evasi…

수천 개의 API/BATCH 서버를 하나의 설정 체계로 관리하기 작성자 : 출처 : 토스 January 9, 2026 at 01:44PM ift.tt/szROmbD

Anthropic just dropped their internal 'AI code janitor' for a FREE plugin list + skills Frontend-design Doc-coauthoring Skill-creator Code-simplifier - github.com/anthropics/cla… - github.com/anthropics/ski…

Timely reminder that Codex is open-source and we love a vibrant ecosystem 💖 In case you dealt with a great shutoff today, Codex provides an app-server that lets you wrap all of Codex into your own app including Sign in with ChatGPT. github.com/openai/codex/t…

With the Claude Code shutdown. I am proud that we build Codex in the open with our OSS repo and we are 100% invested in supporting a flourishing ecosystem of agentic coding tools out there. You can already build on top of github.com/openai/codex/t… directly, which includes ChatGPT

there's hundreds of different models, with new ones coming out everyday and also multiple providers, all serving them with different throughput, latency, price, quants and context i hated searching through them so had to vibe code a little tool: modelgrep.com

Loki RS is alive 🐍⚡ - High performance YARA & IOC scanner - Multi-threaded - Process memory & filesystem scanning - ZIP scanning - TUI - New YARA-X - IOCs from signature-base + YARA Forge - HTML report - Remote logging - JSONL / Syslog output Personal lab for scanner UX/perf

Malware development basics 0xf00sec.github.io/0x4a TLDR; This blog focus on execution flow hijacking, dynamic API, and stealth execution via low-level OS structures. Core concepts include direct access to the (PEB), evasion through runtime decryption, and shellcode injection.

CRLF Injection in HTTP header values allows arbitrary header injection hackerone.com/reports/3505557 #bugbounty #bugbountytips #bugbountytip

yarGen-Go is out - full Go rewrite of yarGen - CLI + local web UI - generates YARA rules from malware samples - filters strings using large goodware databases - ASCII + UTF-16 string extraction - opcode extraction (PE + ELF) - detects base64, hex, reversed strings - magic header