Shout out to when the DEF CON venues were this nice to us

I whipped up a web-based code browser using Multiplier and #nicegui. It features semantic syntax highlighting, click to go-to entity, right-click to show references to/from and same-typed functions. Check it out: github.com/trailofbits/mu…

If Lord of the Rings was made in the 1980s. This looks incredible.

Dynamic taint analysis to find system call chains that take user controlled data to achieve exploit primitive side effects for exploitation.

Today Adobe attempted to patch an ITW use after free in Adobe Reader but apparently it does not fix the issue.

I’ve reactivated the discount until end of month!

There's no replacement for human intuition, vision, and drive. Kill your bureaucracy, find leaders with a track record, and empower them to make top-down decisions

I still can't believe that Raspberry Pi just released a microcontroller with open source cores and bootrom. If you are interested in learning about how CPUs work, you just woke up in a renaissance.

The time has come, and with it your reading material for the week. Phrack #71 is officially released ONLINE! Let us know what you think! phrack.org/issues/71/1.ht…

Major thanks go to: The Phrack Staff, all the authors, artists, donors, supporters, everyone who helped with the print release, DEFCON, and YOU, the reader. phrack.org/issues/71/1.ht…

We are planning a new issue (and hard copy) to celebrate Phrack's 40th anniversary next year, please check out phrack.org for more info on contributing!

Phrack #71 Linenoise - "Master of Puppets - turning AV sandboxes into a botnet". What I can say... Honored and proud. Enjoy! phrack.org/issues/71/3.ht…

The online version of Phrack Zine 71 is out now, got a small part in Linenoise. phrack.org/issues/71/3.ht…

Cosine-Similarity of Embeddings may not be always about similarity 🤔 📌 This Netflix paper cautions against blindly using cosine similarity and proposes alternatives such as training the model directly with cosine similarity, projecting embeddings back to the original space

The way we are currently evaluating LLMs for vulnerability detection might be flawed! New paper w/ Marcel Böhme👨‍🔬 . Paper: arxiv.org/abs/2408.12986 Code: github.com/niklasrisse/To… (1/10)

Still trying to understand how a life insurance Ad can deliver one of the most important life lessons.

True story.. this was on my server! jduck just casually finding a MiraclePtr bypass. Had no idea they launched a 100k bounty for it.