This pain point continues to frustrate AWS users. If you want to disable these logs, or are simply using another logging service – you'll need to manually disable Lambda logs by denying CloudWatch permissions. Here's a gist: gist.github.com/astuyve/613f52… This could be a button...

I’m gonna give 10 random people that repost this and follow me $25,000 for fun (the $250,000 my X video made) I’ll pick the winners in 72 hours

Who are the best people to follow for performance related tweets?

Robert Swiecki Yoav Alon Daniel Lemire Matt Fleming Felix Geisendörfer Aleksey Shipilëv Mark E. Dawson, Jr. sophia Simon Eskildsen Fabian Giesen Geoff Langdale are the first few that come to mind.

Excited to share bug detection tool we've been working on w/ Marco Elver: github.com/google/gwpsan It samples unmodified prod binaries with ~1% overhead, can be turned off completely. Detects data races, use-after-return, uninits. Can do more e.g. UAF/OOB in syscalls. Cool tech ...

The libarchive e8 vulnerability is actually really cool, but the ZDI advisory doesn't explain why it's so wild lol. For some reason, I know about RAR filters, so let me provide the background. 🧵 1/n

Yoav Alon Zensploitation

Our security researcher hashkitten found one of the most critical exploit chains in the history of Assetnote. Affecting 40k+ instances of ServiceNow, we could execute arbitrary code, access all data without authentication. You can read our blog here: assetnote.io/resources/rese…

1/ A world first reverse engineering analysis of AWS Session Tokens. Prior to our research these tokens were a complete black box. Today, we are making it more of a glass box, by sharing code and tools to analyze and modify AWS Session Tokens. medium.com/@TalBeerySec/r…

עכשיו במהדורת RGB מיוחדת עם 16,777,216 עמודים: פיל עם קרחת, את השיער לא חופף. חלמתי על פיל בצבע #A8E04F

This was useful github.com/cxiao/rust-rev…

Snyk 🤝 Orca Security Together, we're revolutionizing DevSecOps. 💪 Learn how our strategic partnership provides unparalleled visibility into risks throughout the entire app lifecycle - from dev to runtime. #AppSec #CloudSec snyk.co/uhrWl

🇵🇱 Polish Security Experts! 🛡️ We're hiring a Security Researcher for our R&D team. Work with cutting-edge tech (eBPF, Linux, K8s, Malware analysis) to fight cybercrime! join.onthespotdev.com/runtime-securi… RTs appreciated for reach! 🙏 #CloudSecurity #CybersecJobs #PolishTech

Domato Lives! Today, we merged a WebGPU fuzzer written by @btiszka who used it to find several serious bugs in Chrome. Check it out at github.com/googleprojectz…. Potentially also interesting for other browser vendors working on their own WebGPU implementation ;)

🔭🐶 Exciting news: Datadog, Inc. has announced our intend on donating our new Go auto-instrumentation framework to OpenTelemetry.

🔍 Calling all **#CloudSecurity** Researchers! 🛡️ Lead Cloud Runtime Sec Eng Orca Security 🇵🇱 Hybrid (Poland/Warsaw) 🎯 Build & Research runtime engine (Go/C++/eBPF/AI) 👉 onthespotdev.com/positions/clou… #InfosecJobs #Hiring

Our $100M Series B oxide.computer/blog/our-100m-…

Mario Zechner "includeCoAuthoredBy": false In ~/.claude/settings.json

Recorded some updated thoughts on agentic coding tools if someone is curious.